Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228581	6.8	警告	アクセラテクノロジ	-	Accela BizSearch におけるユーザになりすまされる脆弱性	CWE-noinfo 情報不足	-	2013-02-13 15:44	2013-02-5	Show	GitHub Exploit DB Packet Storm

228582	7.2	危険	VMware	-	複数の VMware 製品の VMCI の実装における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1406	2013-02-13 15:42	2013-02-7	Show	GitHub Exploit DB Packet Storm

228583	7.5	危険	CubeCart Limited	-	CubeCart における任意の PHP オブジェクトをアンシリアライズされる脆弱性	CWE-20 不適切な入力確認	CVE-2013-1465	2013-02-13 11:53	2013-01-31	Show	GitHub Exploit DB Packet Storm

228584	-	-	ARM Ltd. (旧 Offspark)	-	削除 PolarSSL の SSL モジュールにおける識別攻撃を誘発される脆弱性	-	CVE-2013-1622	2013-02-13 11:49	2013-02-2	Show	GitHub Exploit DB Packet Storm

228585	6.8	警告	Opera Software ASA	-	Opera における CSRF 保護メカニズムを回避される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-1639	2013-02-12 16:51	2013-01-30	Show	GitHub Exploit DB Packet Storm

228586	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1638	2013-02-12 16:49	2013-01-30	Show	GitHub Exploit DB Packet Storm

228587	9.3	危険	Opera Software ASA	-	Opera における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1637	2013-02-12 16:48	2013-01-30	Show	GitHub Exploit DB Packet Storm

228588	9.3	危険	Ecava	-	IntegraXor SCADA Server におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4700	2013-02-12 14:26	2013-01-3	Show	GitHub Exploit DB Packet Storm

228589	5	警告	ISC, Inc. 日本電気 VMware	-	複数の DNS ネームサーバの実装に問題	CWE-DesignError	CVE-2012-1033	2013-02-8 16:14	2012-02-9	Show	GitHub Exploit DB Packet Storm

228590	8.5	危険	（複数のベンダ）	-	HP/H3C 製および Huawei 製ネットワーク機器にアクセス制限不備の脆弱性	CWE-200 情報漏えい	CVE-2012-3268	2013-02-8 15:02	2012-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194261	7.5	HIGH Network	stormshield	network_security stormshield_network_security	Stormshield SNS with versions before 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a deni…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-28665	2024-11-21 15:00	2021-05-7	Show	GitHub Exploit DB Packet Storm

194262	9.8	CRITICAL Network	hp	edgeline_infrastructure_manager	A security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software, prior to version 1.22. The vulnerability could …	CWE-306 Missing Authentication for Critical Function	CVE-2021-29203	2024-11-21 15:00	2021-05-7	Show	GitHub Exploit DB Packet Storm

194263	7.5	HIGH Network	esri	arcgis_geoevent_server	ArcGIS GeoEvent Server versions 10.8.1 and below has a read-only directory path traversal vulnerability that could allow an unauthenticated, remote attacker to perform directory traversal attacks and…	CWE-22 Path Traversal	CVE-2021-29101	2024-11-21 15:00	2021-05-6	Show	GitHub Exploit DB Packet Storm

194264	7.8	HIGH Local	esri	arcgis_earth	A path traversal vulnerability exists in Esri ArcGIS Earth versions 1.11.0 and below which allows arbitrary file creation on an affected system through crafted input. An attacker could exploit this v…	CWE-22 Path Traversal	CVE-2021-29100	2024-11-21 15:00	2021-05-6	Show	GitHub Exploit DB Packet Storm

194265	5.4	MEDIUM Network	btcpayserver	btcpay_server	BTCPay Server through 1.0.7.0 suffers from a Stored Cross Site Scripting (XSS) vulnerability within the POS Add Products functionality. This enables cookie stealing.	CWE-79 Cross-site Scripting	CVE-2021-29250	2024-11-21 15:00	2021-05-5	Show	GitHub Exploit DB Packet Storm

194266	5.3	MEDIUM Network	btcpayserver	btcpay_server	BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the Secure flag for a cookie.	CWE-311 Missing Encryption of Sensitive Data	CVE-2021-29248	2024-11-21 15:00	2021-05-5	Show	GitHub Exploit DB Packet Storm

194267	5.3	MEDIUM Network	btcpayserver	btcpay_server	BTCPay Server through 1.0.7.0 could allow a remote attacker to obtain sensitive information, caused by failure to set the HTTPOnly flag for a cookie.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-29247	2024-11-21 15:00	2021-05-5	Show	GitHub Exploit DB Packet Storm

194268	6.7	MEDIUM Local	btcpayserver	btcpay_server	BTCPay Server through 1.0.7.0 suffers from directory traversal, which allows an attacker with admin privileges to achieve code execution. The attacker must craft a malicious plugin file with special …	CWE-22 Path Traversal	CVE-2021-29246	2024-11-21 15:00	2021-05-5	Show	GitHub Exploit DB Packet Storm

194269	5.3	MEDIUM Network	btcpayserver	btcpay_server	BTCPay Server through 1.0.7.0 uses a weak method Next to produce pseudo-random values to generate a legacy API key.	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2021-29245	2024-11-21 15:00	2021-05-5	Show	GitHub Exploit DB Packet Storm

194270	7.8	HIGH Local	codesys	development_system	The Package Manager of CODESYS Development System 3 before 3.5.17.0 does not check the validity of packages before installation and may be used to install CODESYS packages with malicious content.	NVD-CWE-noinfo	CVE-2021-29240	2024-11-21 15:00	2021-05-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed