Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
228901 7.8 危険 シスコシステムズ - Cisco Unified IP Phone 8945 のソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2013-3468 2013-09-2 12:21 2013-08-28 Show GitHub Exploit DB Packet Storm
228902 9.3 危険 シスコシステムズ - Cisco Secure Access Control Server の EAP-FAST 認証モジュールにおける任意のコマンドを実行される脆弱性 CWE-287
不適切な認証
CVE-2013-3466 2013-09-2 12:11 2013-08-28 Show GitHub Exploit DB Packet Storm
228903 7.5 危険 Adam Zaninovich - Ruby 用 sounder gem の lib/sounder/sound.rb における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-5647 2013-09-2 11:04 2013-08-9 Show GitHub Exploit DB Packet Storm
228904 3.5 注意 Roundcube.net - Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5646 2013-09-2 09:58 2013-08-4 Show GitHub Exploit DB Packet Storm
228905 4.3 警告 Roundcube.net - Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5645 2013-09-2 09:51 2013-08-1 Show GitHub Exploit DB Packet Storm
228906 7.5 危険 The Cacti Group - Cacti の cacti/host.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-5589 2013-08-30 16:46 2013-08-24 Show GitHub Exploit DB Packet Storm
228907 4.3 警告 The Cacti Group - Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-5588 2013-08-30 16:44 2013-08-24 Show GitHub Exploit DB Packet Storm
228908 7.8 危険 FreeBSD - FreeBSD のカーネルの SCTP の実装におけるカーネルスタックメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2013-5209 2013-08-30 16:42 2012-08-22 Show GitHub Exploit DB Packet Storm
228909 3.5 注意 IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-4003 2013-08-30 16:40 2013-08-13 Show GitHub Exploit DB Packet Storm
228910 2.1 注意 Erik Webb - Drupal 用 Password Policy モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-4274 2013-08-30 16:37 2013-08-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194411 4.8 MEDIUM
Network
shopizer shopizer A stored cross-site scripting (XSS) vulnerability in Shopizer before 2.17.0 allows remote attackers to inject arbitrary web script or HTML via customer_name in various forms of store administration. … CWE-79
Cross-site Scripting
CVE-2021-33561 2024-11-21 15:09 2021-05-25 Show GitHub Exploit DB Packet Storm
194412 8.8 HIGH
Network
eyesofnetwork eyesofnetwork EyesOfNetwork eonweb through 5.3-11 allows Remote Command Execution (by authenticated users) via shell metacharacters in the nagios_path parameter to lilac/export.php, as demonstrated by %26%26+curl … CWE-78
OS Command 
CVE-2021-33525 2024-11-21 15:09 2021-05-25 Show GitHub Exploit DB Packet Storm
194413 8.1 HIGH
Network
gnome gupnp An issue was discovered in GUPnP before 1.0.7 and 1.1.x and 1.2.x before 1.2.5. It allows DNS rebinding. A remote web server can exploit this vulnerability to trick a victim's browser into triggering… NVD-CWE-Other
CVE-2021-33516 2024-11-21 15:09 2021-05-25 Show GitHub Exploit DB Packet Storm
194414 - - - Improper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable denial of service via local… - CVE-2021-33142 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm
194415 6.7 MEDIUM
Local
intel nuc_8_mainstream-g_kit_nuc8i7inh_firmware
nuc_8_mainstream-g_mini_pc_nuc8i7inh_firmware
nuc_8_mainstream-g_kit_nuc8i5inh_firmware
nuc_8_mainstream-g_mini_pc_nuc8i5inh_firmware
Improper access control in BIOS firmware for some Intel(R) NUCs before version INWHL357.0046 may allow a privileged user to potentially enable escalation of privilege via local access. NVD-CWE-Other
CVE-2021-33164 2024-11-21 15:08 2022-11-12 Show GitHub Exploit DB Packet Storm
194416 - - - Improper access control in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow an authenticated user to potentially enable escalation of privilege v… - CVE-2021-33162 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm
194417 - - - Improper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable escalation of privilege via… - CVE-2021-33161 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm
194418 - - - Improper neutralization in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable escalation of privilege via l… - CVE-2021-33158 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm
194419 - - - Insufficient control flow management in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow a privileged user to potentially enable escalation of pr… - CVE-2021-33157 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm
194420 - - - Improper input validation in some Intel(R) Ethernet Adapters and Intel(R) Ethernet Controller I225 Manageability firmware may allow an unauthenticated user to potentially enable information disclosur… - CVE-2021-33146 2024-11-21 15:08 2024-02-24 Show GitHub Exploit DB Packet Storm