Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249511	5	警告	ヒューレット・パッカード	-	HP Onboard Administrator における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0130	2012-04-9 09:59	2012-04-2	Show	GitHub Exploit DB Packet Storm

249512	7.6	危険	ヒューレット・パッカード	-	HP Onboard Administrator におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0129	2012-04-9 09:55	2012-04-2	Show	GitHub Exploit DB Packet Storm

249513	5.8	警告	ヒューレット・パッカード	-	HP Onboard Administrator におけるユーザを任意の Web サイトにリダイレクトされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-0128	2012-04-9 09:51	2012-04-2	Show	GitHub Exploit DB Packet Storm

249514	5	警告	GitHub	-	GitHub Enterprise における public_key[user_id] の値を設定される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-2055	2012-04-6 16:21	2012-04-4	Show	GitHub Exploit DB Packet Storm

249515	5	警告	Redmine	-	Redmine における属性を設定される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-2054	2012-04-6 16:21	2012-03-6	Show	GitHub Exploit DB Packet Storm

249516	5	警告	Spree Commerce	-	Spree のセッション Cookie ストアの実装における暗号保護メカニズムを容易に回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-7311	2012-04-6 16:19	2008-08-12	Show	GitHub Exploit DB Packet Storm

249517	5	警告	Spree Commerce	-	Spree における Order ステートの値を設定される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-7310	2012-04-6 16:16	2008-09-16	Show	GitHub Exploit DB Packet Storm

249518	5	警告	Insoshi	-	Insoshi における ForumPost user_id の値を設定される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-7309	2012-04-6 16:15	2008-09-21	Show	GitHub Exploit DB Packet Storm

249519	3.5	注意	OpenBSD	-	OpenSSH の gss-serv.c 内の ssh_gssapi_parse_ename 関数におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-189 数値処理の問題	CVE-2011-5000	2012-04-6 16:00	2012-04-5	Show	GitHub Exploit DB Packet Storm

249520	7.2	危険	F5 Networks	-	F5 FirePass の sudoers ファイルにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2053	2012-04-6 15:53	2012-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196541	6.5	MEDIUM Adjacent	vagrant_project	vagrant	The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in …	-	CVE-2021-21361	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196542	6.1	MEDIUM Network	dell	idrac8_firmware	Dell iDRAC8 versions prior to 2.75.100.75 contain a host header injection vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by injecting arbitrary ‘Host’ hea…	CWE-74 Injection	CVE-2021-21510	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196543	8.8	HIGH Network	dell	emc_powerscale_onefs	PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in its API handler. An un-authtenticated with ISI_PRIV_SYS_SUPPORT and ISI_PRIV_LOGIN_PAPI privileges could potent…	CWE-20 Improper Input Validation	CVE-2021-21506	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196544	5.3	MEDIUM Network	zope	products.genericsetup	Products.GenericSetup is a mini-framework for expressing the configured state of a Zope Site as a set of filesystem artifacts. In Products.GenericSetup before version 2.1.1 there is an information di…	-	CVE-2021-21360	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196545	7.8	HIGH Local	dell	emc_powerscale_onefs	PowerScale OneFS 8.1.2,8.2.2 and 9.1.0 contains an improper input sanitization issue in a command. The Compadmin user could potentially exploit this vulnerability, leading to potential privileges esc…	CWE-78 OS Command	CVE-2021-21503	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196546	6.1	MEDIUM Network	zope	products.pluggableauthservice	Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an open redirect vulnerability. A maliciou…	-	CVE-2021-21337	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196547	9.8	CRITICAL Network	spnego_http_authentication_module_project	spnego_http_authentication_module	In the SPNEGO HTTP Authentication Module for nginx (spnego-http-auth-nginx-module) before version 1.1.1 basic Authentication can be bypassed using a malformed username. This affects users of spnego-h…	-	CVE-2021-21335	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196548	9.8	CRITICAL Network	ratcf	ratcf	RATCF is an open-source framework for hosting Cyber-Security Capture the Flag events. In affected versions of RATCF users with multi factor authentication enabled are able to log in without a valid t…	-	CVE-2021-21329	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196549	6.5	MEDIUM Network	zope plone	products.pluggableauthservice plone	Products.PluggableAuthService is a pluggable Zope authentication and authorization framework. In Products.PluggableAuthService before version 2.6.0 there is an information disclosure vulnerability - …	-	CVE-2021-21336	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm

196550	6.5	MEDIUM Network	minio	minio	MinIO is an open-source high performance object storage service and it is API compatible with Amazon S3 cloud storage service. In MinIO before version RELEASE.2021-03-04T00-53-13Z it is possible to b…	CWE-863 Incorrect Authorization	CVE-2021-21362	2024-11-21 14:48	2021-03-9	Show	GitHub Exploit DB Packet Storm