Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228691 | 6.8 | 警告 | シスコシステムズ | - | Cisco Unified MeetingPlace のサーバにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-1128 | 2013-02-22 12:14 | 2013-02-11 | Show | GitHub Exploit DB Packet Storm |
| 228692 | 2.6 | 注意 | IBM | - | IBM WebSphere Message Broker におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0466 | 2013-02-21 18:37 | 2013-02-19 | Show | GitHub Exploit DB Packet Storm |
| 228693 | 3.5 | 注意 | IBM | - | 複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0457 | 2013-02-21 18:36 | 2013-02-15 | Show | GitHub Exploit DB Packet Storm |
| 228694 | 6.5 | 警告 | IBM | - | 複数の IBM 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6357 | 2013-02-21 18:36 | 2013-02-15 | Show | GitHub Exploit DB Packet Storm |
| 228695 | 6.5 | 警告 | IBM | - | 複数の IBM 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6356 | 2013-02-21 18:35 | 2013-02-15 | Show | GitHub Exploit DB Packet Storm |
| 228696 | 6.5 | 警告 | IBM | - | 複数の IBM 製品における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-6355 | 2013-02-21 18:34 | 2013-02-15 | Show | GitHub Exploit DB Packet Storm |
| 228697 | 4.3 | 警告 | IBM | - | IBM WebSphere Message Broker におけるサービス運用妨害 (無限ループ) の脆弱性 |
CWE-119
バッファエラー |
CVE-2012-5953 | 2013-02-21 18:34 | 2013-02-12 | Show | GitHub Exploit DB Packet Storm |
| 228698 | 5 | 警告 | IBM | - | IBM WebSphere Message Broker における認証されていないメッセージの送信を誘発される脆弱性 |
CWE-287
不適切な認証 |
CVE-2012-5952 | 2013-02-21 18:33 | 2013-02-12 | Show | GitHub Exploit DB Packet Storm |
| 228699 | 3.5 | 注意 | IBM | - | IBM Netezza の WebAdmin アプリケーションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-5941 | 2013-02-21 18:29 | 2013-02-20 | Show | GitHub Exploit DB Packet Storm |
| 228700 | 4.3 | 警告 | IBM | - | IBM Netezza の WebAdmin アプリケーションにおける認証情報を発見される脆弱性 |
CWE-287
不適切な認証 |
CVE-2012-5940 | 2013-02-21 18:28 | 2013-02-20 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 14, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194071 | 7.5 |
HIGH
Network |
ibm | infosphere_information_server | IBM InfoSphere Data Flow Designer Engine (IBM InfoSphere Information Server 11.7 ) component has improper validation of the REST API server certificate. IBM X-Force ID: 201301. |
CWE-295
Improper Certificate Validation |
CVE-2021-29737 | 2024-11-21 15:01 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 194072 | 5.5 |
MEDIUM
Local |
ibm | i2_ibase | IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 206213. |
CWE-613
Insufficient Session Expiration |
CVE-2021-29868 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194073 | 6.5 |
MEDIUM
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 203172. |
CWE-312
Cleartext Storage of Sensitive Information |
CVE-2021-29786 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194074 | 7.5 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-Force ID: 203025. |
NVD-CWE-noinfo
|
CVE-2021-29774 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194075 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_engineering_lifecycle_manager rational_collaborative_lifecycle_management engineering_lifecycle_optimization rational_team_concert |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29713 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194076 | 8.8 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management engineering_requirements_quality_assistant_on-premises engin… |
IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to netwo… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-29844 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194077 | 5.4 |
MEDIUM
Network |
ibm |
rational_team_concert rational_collaborative_lifecycle_management rational_engineering_lifecycle_manager engineering_workflow_management rational_doors_next_generation engineering_life… |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29673 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194078 | 6.1 |
MEDIUM
Network |
ibm | business_automation_workflow | IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the i… |
CWE-79
Cross-site Scripting |
CVE-2021-29835 | 2024-11-21 15:01 | 2021-10-23 | Show | GitHub Exploit DB Packet Storm |
| 194079 | 4.3 |
MEDIUM
Network |
ibm | transformation_extender_advanced | IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cook… |
CWE-311
Missing Encryption of Sensitive Data |
CVE-2021-29883 | 2024-11-21 15:01 | 2021-10-22 | Show | GitHub Exploit DB Packet Storm |
| 194080 | 8.1 |
HIGH
Network |
ibm |
storwize_v5000_software storwize_v7000_software storwize_v3700_software storwize_v3500_software san_volume_controller_firmware spectrum_virtualize spectrum_virtualize_for_public_clo… |
IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229. |
NVD-CWE-noinfo
|
CVE-2021-29873 | 2024-11-21 15:01 | 2021-10-22 | Show | GitHub Exploit DB Packet Storm |