Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224631 4 警告 Open-Xchange - Open-Xchange Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1645 2013-09-6 16:14 2013-03-13 Show GitHub Exploit DB Packet Storm
224632 3.5 注意 Open-Xchange - Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5698 2013-09-6 16:11 2013-06-3 Show GitHub Exploit DB Packet Storm
224633 3.5 注意 Open-Xchange - Open-Xchange App Suite における他のユーザの電子メールの認証情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4790 2013-09-6 16:03 2013-07-31 Show GitHub Exploit DB Packet Storm
224634 4.3 警告 Open-Xchange - Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3106 2013-09-6 15:03 2013-06-3 Show GitHub Exploit DB Packet Storm
224635 4.3 警告 Open-Xchange - Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2583 2013-09-6 14:54 2013-04-17 Show GitHub Exploit DB Packet Storm
224636 5 警告 Open-Xchange - Open-Xchange App Suite および Server のリダイレクトサーブレットにおける CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2582 2013-09-6 14:47 2013-04-17 Show GitHub Exploit DB Packet Storm
224637 5.8 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Archer GRC におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3277 2013-09-6 12:06 2013-09-3 Show GitHub Exploit DB Packet Storm
224638 6.8 警告 シスコシステムズ - Cisco Global Site Selector の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5471 2013-09-6 11:49 2013-09-4 Show GitHub Exploit DB Packet Storm
224639 6.8 警告 ShareThis - WordPress 用 ShareThis プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3479 2013-09-6 11:44 2013-08-27 Show GitHub Exploit DB Packet Storm
224640 4.3 警告 シスコシステムズ - Cisco Prime NCS および Cisco WCS にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5990 2013-09-5 19:40 2013-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199281 5.5 MEDIUM
Local 		huawei honor_10_firmware Huawei Honor 10 smartphones with versions earlier than 10.0.0.178(C00E178R1P4) have a denial of service vulnerability. Certain service in the system does not sufficiently validate certain parameter w… CWE-20
 Improper Input Validation  		CVE-2020-9255 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199282 7.8 HIGH
Local 		huawei p30_pro_firmware HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a logic chec… CWE-20
 Improper Input Validation  		CVE-2020-9254 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199283 5.5 MEDIUM
Local 		huawei moana-al00b_firmware Huawei Smart Phones Moana-AL00B with versions earlier than 10.1.0.166 have a missing initialization of resource vulnerability. An attacker tricks the user into installing then running a crafted appli… CWE-909
 Missing Initialization of Resource 		CVE-2020-9227 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199284 8.8 HIGH
Network 		huawei p30_pro_firmware HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a buffer ove… CWE-120
Classic Buffer Overflow 		CVE-2020-9257 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199285 2.3 LOW
Local 		huawei mate_20_firmware
mate_20_x_firmware
mate_20_rs_firmware
magic2_firmware 		HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate 20 RS versions earlier than 10.1.0.160(C786E160R3P8), and Hon… CWE-22
Path Traversal 		CVE-2020-9252 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199286 3.3 LOW
Local 		huawei cloudengine_12800_firmware
cloudengine_5800_firmware
cloudengine_6800_firmware
cloudengine_7800_firmware 		There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An atta… NVD-CWE-noinfo
CVE-2020-9102 2024-11-21 14:40 2020-07-18 Show GitHub Exploit DB Packet Storm
199287 6.1 MEDIUM
Network 		apache airflow An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the "classic" UI. CWE-79
Cross-site Scripting 		CVE-2020-9485 2024-11-21 14:40 2020-07-17 Show GitHub Exploit DB Packet Storm
199288 5.4 MEDIUM
Network 		silverstripe silverstripe In SilverStripe through 4.5, malicious users with a valid Silverstripe CMS login (usually CMS access) can craft profile information which can lead to XSS for other users through specially crafted log… CWE-79
Cross-site Scripting 		CVE-2020-9311 2024-11-21 14:40 2020-07-16 Show GitHub Exploit DB Packet Storm
199289 8.8 HIGH
Network 		silverstripe recipe
mimevalidator 		Silverstripe CMS through 4.5 can be susceptible to script execution from malicious upload contents under allowed file extensions (for example HTML code in a TXT file). When these files are stored as … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-9309 2024-11-21 14:40 2020-07-16 Show GitHub Exploit DB Packet Storm
199290 6.1 MEDIUM
Network 		apache ofbiz XML-RPC request are vulnerable to unsafe deserialization and Cross-Site Scripting issues in Apache OFBiz 17.12.03 CWE-79
CWE-502
Cross-site Scripting
 Deserialization of Untrusted Data 		CVE-2020-9496 2024-11-21 14:40 2020-07-16 Show GitHub Exploit DB Packet Storm