Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 251781 | 6 | 警告 | Flyspray | - | Flyspray におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-1058 | 2012-02-15 15:50 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251782 | 6 | 警告 | Sean Robertson | - | Drupal 用 Forward モジュールのクリックスルートラッキング機能におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-1057 | 2012-02-15 15:49 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251783 | 5 | 警告 | Sean Robertson | - | Drupal 用 Forward モジュールにおけるノードタイトルを取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2012-1056 | 2012-02-15 15:48 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251784 | 6.8 | 警告 | Computerinsel GmbH | - | PhotoLine におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2012-1055 | 2012-02-15 15:47 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251785 | 6 | 警告 | Mibew | - | Mibew Messenger におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2012-0829 | 2012-02-15 15:26 | 2012-02-14 | Show | GitHub Exploit DB Packet Storm |
| 251786 | 4.3 | 警告 | delicious days | - | cforms II におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-3977 | 2012-02-15 14:01 | 2012-02-15 | Show | GitHub Exploit DB Packet Storm |
| 251787 | 7.5 | 危険 | Ing. Punzenberger COPA-DATA GmbH | - | Ing. Punzenberger COPA-DATA zenon の ZenSysSrv.exe におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-4534 | 2012-02-14 15:21 | 2012-02-10 | Show | GitHub Exploit DB Packet Storm |
| 251788 | 7.5 | 危険 | Ing. Punzenberger COPA-DATA GmbH | - | Ing. Punzenberger COPA-DATA zenon の zenAdminSrv.exe におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-4533 | 2012-02-14 15:20 | 2012-02-10 | Show | GitHub Exploit DB Packet Storm |
| 251789 | 6.8 | 警告 | Invensys | - | Invensys Wonderware HMI Reports における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-4039 | 2012-02-14 15:11 | 2012-02-10 | Show | GitHub Exploit DB Packet Storm |
| 251790 | 4.3 | 警告 | Invensys | - | Invensys Wonderware HMI Reports におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4038 | 2012-02-14 15:10 | 2012-02-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195581 | 6.1 |
MEDIUM
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality… |
CWE-79
Cross-site Scripting |
CVE-2021-20493 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195582 | 7.5 |
HIGH
Network |
ibm netapp |
cognos_analytics oncommand_insight |
IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339. |
CWE-521
Weak Password Requirements |
CVE-2021-20470 | 2024-11-21 14:46 | 2021-12-4 | Show | GitHub Exploit DB Packet Storm |
| 195583 | 7.5 |
HIGH
Network |
ibm | qradar_security_information_and_event_manager | IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196074. |
CWE-326
Inadequate Encryption Strength |
CVE-2021-20400 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195584 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R… |
CWE-20
Improper Input Validation |
CVE-2021-20611 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195585 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120S… |
NVD-CWE-Other
|
CVE-2021-20610 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195586 | 7.5 |
HIGH
Network |
mitsubishi |
melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec… |
Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R … |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20609 | 2024-11-21 14:46 | 2021-12-2 | Show | GitHub Exploit DB Packet Storm |
| 195587 | 7.5 |
HIGH
Network |
mitsubishielectric |
gt_softgot2000 got_simple_gs2110-wtbd_firmware got_simple_gs2107-wtbd_firmware got2000_gt2104-rtbd_firmware got2000_gt2103-pmbd_firmware got2000_gt2103-pmbds_firmware got2000_gt2103… |
Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versio… |
CWE-20
Improper Input Validation |
CVE-2021-20601 | 2024-11-21 14:46 | 2021-11-24 | Show | GitHub Exploit DB Packet Storm |
| 195588 | 5.3 |
MEDIUM
Network |
ibm | planning_analytics | IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the HTTPOnly flag. A remote attacker could exploit this vulnerability to obtain … |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2021-20526 | 2024-11-21 14:46 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 195589 | 7.5 |
HIGH
Network |
mitsubishielectric |
r08sfcpu_firmware r16sfcpu_firmware r32sfcpu_firmware r120sfcpu_firmware r08psfcpu_firmware r16psfcpu_firmware r32psfcpu_firmware r120psfcpu_firmware |
Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions "26" and prior and M… | - | CVE-2021-20599 | 2024-11-21 14:46 | 2021-10-15 | Show | GitHub Exploit DB Packet Storm |
| 195590 | 5.9 |
MEDIUM
Network |
mitsubishielectric | r12ccpu-v_firmware | Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-o… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-20600 | 2024-11-21 14:46 | 2021-10-9 | Show | GitHub Exploit DB Packet Storm |