Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249311 | 4.3 | 警告 | マイクロソフト | - | Microsoft Internet Explorer における異なるドメインまたはゾーンからコンテンツを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2012-1882 | 2012-06-15 16:18 | 2012-06-12 | Show | GitHub Exploit DB Packet Storm |
| 249312 | 5 | 警告 | Poul-Henning Kamp | - | Poul-Henning Kamp md5crypt における平文パスワードを検出される脆弱性 |
CWE-310
暗号の問題 |
CVE-2012-3287 | 2012-06-15 15:55 | 2012-06-7 | Show | GitHub Exploit DB Packet Storm |
| 249313 | 3.5 | 注意 | EFS Technology | - | AutoFORM PDM Archive におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1829 | 2012-06-15 15:24 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249314 | 6.5 | 警告 | EFS Technology | - | AutoFORM PDM Archive の管理機能における管理者操作を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-1828 | 2012-06-15 15:22 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249315 | 6.5 | 警告 | EFS Technology | - | AutoFORM PDM Archive の Web サービスにおけるデータベース操作を実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-1827 | 2012-06-15 15:17 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249316 | 4.9 | 警告 | Linux | - | 32-bit プラットフォーム上の Linux Kernel の i915_gem_do_execbuffer 関数における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2012-2384 | 2012-06-15 14:58 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249317 | 4.6 | 警告 | Linux | - | Linux Kernel の NFSv4 の実装におけるサービス運用妨害 (OOPS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2012-2375 | 2012-06-15 14:53 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249318 | 2.1 | 注意 | Linux | - | Linux Kernel の kernel/taskstats.c における重要な I/O 統計を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-2494 | 2012-06-15 13:47 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249319 | 2.1 | 注意 | Linux | - | Linux Kernel の ext4_fill_super 関数におけるサービス運用妨害 (OOPS) の脆弱性 |
CWE-Other
その他 |
CVE-2011-2493 | 2012-06-15 13:43 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
| 249320 | 7.2 | 危険 | Linux | - | Alpha プラットフォーム上の Linux Kernel の osf_wait4 関数における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-2211 | 2012-06-15 13:41 | 2012-06-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196471 | 9.1 |
CRITICAL
Network |
apache netapp debian oracle |
xmlbeans snap_creator_framework snapmanager oncommand_unified_manager_core_package debian_linux peoplesoft_enterprise_peopletools middleware_common_libraries_and_tools |
The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion att… |
CWE-776
XML Entity Expansion |
CVE-2021-23926 | 2024-11-21 14:52 | 2021-01-15 | Show | GitHub Exploit DB Packet Storm |
| 196472 | 5.9 |
MEDIUM
Network |
apache debian oracle |
tomcat debian_linux agile_plm |
When serving resources from a network location using the NTFS file system, Apache Tomcat versions 10.0.0-M1 to 10.0.0-M9, 9.0.0.M1 to 9.0.39, 8.5.0 to 8.5.59 and 7.0.0 to 7.0.106 were susceptible to … |
CWE-706
Use of Incorrectly-Resolved Name or Reference |
CVE-2021-24122 | 2024-11-21 14:52 | 2021-01-15 | Show | GitHub Exploit DB Packet Storm |
| 196473 | 7.5 |
HIGH
Network |
owasp | json-sanitizer | OWASP json-sanitizer before 1.2.2 can output invalid JSON or throw an undeclared exception for crafted input. This may lead to denial of service if the application is not prepared to handle these sit… |
NVD-CWE-noinfo
|
CVE-2021-23900 | 2024-11-21 14:52 | 2021-01-14 | Show | GitHub Exploit DB Packet Storm |
| 196474 | 9.8 |
CRITICAL
Network |
owasp | json-sanitizer | OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents. |
CWE-611
XXE |
CVE-2021-23899 | 2024-11-21 14:52 | 2021-01-14 | Show | GitHub Exploit DB Packet Storm |
| 196475 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via the subject of a task. |
CWE-79
Cross-site Scripting |
CVE-2021-23936 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |
| 196476 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via an appointment in which the location contains JavaScript code. |
CWE-79
Cross-site Scripting |
CVE-2021-23935 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |
| 196477 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via a contact whose name contains JavaScript code. |
CWE-79
Cross-site Scripting |
CVE-2021-23934 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |
| 196478 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via JavaScript in a Note referenced by a mail:// URL. |
CWE-79
Cross-site Scripting |
CVE-2021-23933 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |
| 196479 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via an inline image with a crafted filename. |
CWE-79
Cross-site Scripting |
CVE-2021-23932 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |
| 196480 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.4 allows XSS via an inline binary file. |
CWE-79
Cross-site Scripting |
CVE-2021-23931 | 2024-11-21 14:52 | 2021-01-13 | Show | GitHub Exploit DB Packet Storm |