Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228941 4.3 警告 シスコシステムズ - Cisco Unity Express におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1114 2013-02-15 19:46 2013-02-1 Show GitHub Exploit DB Packet Storm
228942 9 危険 シスコシステムズ - Cisco ATA 187 Analog Telephone Adaptor におけるオペレーティングシステムのコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1111 2013-02-15 19:46 2013-02-6 Show GitHub Exploit DB Packet Storm
228943 5.4 警告 シスコシステムズ - Cisco Catalyst スイッチ上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1100 2013-02-15 19:45 2013-01-30 Show GitHub Exploit DB Packet Storm
228944 4.3 警告 Featurific For WordPress Project - WordPress 用 Featurific For WordPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5265 2013-02-15 19:11 2013-02-12 Show GitHub Exploit DB Packet Storm
228945 4.3 警告 Marcel Brinkkemper - WordPress 用 Lazyest Backup プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5264 2013-02-15 19:10 2013-02-12 Show GitHub Exploit DB Packet Storm
228946 4.3 警告 SAP - SAP NetWeaver におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5263 2013-02-15 19:09 2013-02-12 Show GitHub Exploit DB Packet Storm
228947 7.5 危険 SonicWALL - SonicWALL Aventail における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5262 2013-02-15 19:08 2013-02-12 Show GitHub Exploit DB Packet Storm
228948 4.3 警告 アクシスコミュニケーションズ - AXIS M10 Series Network Cameras M1054 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5261 2013-02-15 19:07 2013-02-12 Show GitHub Exploit DB Packet Storm
228949 4.3 警告 SAP - SAP NetWeaver におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5260 2013-02-15 19:04 2013-02-12 Show GitHub Exploit DB Packet Storm
228950 6.8 警告 OrangeHRM - OrangeHRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5259 2013-02-15 18:59 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194541 8.8 HIGH
Network 		rangerstudio directus Directus 8 before 8.8.2 allows remote authenticated users to execute arbitrary code because file-upload permissions include the ability to upload a .php file to the main upload directory and/or uploa… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-29641 2024-11-21 15:01 2021-04-8 Show GitHub Exploit DB Packet Storm
194542 7.8 HIGH
Local 		freebsd freebsd In FreeBSD 13.0-STABLE before n245050, 12.2-STABLE before r369525, 13.0-RC4 before p0, and 12.2-RELEASE before p6, listening socket accept filters implementing the accf_create callback incorrectly fr… CWE-415
CWE-416
 Double Free
 Use After Free 		CVE-2021-29627 2024-11-21 15:01 2021-04-8 Show GitHub Exploit DB Packet Storm
194543 5.5 MEDIUM
Local 		freebsd freebsd In FreeBSD 13.0-STABLE before n245117, 12.2-STABLE before r369551, 11.4-STABLE before r369559, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, copy-on-write logic failed to in… CWE-416
 Use After Free 		CVE-2021-29626 2024-11-21 15:01 2021-04-8 Show GitHub Exploit DB Packet Storm
194544 7.5 HIGH
Network 		net\
fedoraproject 		\
fedora 		The Net::Netmask module before 2.0000 for Perl does not properly consider extraneous zero characters at the beginning of an IP address string, which (in some situations) allows attackers to bypass ac… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2021-29424 2024-11-21 15:01 2021-04-7 Show GitHub Exploit DB Packet Storm
194545 5.4 MEDIUM
Network 		softing opc_toolbox Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, resulting in JavaScript payload injection into the trace file. This payloa… CWE-79
Cross-site Scripting 		CVE-2021-29661 2024-11-21 15:01 2021-04-3 Show GitHub Exploit DB Packet Storm
194546 8.8 HIGH
Network 		softing opc_toolbox A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows attackers to reset the administrative password by inducing the Administra… CWE-352
 Origin Validation Error 		CVE-2021-29660 2024-11-21 15:01 2021-04-3 Show GitHub Exploit DB Packet Storm
194547 6.1 MEDIUM
Network 		pomerium pomerium Pomerium from version 0.10.0-0.13.3 has an Open Redirect in the user sign-in/out process CWE-601
Open Redirect 		CVE-2021-29652 2024-11-21 15:01 2021-04-2 Show GitHub Exploit DB Packet Storm
194548 6.1 MEDIUM
Network 		pomerium pomerium Pomerium before 0.13.4 has an Open Redirect (issue 1 of 2). CWE-601
Open Redirect 		CVE-2021-29651 2024-11-21 15:01 2021-04-2 Show GitHub Exploit DB Packet Storm
194549 7.5 HIGH
Network 		pikepdf_project
fedoraproject 		pikepdf
fedora 		models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries. CWE-611
XXE 		CVE-2021-29421 2024-11-21 15:01 2021-04-2 Show GitHub Exploit DB Packet Storm
194550 7.5 HIGH
Network 		arenavec_project arenavec An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A drop of uninitialized memory can sometimes occur upon a panic in T::default(). CWE-787
 Out-of-bounds Write 		CVE-2021-29930 2024-11-21 15:01 2021-04-1 Show GitHub Exploit DB Packet Storm