Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224441	3.3	注意	libimobiledevice	-	libimobiledevice の userpref.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2013-2142	2014-01-22 16:31	2013-08-14	Show	GitHub Exploit DB Packet Storm

224442	2.6	注意	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0244	2014-01-22 16:31	2013-01-16	Show	GitHub Exploit DB Packet Storm

224443	2.7	注意	Fabrice Bellard Xen プロジェクト	-	Xen および QEMU の qemu-xen の qdisk PV ディスクバックエンドにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-4375	2014-01-22 16:22	2013-10-10	Show	GitHub Exploit DB Packet Storm

224444	1.9	注意	Linux	-	Linux Kernel の drivers/net/hamradio/yam.c の yam_ioctl 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1446	2014-01-22 16:05	2014-01-15	Show	GitHub Exploit DB Packet Storm

224445	2.1	注意	Linux	-	Linux Kernel の drivers/net/wan/wanxl.c の wanxl_ioctl 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1445	2014-01-22 16:04	2014-01-15	Show	GitHub Exploit DB Packet Storm

224446	1.7	注意	Linux	-	Linux Kernel の drivers/net/wan/farsync.c の fst_get_iface 関数における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2014-1444	2014-01-22 16:04	2014-01-15	Show	GitHub Exploit DB Packet Storm

224447	4.7	警告	Linux	-	AMD K7 および K8 プラットフォーム上で稼働する Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1438	2014-01-22 16:03	2014-01-15	Show	GitHub Exploit DB Packet Storm

224448	9.3	危険	Hexagon	-	Intergraph ERDAS ER Viewer の ermapper_u.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3483	2014-01-22 14:56	2013-05-27	Show	GitHub Exploit DB Packet Storm

224449	9.3	危険	Hexagon	-	Intergraph ERDAS ER Viewer の ermapper_u.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3482	2014-01-22 14:54	2013-05-27	Show	GitHub Exploit DB Packet Storm

224450	5	警告	Puppet Canonical オラクル	-	Puppet における SSLv2 ダウングレード攻撃を実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-1654	2014-01-22 14:17	2013-03-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211211	7.8	HIGH Local	siemens	jt2go teamcenter_visualization solid_edge	A vulnerability has been identified in JT2Go (All versions < V13.1.0.1), Solid Edge SE2020 (All Versions < SE2020MP12), Solid Edge SE2021 (All Versions < SE2021MP2), Teamcenter Visualization (All ver…	-	CVE-2020-28383	2024-11-21 14:22	2021-01-13	Show	GitHub Exploit DB Packet Storm

211212	5.3	MEDIUM Network	rocket.chat	rocket.chat	An email address enumeration vulnerability exists in the password reset function of Rocket.Chat through 3.9.1.	CWE-203 Information Exposure Through Discrepancy	CVE-2020-28208	2024-11-21 14:22	2021-01-9	Show	GitHub Exploit DB Packet Storm

211213	9.8	CRITICAL Network	pwntools_project	pwntools	This affects the package pwntools before 4.3.1. The shellcraft generator for affected versions of this module are vulnerable to Server-Side Template Injection (SSTI), which can lead to remote code ex…	CWE-74 Injection	CVE-2020-28468	2024-11-21 14:22	2021-01-8	Show	GitHub Exploit DB Packet Storm

211214	9.8	CRITICAL Network	djv_project	djv	This affects the package djv before 2.1.4. By controlling the schema file, an attacker can run arbitrary JavaScript code on the victim machine.	CWE-94 Code Injection	CVE-2020-28464	2024-11-21 14:22	2021-01-4	Show	GitHub Exploit DB Packet Storm

211215	6.5	MEDIUM Network	mantisbt	mantisbt	In MantisBT 2.24.3, SQL Injection can occur in the parameter "access" of the mc_project_get_users function through the API SOAP.	CWE-89 SQL Injection	CVE-2020-28413	2024-11-21 14:22	2020-12-31	Show	GitHub Exploit DB Packet Storm

211216	7.5	HIGH Network	tenda	ac1200_firmware	On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, a large HTTP POST request sent to the change password API will trigger the router to crash and enter an infinite boot loop.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-28095	2024-11-21 14:22	2020-12-31	Show	GitHub Exploit DB Packet Storm

211217	6.1	MEDIUM Network	sapplica	sentrifugo	Sentrifugo 3.2 allows Stored Cross-Site Scripting (XSS) vulnerability by inserting a payload within the X-Forwarded-For HTTP header during the login process. When an administrator looks at logs, the …	CWE-79 Cross-site Scripting	CVE-2020-28365	2024-11-21 14:22	2020-12-31	Show	GitHub Exploit DB Packet Storm

211218	9.8	CRITICAL Network	libnested_project	libnested	Prototype pollution vulnerability in 'libnested' versions 0.0.0 through 1.5.0 allows an attacker to cause a denial of service and may lead to remote code execution.	NVD-CWE-Other	CVE-2020-28283	2024-11-21 14:22	2020-12-30	Show	GitHub Exploit DB Packet Storm

211219	9.8	CRITICAL Network	getobject_project	getobject	Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.	NVD-CWE-Other	CVE-2020-28282	2024-11-21 14:22	2020-12-30	Show	GitHub Exploit DB Packet Storm

211220	9.8	CRITICAL Network	set-object-value_project	set-object-value	Prototype pollution vulnerability in 'set-object-value' versions 0.0.0 through 0.0.5 allows an attacker to cause a denial of service and may lead to remote code execution.	NVD-CWE-noinfo	CVE-2020-28281	2024-11-21 14:22	2020-12-30	Show	GitHub Exploit DB Packet Storm