Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 249651 | 4.4 | 警告 | Debian | - | Debian GNU/Linux 上で稼働する apache2 におけるクロスサイトスクリプティング (XSS) 攻撃を誘発される脆弱性 |
CWE-DesignError
|
CVE-2012-0216 | 2012-04-24 16:05 | 2012-04-15 | Show | GitHub Exploit DB Packet Storm |
| 249652 | 4.3 | 警告 | TeamPass | - | TeamPass の sources/users.queries.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2234 | 2012-04-24 15:59 | 2012-04-22 | Show | GitHub Exploit DB Packet Storm |
| 249653 | 4.3 | 警告 | WordPress.org | - | WordPress の wp-comments-post.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2404 | 2012-04-24 15:51 | 2012-04-21 | Show | GitHub Exploit DB Packet Storm |
| 249654 | 4.3 | 警告 | WordPress.org | - | WordPress の wp-includes/formatting.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-2403 | 2012-04-24 15:49 | 2012-04-21 | Show | GitHub Exploit DB Packet Storm |
| 249655 | 5.5 | 警告 | WordPress.org | - | WordPress の wp-admin/plugins.php におけるアクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-2402 | 2012-04-24 15:43 | 2012-04-21 | Show | GitHub Exploit DB Packet Storm |
| 249656 | 5 | 警告 | WordPress.org Moxiecode Systems |
- | WordPress および他の製品で使用される Plupload における同一生成元ポリシーを回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-2401 | 2012-04-24 15:35 | 2012-04-21 | Show | GitHub Exploit DB Packet Storm |
| 249657 | 10 | 危険 | WordPress.org | - | WordPress の wp-includes/js/swfobject.js における詳細不明な脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-2400 | 2012-04-24 15:27 | 2012-04-21 | Show | GitHub Exploit DB Packet Storm |
| 249658 | 6.8 | 警告 | ジャストシステム | - | 複数のジャストシステム製品における DLL 読み込みに関する脆弱性 |
CWE-Other
その他 |
CVE-2012-1242 | 2012-04-24 12:00 | 2012-04-24 | Show | GitHub Exploit DB Packet Storm |
| 249659 | 5 | 警告 | CA Technologies | - | Windows 上で稼働する CA ARCserve Backup におけるサービス運用妨害 (サービスシャットダウン) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2012-1662 | 2012-04-23 15:35 | 2012-03-20 | Show | GitHub Exploit DB Packet Storm |
| 249660 | 6.5 | 警告 | Ryan Walberg | - | PHP Gift Registry の users.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-2236 | 2012-04-23 14:41 | 2012-04-20 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 4, 2026, 4:17 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196171 | 5.9 |
MEDIUM
Network |
haxx fedoraproject debian netapp oracle siemens apple splunk |
curl fedora debian_linux cloud_backup clustered_data_ontap h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware h410s_firmware
When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, the server can respond and send back multiple responses at once that c…
|
CWE-345
|
Insufficient Verification of Data Authenticity
CVE-2021-22947
|
2024-11-21 14:50 |
2021-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 196172 | 7.5 |
HIGH
Network |
haxx debian fedoraproject netapp oracle apple siemens splunk |
curl debian_linux fedora cloud_backup snapcenter oncommand_workflow_automation oncommand_insight clustered_data_ontap h300s_firmware h500s_firmware h700s_firmware h30… |
A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command line or`CURLOPT_USE_SSL` set to `CURLUSES… |
CWE-319
Cleartext Transmission of Sensitive Information |
CVE-2021-22946 | 2024-11-21 14:50 | 2021-09-30 | Show | GitHub Exploit DB Packet Storm |
| 196173 | 4.9 |
MEDIUM
Network |
microfocus | netiq_directory_and_resource_administrator | Unauthorized information security disclosure vulnerability on Micro Focus Directory and Resource Administrator (DRA) product, affecting all DRA versions prior to 10.1 Patch 1. The vulnerability could… |
CWE-863
Incorrect Authorization |
CVE-2021-22535 | 2024-11-21 14:50 | 2021-09-28 | Show | GitHub Exploit DB Packet Storm |
| 196174 | 9.8 |
CRITICAL
Network |
github | enterprise_server | An improper access control vulnerability in GitHub Enterprise Server allowed a workflow job to execute in a self-hosted runner group it should not have had access to. This affects customers using sel… |
CWE-287
Improper Authentication |
CVE-2021-22869 | 2024-11-21 14:50 | 2021-09-25 | Show | GitHub Exploit DB Packet Storm |
| 196175 | 4.3 |
MEDIUM
Network |
github | enterprise_server | A path traversal vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration options used by GitHub Pages were no… |
CWE-22
Path Traversal |
CVE-2021-22868 | 2024-11-21 14:50 | 2021-09-25 | Show | GitHub Exploit DB Packet Storm |
| 196176 | 9.1 |
CRITICAL
Network |
haxx fedoraproject netapp oracle apple siemens debian splunk |
libcurl fedora cloud_backup clustered_data_ontap mysql_server h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware h410s_firmware… |
When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call t… |
CWE-415
Double Free |
CVE-2021-22945 | 2024-11-21 14:50 | 2021-09-23 | Show | GitHub Exploit DB Packet Storm |
| 196177 | 9.8 |
CRITICAL
Network |
citrix | sharefile_storagezones_controller | Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely compromise the storage zones controller. |
NVD-CWE-Other
|
CVE-2021-22941 | 2024-11-21 14:50 | 2021-09-23 | Show | GitHub Exploit DB Packet Storm |
| 196178 | 5.4 |
MEDIUM
Network |
microfocus | access_manager | Reflected Cross Site Scripting (XSS) vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 |
CWE-79
Cross-site Scripting |
CVE-2021-22528 | 2024-11-21 14:50 | 2021-09-13 | Show | GitHub Exploit DB Packet Storm |
| 196179 | 7.5 |
HIGH
Network |
microfocus | access_manager | Information leakage vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 |
NVD-CWE-noinfo
|
CVE-2021-22527 | 2024-11-21 14:50 | 2021-09-13 | Show | GitHub Exploit DB Packet Storm |
| 196180 | 6.1 |
MEDIUM
Network |
microfocus | access_manager | Open Redirection vulnerability in NetIQ Access Manager prior to 5.0.1 and 4.5.4 |
CWE-601
Open Redirect |
CVE-2021-22526 | 2024-11-21 14:50 | 2021-09-13 | Show | GitHub Exploit DB Packet Storm |