Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224721 9.3 危険 FFmpeg - FFmpeg の libavcodec/mjpegdec.c の mjpeg_decode_scan_progressive_ac 関数における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0854 2013-12-11 11:01 2013-07-16 Show GitHub Exploit DB Packet Storm
224722 9.3 危険 FFmpeg - FFmpeg の libavcodec/roqvideodec.c の roq_decode_init 関数における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0849 2013-12-11 10:50 2013-07-16 Show GitHub Exploit DB Packet Storm
224723 9.3 危険 FFmpeg - FFmpeg の libavcodec/qdm2.c の qdm2_decode_super_block 関数における脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0846 2013-12-11 10:36 2013-07-16 Show GitHub Exploit DB Packet Storm
224724 9.3 危険 FFmpeg - FFmpeg の libavcodec/alsdec.c における脆弱性 CWE-119
バッファエラー 		CVE-2013-0845 2013-12-11 10:33 2013-02-7 Show GitHub Exploit DB Packet Storm
224725 9.3 危険 FFmpeg - FFmpeg の libavcodec/adpcm.c の adpcm_decode_frame 関数における脆弱性 CWE-189
数値処理の問題 		CVE-2013-0844 2013-12-11 10:29 2013-02-7 Show GitHub Exploit DB Packet Storm
224726 4.3 警告 Twibright Labs - links における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-6050 2013-12-11 10:17 2013-05-15 Show GitHub Exploit DB Packet Storm
224727 7.5 危険 Wouter Verhelst - Network Block Device の nbd-server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6410 2013-12-11 09:49 2013-11-29 Show GitHub Exploit DB Packet Storm
224728 6.8 警告 Apache Software Foundation - Apache Roller の ActionSupport コントローラの特定の getText メソッドにおける任意の OGNL 式を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4212 2013-12-10 18:28 2013-11-3 Show GitHub Exploit DB Packet Storm
224729 4.3 警告 Apache Software Foundation - Apache Roller におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4171 2013-12-10 18:25 2013-11-3 Show GitHub Exploit DB Packet Storm
224730 6.2 警告 Debian - Debian adequate における tty をハイジャックされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6409 2013-12-10 16:22 2013-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211121 9.1 CRITICAL
Network 		hashicorp nomad HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6 NVD-CWE-noinfo
CVE-2020-27195 2024-11-21 14:20 2020-10-23 Show GitHub Exploit DB Packet Storm
211122 7.5 HIGH
Network 		octopus octopus_deploy An issue was discovered in Octopus Deploy through 2020.4.4. If enabled, the websocket endpoint may allow an untrusted tentacle host to present itself as a trusted one. NVD-CWE-noinfo
CVE-2020-27155 2024-11-21 14:20 2020-10-23 Show GitHub Exploit DB Packet Storm
211123 5.3 MEDIUM
Network 		atomx atomxcms AtomXCMS 2.0 is affected by Arbitrary File Read via admin/dump.php CWE-22
CWE-668
Path Traversal
 Exposure of Resource to Wrong Sphere 		CVE-2020-26650 2024-11-21 14:20 2020-10-23 Show GitHub Exploit DB Packet Storm
211124 8.1 HIGH
Network 		atomx atomxcms_2 AtomXCMS 2.0 is affected by Incorrect Access Control via admin/dump.php CWE-306
CWE-862
Missing Authentication for Critical Function
 Missing Authorization 		CVE-2020-26649 2024-11-21 14:20 2020-10-23 Show GitHub Exploit DB Packet Storm
211125 5.3 MEDIUM
Network 		lightning_network_daemon_project lightning_network_daemon Prior to 0.10.0-beta, LND (Lightning Network Daemon) would have accepted a counterparty high-S signature and broadcast tx-relay invalid local commitment/HTLC transactions. This can be exploited by an… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-26895 2024-11-21 14:20 2020-10-21 Show GitHub Exploit DB Packet Storm
211126 6.1 MEDIUM
Network 		matrix synapse AuthRestServlet in Matrix Synapse before 1.21.0 is vulnerable to XSS due to unsafe interpolation of the session GET parameter. This allows a remote attacker to execute an XSS attack on the domain Syn… CWE-79
Cross-site Scripting 		CVE-2020-26891 2024-11-21 14:20 2020-10-20 Show GitHub Exploit DB Packet Storm
211127 9.8 CRITICAL
Network 		libtaxii_project
eclecticiq 		libtaxii
opentaxii 		TAXII libtaxii through 1.1.117, as used in EclecticIQ OpenTAXII through 0.2.0 and other products, allows SSRF via an initial http:// substring to the parse method, even when the no_network setting is… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-27197 2024-11-21 14:20 2020-10-18 Show GitHub Exploit DB Packet Storm
211128 8.2 HIGH
Network 		lightning_network_daemon_project lightning_network_daemon Prior to 0.11.0-beta, LND (Lightning Network Daemon) had a vulnerability in its invoice database. While claiming on-chain a received HTLC output, it didn't verify that the corresponding outgoing off-… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-26896 2024-11-21 14:20 2020-10-21 Show GitHub Exploit DB Packet Storm
211129 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.8.15. scalar32_min_max_or in kernel/bpf/verifier.c mishandles bounds tracking during use of 64-bit values, aka CID-5b9fbeb75b6a. CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2020-27194 2024-11-21 14:20 2020-10-17 Show GitHub Exploit DB Packet Storm
211130 7.5 HIGH
Network 		apereo central_authentication_service Apereo CAS 5.3.x before 5.3.16, 6.x before 6.1.7.2, 6.2.x before 6.2.4, and 6.3.x before 6.3.0-RC4 mishandles secret keys with Google Authenticator for multifactor authentication. NVD-CWE-noinfo
CVE-2020-27178 2024-11-21 14:20 2020-10-17 Show GitHub Exploit DB Packet Storm