Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249021	3.5	注意	Geoff Davies	-	Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2340	2012-05-23 19:12	2012-05-21	Show	GitHub Exploit DB Packet Storm

249022	4.3	警告	Nancy Wichmann	-	Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2339	2012-05-23 19:00	2012-05-21	Show	GitHub Exploit DB Packet Storm

249023	2.6	注意	Ishmael Sanchez	-	Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2907	2012-05-23 18:57	2012-05-21	Show	GitHub Exploit DB Packet Storm

249024	5	警告	mark pilgrim	-	Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-2921	2012-05-23 18:50	2012-05-2	Show	GitHub Exploit DB Packet Storm

249025	4.3	警告	Weston Ruter	-	WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2920	2012-05-23 18:48	2012-05-21	Show	GitHub Exploit DB Packet Storm

249026	4.3	警告	Andrew Killen	-	WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2917	2012-05-23 18:47	2012-05-21	Show	GitHub Exploit DB Packet Storm

249027	4.3	警告	dlo	-	WordPress 用 Sabre プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2916	2012-05-23 18:46	2012-05-21	Show	GitHub Exploit DB Packet Storm

249028	4.3	警告	Hind	-	WordPress 用 Leaflet プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2913	2012-05-23 18:41	2012-05-21	Show	GitHub Exploit DB Packet Storm

249029	4.3	警告	Kolja Schleich	-	WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2912	2012-05-23 18:25	2012-05-21	Show	GitHub Exploit DB Packet Storm

249030	5	警告	Chevereto Software	-	Chevereto の Upload/engine.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-2919	2012-05-23 18:19	2012-05-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197271	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 48 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20143	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197272	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 41 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20142	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197273	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 32 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20141	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197274	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 10 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20140	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197275	6.1	MEDIUM Network	ibm netapp	cognos_analytics oncommand_insight	IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality…	CWE-79 Cross-site Scripting	CVE-2021-20493	2024-11-21 14:46	2021-12-4	Show	GitHub Exploit DB Packet Storm

197276	7.5	HIGH Network	ibm netapp	cognos_analytics oncommand_insight	IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339.	CWE-521 Weak Password Requirements	CVE-2021-20470	2024-11-21 14:46	2021-12-4	Show	GitHub Exploit DB Packet Storm

197277	7.5	HIGH Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196074.	CWE-326 Inadequate Encryption Strength	CVE-2021-20400	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197278	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R…	CWE-20 Improper Input Validation	CVE-2021-20611	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197279	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120S…	NVD-CWE-Other	CVE-2021-20610	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197280	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R …	CWE-400 Uncontrolled Resource Consumption	CVE-2021-20609	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm