Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224821 4 警告 ヒューレット・パッカード - HP System Management Homepage におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2357 2013-07-23 14:59 2013-07-18 Show GitHub Exploit DB Packet Storm
224822 5 警告 ヒューレット・パッカード - HP System Management Homepage における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-2356 2013-07-23 14:58 2013-07-18 Show GitHub Exploit DB Packet Storm
224823 5 警告 ヒューレット・パッカード - HP System Management Homepage におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5217 2013-07-23 14:55 2013-07-18 Show GitHub Exploit DB Packet Storm
224824 6.8 警告 Markus Blaschke - TYPO3 用 TEQneers SEO Enhancements エクステンションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4871 2013-07-23 14:44 2013-06-3 Show GitHub Exploit DB Packet Storm
224825 7.5 危険 News Search Project - TYPO3 用 News Search エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4870 2013-07-23 14:43 2013-01-28 Show GitHub Exploit DB Packet Storm
224826 4.3 警告 NashTech - Easy PHP Calendar の index.php および datePicker.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1955 2013-07-23 14:38 2013-04-12 Show GitHub Exploit DB Packet Storm
224827 4.3 警告 マカフィー - McAfee ePolicy Orchestrator におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-0141 2013-07-22 18:52 2013-04-22 Show GitHub Exploit DB Packet Storm
224828 7.9 危険 マカフィー - McAfee ePolicy Orchestrator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0140 2013-07-22 18:50 2013-04-22 Show GitHub Exploit DB Packet Storm
224829 4.3 警告 Moxiecode Systems AB
SWFUpload Project
WordPress.org		 - WordPress および TinyMCE Image Manager などの製品で使用される SWFUpload におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3414 2013-07-22 16:58 2012-05-17 Show GitHub Exploit DB Packet Storm
224830 6.4 警告 IBM - IBM API Management におけるテナント API へアクセスされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-0559 2013-07-22 16:33 2013-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199391 7.5 HIGH
Network 		ntracker ntracker_usb_enterprise A SQL-Injection vulnerability in the nTracker USB Enterprise(secure USB management solution) allows a remote unauthenticated attacker to perform SQL query to access username password and other sessio… CWE-89
SQL Injection 		CVE-2020-7819 2024-11-21 14:37 2021-09-8 Show GitHub Exploit DB Packet Storm
199392 8.8 HIGH
Network 		mastersoft zook_agent
zook_viewer 		A buffer overflow issue was discovered in ZOOK solution(remote administration tool) through processing 'ConnectMe' command while parsing a crafted OUTERIP value because of missing boundary check. Thi… CWE-120
Classic Buffer Overflow 		CVE-2020-7877 2024-11-21 14:37 2021-09-7 Show GitHub Exploit DB Packet Storm
199393 8.8 HIGH
Network 		raonwiz raon_k_upload A vulnerability in File Transfer Solution of Raonwiz could allow arbitrary command execution as the result of viewing a specially-crafted web page. This vulnerability is due to insufficient validatio… CWE-20
 Improper Input Validation  		CVE-2020-7863 2024-11-21 14:37 2021-08-6 Show GitHub Exploit DB Packet Storm
199394 5.4 MEDIUM
Network 		sage syracuse Sage X3 Stored XSS Vulnerability on ‘Edit’ Page of User Profile. An authenticated user can pass XSS strings the "First Name," "Last Name," and "Email Address" fields of this web application component… CWE-79
Cross-site Scripting 		CVE-2020-7390 2024-11-21 14:37 2021-07-23 Show GitHub Exploit DB Packet Storm
199395 7.2 HIGH
Network 		sage syracuse Sage X3 System CHAINE Variable Script Command Injection. An authenticated user with developer access can pass OS commands via this variable used by the web application. Note, this developer configura… CWE-78
OS Command  		CVE-2020-7389 2024-11-21 14:37 2021-07-23 Show GitHub Exploit DB Packet Storm
199396 9.8 CRITICAL
Network 		sage adxadmin Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authentication request, an attacker can bypass credential validation. While explo… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-7388 2024-11-21 14:37 2021-07-23 Show GitHub Exploit DB Packet Storm
199397 5.3 MEDIUM
Network 		sage adxadmin Sage X3 Installation Pathname Disclosure. A specially crafted packet can elicit a response from the AdxDSrv.exe component that reveals the installation directory of the product. Note that this vulner… NVD-CWE-noinfo
CVE-2020-7387 2024-11-21 14:37 2021-07-23 Show GitHub Exploit DB Packet Storm
199398 9.8 CRITICAL
Network 		tobesoft xplatform When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation CWE-20
 Improper Input Validation  		CVE-2020-7866 2024-11-21 14:37 2021-07-20 Show GitHub Exploit DB Packet Storm
199399 7.8 HIGH
Local 		hmtalk daviewindy DaviewIndy v8.98.7.0 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed format file that is mishandled by DaviewIndy. Attackers could exploit this a… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-7872 2024-11-21 14:37 2021-07-12 Show GitHub Exploit DB Packet Storm
199400 7.2 HIGH
Network 		unidocs ezpdf_reader
ezpdf_editor 		A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This vulnerability exists due to insufficient validation of the parameter. CWE-787
 Out-of-bounds Write 		CVE-2020-7870 2024-11-21 14:37 2021-06-29 Show GitHub Exploit DB Packet Storm