Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224831 4.3 警告 Graphite Project - Graphite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5943 2013-09-30 14:58 2013-08-20 Show GitHub Exploit DB Packet Storm
224832 5 警告 Bitcoin Project - bitcoind および Bitcoin-Qt の Bloom Filter の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2013-5700 2013-09-30 14:54 2013-09-4 Show GitHub Exploit DB Packet Storm
224833 6.8 警告 Graphite Project - Graphite における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-5942 2013-09-30 14:51 2013-08-20 Show GitHub Exploit DB Packet Storm
224834 6.8 警告 Graphite Project - Graphite の graphite-web の render/views.py における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-5093 2013-09-30 14:49 2013-08-20 Show GitHub Exploit DB Packet Storm
224835 4.3 警告 アップル - Apple Mac OS X Server の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1034 2013-09-27 18:10 2013-09-17 Show GitHub Exploit DB Packet Storm
224836 4.3 警告 Inpsyde - WordPress 用 BackWPup プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4626 2013-09-27 14:31 2013-08-12 Show GitHub Exploit DB Packet Storm
224837 5.8 警告 シスコシステムズ - Cisco Unified Computing System の Central Software コンポーネントにおけるデバイス間のデータストリームを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4092 2013-09-27 14:30 2013-09-27 Show GitHub Exploit DB Packet Storm
224838 4.3 警告 シスコシステムズ - Cisco Unified Computing System の FTP サーバにおけるファイルを読まれる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-4088 2013-09-27 14:24 2013-09-26 Show GitHub Exploit DB Packet Storm
224839 5 警告 シスコシステムズ - Cisco Unified Computing System のファブリックインターコネクトコンポーネントの XML API サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-4079 2013-09-27 14:23 2013-09-27 Show GitHub Exploit DB Packet Storm
224840 4.3 警告 Click2Sell - Drupal 用 Click2Sell Suite モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5938 2013-09-27 11:50 2013-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211261 7.8 HIGH
Local 		360 speed_browser 360 Speed Browser 12.0.1247.0 has a DLL hijacking vulnerability, which can be exploited by attackers to execute malicious code. It is a dual-core browser owned by Beijing Qihoo Technology. CWE-427
 Uncontrolled Search Path Element 		CVE-2020-24158 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
211262 6.1 MEDIUM
Network 		xuxueli xxl-job Multiple cross-site scripting (XSS) vulnerabilities in xxl-job v2.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) AppName and (2)AddressList parameter in JobGroupController.… CWE-79
Cross-site Scripting 		CVE-2020-23814 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
211263 7.5 HIGH
Network 		xuxueli xxl-job xxl-job 2.2.0 allows Information Disclosure of username, model, and password via job/admin/controller/UserController.java. NVD-CWE-noinfo
CVE-2020-23811 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
211264 5.5 MEDIUM
Local 		midnightbsd
freebsd 		midnightbsd
freebsd 		In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. Duri… CWE-476
 NULL Pointer Dereference 		CVE-2020-24385 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
211265 6.1 MEDIUM
Network 		golang
fedoraproject
opensuse
oracle 		go
fedora
leap
communications_cloud_native_core_policy 		Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. CWE-79
Cross-site Scripting 		CVE-2020-24553 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
211266 9.8 CRITICAL
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 has weak token expiration. This allows remote unauthenticated privilege escalation and access to sensitive data via token reuse. CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2020-24030 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
211267 9.8 CRITICAL
Network 		forlogic qualiex Because of unauthenticated password changes in ForLogic Qualiex v1 and v3, customer and admin permissions and data can be accessed via a simple request. CWE-287
Improper Authentication 		CVE-2020-24029 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
211268 8.8 HIGH
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via user creations, password changes, or user permission updates. NVD-CWE-noinfo
CVE-2020-24028 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
211269 7.1 HIGH
Network 		stock_management_system_project stock_management_system A Cross-Site Request Forgery (CSRF) vulnerability in changeUsername.php in SourceCodester Stock Management System v1.0 allows remote attackers to deny future logins by changing an authenticated victi… CWE-352
 Origin Validation Error 		CVE-2020-23830 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
211270 9.8 CRITICAL
Network 		zyxel vmg5313-b30b_firmware Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by insecure permissions which allows regular and other users to create new users with e… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-24355 2024-11-21 14:14 2020-09-2 Show GitHub Exploit DB Packet Storm