Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 31, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253161 | 4.3 | 警告 | ecoCMS | - | ecoCMS の admin.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-5046 | 2011-11-25 11:40 | 2011-11-23 | Show | GitHub Exploit DB Packet Storm |
| 253162 | 7.5 | 危険 | Alephsystem | - | CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5058 | 2011-11-25 10:14 | 2011-11-23 | Show | GitHub Exploit DB Packet Storm |
| 253163 | 7.5 | 危険 | Alephsystem | - | CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5057 | 2011-11-25 10:13 | 2011-11-23 | Show | GitHub Exploit DB Packet Storm |
| 253164 | 7.5 | 危険 | IXXO Internet Solutions | - | XOBBIX コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-5053 | 2011-11-25 10:08 | 2011-11-23 | Show | GitHub Exploit DB Packet Storm |
| 253165 | 4.3 | 警告 | Joomla! | - | Joomla! におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4332 | 2011-11-25 09:39 | 2011-03-24 | Show | GitHub Exploit DB Packet Storm |
| 253166 | 5 | 警告 | Joomla! | - | Joomla! における任意のユーザのパスワードを変更される脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-4321 | 2011-11-25 09:38 | 2011-10-28 | Show | GitHub Exploit DB Packet Storm |
| 253167 | 7.6 | 危険 | アップル | - | Apple Mac OS X におけるネットワークリソースにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-1516 | 2011-11-24 16:27 | 2011-11-15 | Show | GitHub Exploit DB Packet Storm |
| 253168 | 7.6 | 危険 | アップル | - | Apple Mac OS X におけるネットワークリソースにアクセスされる脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7303 | 2011-11-24 16:27 | 2011-11-15 | Show | GitHub Exploit DB Packet Storm |
| 253169 | 5 | 警告 | IBM Apache Software Foundation アップル サイバートラスト株式会社 富士通 ヒューレット・パッカード ターボリナックス オラクル 日立 レッドハット |
- | Apache HTTP Server の mod_cache および mod_dav モジュールにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-1452 | 2011-11-24 11:00 | 2010-07-25 | Show | GitHub Exploit DB Packet Storm |
| 253170 | 10 | 危険 | トレンドマイクロ IBM Apache Software Foundation アップル サイバートラスト株式会社 富士通 ターボリナックス オラクル レッドハット |
- | APR ライブラリおよび APR-util ライブラリにおける整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2412 | 2011-11-24 10:57 | 2009-08-6 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195081 | 7.5 |
HIGH
Network |
f5 |
big-ip_application_acceleration_manager big-ip_local_traffic_manager big-ip_advanced_web_application_firewall big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_secur… |
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, and 12.1.x before 12.1.6, when an HTTP profile is configured on a virtual server, undisclos… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-23042 | 2024-11-21 14:51 | 2021-09-15 | Show | GitHub Exploit DB Packet Storm |
| 195082 | 6.1 |
MEDIUM
Network |
f5 |
big-ip_access_policy_manager big-ip_application_security_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_domain_name_system
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a DOM based cross-site scripting (XSS) vulnerability exists…
|
CWE-79
|
Cross-site Scripting
CVE-2021-23041
|
2024-11-21 14:51 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 195083 | 6.1 |
MEDIUM
Network |
f5 | big-ip_access_policy_manager | On version 14.1.x before 14.1.4.4 and all versions of 13.1.x, an open redirect vulnerability exists on virtual servers enabled with a BIG-IP APM access policy. This vulnerability allows an unauthenti… |
CWE-601
Open Redirect |
CVE-2021-23052 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195084 | 5.3 |
MEDIUM
Network |
f5 |
big-ip_advanced_web_application_firewall big-ip_application_security_manager |
On version 15.1.x before 15.1.3, 14.1.x before 14.1.3.1, and 13.1.x before 13.1.3.6, when the brute force protection feature of BIG-IP Advanced WAF or BIG-IP ASM is enabled on a virtual server and th… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2021-23053 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195085 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_acceleration_manager big-ip_application_secur… |
On BIG-IP versions 15.1.0.4 through 15.1.3, when the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP on Amazon Web Services (AWS) systems, undisclosed reque… |
NVD-CWE-noinfo
|
CVE-2021-23051 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195086 | 7.5 |
HIGH
Network |
f5 |
big-ip_application_security_manager big-ip_advanced_web_application_firewall nginx_app_protect |
On BIG-IP Advanced WAF and BIG-IP ASM version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3 and NGINX App Protect on all versions before 3.5.0, when a cross-site request forgery (CSRF)-enabled poli… |
NVD-CWE-noinfo
|
CVE-2021-23050 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195087 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_application_security_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_accelerat… |
On BIG-IP version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3, when the iRules RESOLVER::summarize command is used on a virtual server, undisclosed requests can cause an increase in Traffic Manag… |
CWE-400
Uncontrolled Resource Consumption |
CVE-2021-23049 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195088 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.x and 11.6.x, when GPRS Tunneling Protocol (GTP) iRules comm… |
NVD-CWE-noinfo
|
CVE-2021-23048 | 2024-11-21 14:51 | 2021-09-14 | Show | GitHub Exploit DB Packet Storm |
| 195089 | 6.1 |
MEDIUM
Network |
thoughtbot | clearance | This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session[:return_to]. If the value used for return_to contains multiple leadi… |
CWE-601
Open Redirect |
CVE-2021-23435 | 2024-11-21 14:51 | 2021-09-13 | Show | GitHub Exploit DB Packet Storm |
| 195090 | 9.8 |
CRITICAL
Network |
set-value_project oracle |
set-value communications_cloud_native_core_policy |
This affects the package set-value before <2.0.1, >=3.0.0 <4.0.1. A type confusion vulnerability can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arra… |
CWE-843
Type Confusion |
CVE-2021-23440 | 2024-11-21 14:51 | 2021-09-12 | Show | GitHub Exploit DB Packet Storm |