Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257401 | 5 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-0348 | 2010-01-12 15:01 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257402 | 4.3 | 警告 | 有限会社シースリー | - | WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0349 | 2010-01-12 15:00 | 2010-01-12 | Show | GitHub Exploit DB Packet Storm |
| 257403 | 10 | 危険 | サイバートラスト株式会社 XEmacs |
- | XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2009-2688 | 2010-01-12 14:48 | 2009-08-5 | Show | GitHub Exploit DB Packet Storm |
| 257404 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2009-2746 | 2010-01-12 14:48 | 2009-11-13 | Show | GitHub Exploit DB Packet Storm |
| 257405 | 5 | 警告 | アップル | - | Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 |
CWE-Other
その他 |
CVE-2009-2842 | 2010-01-7 12:09 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 257406 | 5.5 | 警告 | シックス・アパート株式会社 | - | Movable Type におけるアクセス制限回避の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
- | 2010-01-6 15:01 | 2010-01-6 | Show | GitHub Exploit DB Packet Storm |
| 257407 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3135 | 2010-01-6 14:44 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257408 | 5 | 警告 | トレンドマイクロ 日本電気 Apache Software Foundation 富士通 サイバートラスト株式会社 サン・マイクロシステムズ ヒューレット・パッカード レッドハット |
- | Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-0450 | 2010-01-6 14:43 | 2007-03-16 | Show | GitHub Exploit DB Packet Storm |
| 257409 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2009-3133 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
| 257410 | 9.3 | 危険 | マイクロソフト | - | Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-3130 | 2010-01-5 16:18 | 2009-11-10 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 30, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197231 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_quality_manager collaborative_lifecycle_management engineering_test_management rational_engineering_lifecycle_manager engineering_lifecycle_mana… |
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentia… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-20347 | 2024-11-21 14:46 | 2021-06-3 | Show | GitHub Exploit DB Packet Storm |
| 197232 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_quality_manager collaborative_lifecycle_management engineering_test_management rational_engineering_lifecycle_manager engineering_lifecycle_mana… |
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentia… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-20346 | 2024-11-21 14:46 | 2021-06-3 | Show | GitHub Exploit DB Packet Storm |
| 197233 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_quality_manager collaborative_lifecycle_management engineering_test_management rational_engineering_lifecycle_manager engineering_lifecycle_mana… |
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentia… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-20345 | 2024-11-21 14:46 | 2021-06-3 | Show | GitHub Exploit DB Packet Storm |
| 197234 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_quality_manager collaborative_lifecycle_management engineering_test_management rational_engineering_lifecycle_manager engineering_lifecycle_mana… |
IBM Jazz Foundation and IBM Engineering products are vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentia… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-20343 | 2024-11-21 14:46 | 2021-06-3 | Show | GitHub Exploit DB Packet Storm |
| 197235 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_quality_manager collaborative_lifecycle_management engineering_test_management rational_engineering_lifecycle_manager engineering_lifecycle_mana… |
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… |
CWE-79
Cross-site Scripting |
CVE-2021-20338 | 2024-11-21 14:46 | 2021-06-3 | Show | GitHub Exploit DB Packet Storm |
| 197236 | 5.3 |
MEDIUM
Network |
ibm | security_verify_access | IBM Security Verify Access 20.07 could disclose sensitive information in HTTP server headers that could be used in further attacks against the system. IBM X-Force ID: 199398. |
CWE-200
Information Exposure |
CVE-2021-20585 | 2024-11-21 14:46 | 2021-06-1 | Show | GitHub Exploit DB Packet Storm |
| 197237 | 7.5 |
HIGH
Network |
ibm |
application_gateway security_verify_access |
IBM Security Verify Access 20.07 could allow a remote attacker to send a specially crafted HTTP GET request that could cause the application to crash. |
NVD-CWE-noinfo
|
CVE-2021-20576 | 2024-11-21 14:46 | 2021-06-1 | Show | GitHub Exploit DB Packet Storm |
| 197238 | 3.3 |
LOW
Local |
ibm |
application_gateway security_verify_access |
IBM Security Verify Access 20.07 allows web pages to be stored locally which can be read by another user on the system. X-Force ID: 199278. |
CWE-922
Insecure Storage of Sensitive Information |
CVE-2021-20575 | 2024-11-21 14:46 | 2021-06-1 | Show | GitHub Exploit DB Packet Storm |
| 197239 | 4.3 |
MEDIUM
Network |
redhat |
process_automation descision_manager jbpm |
A flaw was found in the BPMN editor in version jBPM 7.51.0.Final. Any authenticated user from any project can see the name of Ruleflow Groups from other projects, despite the user not having access t… |
NVD-CWE-noinfo
|
CVE-2021-20306 | 2024-11-21 14:46 | 2021-06-1 | Show | GitHub Exploit DB Packet Storm |
| 197240 | 7.1 |
HIGH
Network |
openstack redhat |
neutron openstack_platform |
A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersona… | - | CVE-2021-20267 | 2024-11-21 14:46 | 2021-05-29 | Show | GitHub Exploit DB Packet Storm |