Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228651 2.1 注意 レッドハット - Red Hat OpenStack Essex および Folsom における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6120 2013-04-12 15:51 2013-04-4 Show GitHub Exploit DB Packet Storm
228652 4 警告 フェンリル株式会社 - Sleipnir Mobile for Android において任意のエクステンション API が呼び出される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2304 2013-04-12 12:01 2013-04-12 Show GitHub Exploit DB Packet Storm
228653 4.3 警告 Splunk - Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2766 2013-04-12 11:04 2013-03-25 Show GitHub Exploit DB Packet Storm
228654 5 警告 Puppet - Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-2716 2013-04-12 11:03 2013-03-28 Show GitHub Exploit DB Packet Storm
228655 7.5 危険 Digineo - Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1898 2013-04-11 19:42 2013-03-25 Show GitHub Exploit DB Packet Storm
228656 7.5 危険 Dan Kubb - Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1802 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
228657 7.5 危険 John Nunemaker - Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1801 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
228658 7.5 危険 John Nunemaker - Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1800 2013-04-11 19:40 2013-01-14 Show GitHub Exploit DB Packet Storm
228659 7.5 危険 Daniel Harrington - Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0285 2013-04-11 19:39 2013-01-14 Show GitHub Exploit DB Packet Storm
228660 5 警告 New Relic - Ruby Agent における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0284 2013-04-11 19:38 2013-02-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
193771 5.5 MEDIUM
Local 		razer synapse Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the Razer Chroma SDK subkey. These privileged operations consist of fil… CWE-276
Incorrect Default Permissions  		CVE-2021-30494 2024-11-21 15:04 2021-04-15 Show GitHub Exploit DB Packet Storm
193772 5.5 MEDIUM
Local 		razer synapse Multiple system services installed alongside the Razer Synapse 3 software suite perform privileged operations on entries within the ChromaBroadcast subkey. These privileged operations consist of file… CWE-276
Incorrect Default Permissions  		CVE-2021-30493 2024-11-21 15:04 2021-04-15 Show GitHub Exploit DB Packet Storm
193773 5.4 MEDIUM
Network 		htmly htmly htmly 2.8.0 allows stored XSS via the blog title, Tagline, or Description to config.html.php. CWE-79
Cross-site Scripting 		CVE-2021-30637 2024-11-21 15:04 2021-04-13 Show GitHub Exploit DB Packet Storm
193774 9.8 CRITICAL
Network 		glsl_linting_project glsl_linting The unofficial GLSL Linting extension before 1.4.0 for Visual Studio Code allows remote code execution via a crafted glslangValidatorPath in the workspace configuration. NVD-CWE-Other
CVE-2021-30503 2024-11-21 15:04 2021-04-13 Show GitHub Exploit DB Packet Storm
193775 6.5 MEDIUM
Network 		ezxml_project
debian 		ezxml
debian_linux 		An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference wh… CWE-476
 NULL Pointer Dereference 		CVE-2021-30485 2024-11-21 15:04 2021-04-12 Show GitHub Exploit DB Packet Storm
193776 9.0 CRITICAL
Network 		valvesoftware steam_client Valve Steam through 2021-04-10, when a Source engine game is installed, allows remote authenticated users to execute arbitrary code because of a buffer overflow that occurs for a Steam invite after o… CWE-120
Classic Buffer Overflow 		CVE-2021-30481 2024-11-21 15:04 2021-04-11 Show GitHub Exploit DB Packet Storm
193777 8.8 HIGH
Network 		zoom chat Zoom Chat through 2021-04-09 on Windows and macOS allows certain remote authenticated attackers to execute arbitrary code without user interaction. An attacker must be within the same organization, o… NVD-CWE-noinfo
CVE-2021-30480 2024-11-21 15:04 2021-04-10 Show GitHub Exploit DB Packet Storm
193778 6.1 MEDIUM
Network 		dzzoffice dzzoffice A reflected cross-site scripting (XSS) vulnerability in the zero parameter of dzzoffice 2.02.1_SC_UTF8 allows attackers to execute arbitrary web scripts or HTML. CWE-79
Cross-site Scripting 		CVE-2021-30203 2024-11-21 15:03 2023-06-27 Show GitHub Exploit DB Packet Storm
193779 7.5 HIGH
Network 		vsftpd_project vsftpd VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed. NVD-CWE-noinfo
CVE-2021-30047 2024-11-21 15:03 2023-08-23 Show GitHub Exploit DB Packet Storm
193780 5.3 MEDIUM
Network 		dzzoffice dzzoffice Incorrect access control in the component /index.php?mod=system&op=orgtree of dzzoffice 2.02.1_SC_UTF8 allows unauthenticated attackers to browse departments and usernames. NVD-CWE-Other
CVE-2021-30205 2024-11-21 15:03 2023-06-27 Show GitHub Exploit DB Packet Storm