Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229751	6	警告	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0477	2013-02-22 15:58	2013-02-21	Show	GitHub Exploit DB Packet Storm

229752	6.8	警告	シスコシステムズ	-	Cisco Unified MeetingPlace のサーバにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-1128	2013-02-22 12:14	2013-02-11	Show	GitHub Exploit DB Packet Storm

229753	2.6	注意	IBM	-	IBM WebSphere Message Broker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0466	2013-02-21 18:37	2013-02-19	Show	GitHub Exploit DB Packet Storm

229754	3.5	注意	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0457	2013-02-21 18:36	2013-02-15	Show	GitHub Exploit DB Packet Storm

229755	6.5	警告	IBM	-	複数の IBM 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6357	2013-02-21 18:36	2013-02-15	Show	GitHub Exploit DB Packet Storm

229756	6.5	警告	IBM	-	複数の IBM 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6356	2013-02-21 18:35	2013-02-15	Show	GitHub Exploit DB Packet Storm

229757	6.5	警告	IBM	-	複数の IBM 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6355	2013-02-21 18:34	2013-02-15	Show	GitHub Exploit DB Packet Storm

229758	4.3	警告	IBM	-	IBM WebSphere Message Broker におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-119 バッファエラー	CVE-2012-5953	2013-02-21 18:34	2013-02-12	Show	GitHub Exploit DB Packet Storm

229759	5	警告	IBM	-	IBM WebSphere Message Broker における認証されていないメッセージの送信を誘発される脆弱性	CWE-287 不適切な認証	CVE-2012-5952	2013-02-21 18:33	2013-02-12	Show	GitHub Exploit DB Packet Storm

229760	3.5	注意	IBM	-	IBM Netezza の WebAdmin アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5941	2013-02-21 18:29	2013-02-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195281	7.5	HIGH Network	rust-lang	rust	In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. This bug could lead to a buffer overflow.	CWE-252 Unchecked Return Value	CVE-2021-28875	2024-11-21 15:00	2021-04-12	Show	GitHub Exploit DB Packet Storm

195282	7.0	HIGH Local	erlang	erlang\/otp	A local privilege escalation vulnerability was discovered in Erlang/OTP prior to version 23.2.3. By adding files to an existing installation's directory, a local attacker could hijack accounts of oth…	CWE-426 Untrusted Search Path	CVE-2021-29221	2024-11-21 15:00	2021-04-9	Show	GitHub Exploit DB Packet Storm

195283	7.8	HIGH Local	linux fedoraproject debian netapp	linux_kernel fedora debian_linux cloud_backup solidfire hci_management_node h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware<…	BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/…	CWE-77 Command Injection	CVE-2021-29154	2024-11-21 15:00	2021-04-9	Show	GitHub Exploit DB Packet Storm

195284	9.8	CRITICAL Network	nagios	network_analyzer	SQL injection vulnerability in Nagios Network Analyzer before 2.4.3 via the o[col] parameter to api/checks/read/.	CWE-89 SQL Injection	CVE-2021-28925	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195285	6.1	MEDIUM Network	nagios	network_analyzer	Self Authenticated XSS in Nagios Network Analyzer before 2.4.2 via the nagiosna/groups/queries page.	CWE-79 Cross-site Scripting	CVE-2021-28924	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195286	5.5	MEDIUM Local	asus	gputweak_ii	AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to trigger a stack-based buffer overflow. This could enable low-privileged users to achieve Denial of Servi…	CWE-787 Out-of-bounds Write	CVE-2021-28686	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195287	7.8	HIGH Local	asus	gputweak_ii	AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to interact directly with physical memory (by calling one of several driver routines that map physical memo…	NVD-CWE-Other	CVE-2021-28685	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195288	7.8	HIGH Local	libretro	retroarch	The text-to-speech engine in libretro RetroArch for Windows 1.9.0 passes unsanitized input to PowerShell through platform_win32.c via the accessibility_speak_windows function, which allows attackers …	CWE-78 OS Command	CVE-2021-28927	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195289	6.5	MEDIUM Local	linux debian	linux_kernel debian_linux	The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions…	CWE-665 Improper Initialization	CVE-2021-28688	2024-11-21 15:00	2021-04-7	Show	GitHub Exploit DB Packet Storm

195290	5.5	MEDIUM Local	linuxfoundation sylabs	umoci singularity	Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.	CWE-20 Improper Input Validation	CVE-2021-29136	2024-11-21 15:00	2021-04-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed