Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251741 | 4.3 | 警告 | BE User Switch | - | TYPO3 用 BE User Switch エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1084 | 2012-02-17 14:39 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251742 | 6.8 | 警告 | Terminal PHP Shell | - | TYPO3 用 Terminal PHP Shell エクステンションにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-1083 | 2012-02-17 14:38 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251743 | 3.5 | 注意 | Terminal PHP Shell | - | TYPO3 用 Terminal PHP Shell エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1082 | 2012-02-17 14:37 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251744 | 4.3 | 警告 | Roderick Braun | - | TYPO3 用 Yet another Google search エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1081 | 2012-02-17 14:37 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251745 | 4.3 | 警告 | Euro Calculator | - | TYPO3 用 Euro Calculator エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1080 | 2012-02-17 14:36 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251746 | 6.5 | 警告 | Helut Hummel | - | TYPO3 用 Webservices for TYPO3 エクステンションにおける任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2012-1079 | 2012-02-17 14:36 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251747 | 5 | 警告 | Claus Due | - | TYPO3 用 System Utilities エクステンションにおける重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-1078 | 2012-02-17 14:35 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251748 | 7.5 | 危険 | Bluechip Software | - | TYPO3 用 Post data records to Facebook エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-1077 | 2012-02-17 14:34 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251749 | 4.3 | 警告 | Robert Gonda | - | TYPO3 用 Documents download エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1076 | 2012-02-17 14:34 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251750 | 7.5 | 危険 | Robert Gonda | - | TYPO3 用 Documents download エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-1075 | 2012-02-17 14:33 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195581 | 6.1 |
MEDIUM
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality… |
CWE-79
Cross-site Scripting |
CVE-2021-20493 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195582 | 7.5 |
HIGH
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339. |
CWE-521
Weak Password Requirements |
CVE-2021-20470 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195583 | 7.5 |
HIGH
Network |
ibm | qradar_security_information_and_event_manager | IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196074. |
CWE-326
Inadequate Encryption Strength |
CVE-2021-20400 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195584 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R… |
CWE-20
Improper Input Validation |
CVE-2021-20611 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195585 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120S… |
NVD-CWE-Other
|
CVE-2021-20610 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195586 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R … |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20609 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195587 | 7.5 |
HIGH
Network |
mitsubishielectric |
gt_softgot2000 got_simple_gs2110-wtbd_firmware got_simple_gs2107-wtbd_firmware got2000_gt2104-rtbd_firmware got2000_gt2103-pmbd_firmware got2000_gt2103-pmbds_firmware got2000_gt2103… |
Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versio… |
CWE-20
Improper Input Validation |
CVE-2021-20601 | 2024-11-21 14:46 | 2021-11-24 | Show | GitHub Exploit DB Packet Storm |
| 195588 | 5.3 |
MEDIUM
Network |
ibm | planning_analytics | IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain … |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2021-20526 | 2024-11-21 14:46 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 195589 | 7.5 |
HIGH
Network |
mitsubishielectric |
r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware |
Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and M… | - | CVE-2021-20599 | 2024-11-21 14:46 | 2021-10-15 | Show | GitHub Exploit DB Packet Storm |
| 195590 | 5.9 |
MEDIUM
Network |
mitsubishielectric | r12ccpu-v_firmware | Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-o… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20600 | 2024-11-21 14:46 | 2021-10-9 | Show | GitHub Exploit DB Packet Storm |