Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224831 6.8 警告 BigTree CMS - BigTree CMS の core/admin/modules/users/update.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5313 2013-08-21 14:08 2013-07-17 Show GitHub Exploit DB Packet Storm
224832 4.3 警告 Vastal I-Tech & Co. - Vastal I-Tech phpVID におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5312 2013-08-21 14:06 2013-08-8 Show GitHub Exploit DB Packet Storm
224833 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5311 2013-08-21 14:01 2013-08-8 Show GitHub Exploit DB Packet Storm
224834 5 警告 Willy Tarreau
Canonical
レッドハット		 - HAProxy におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2013-2175 2013-08-20 16:32 2013-06-17 Show GitHub Exploit DB Packet Storm
224835 6.8 警告 BigTree CMS - BigTree CMS の core/admin/modules/users/create.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-4881 2013-08-20 15:33 2013-07-17 Show GitHub Exploit DB Packet Storm
224836 6.9 警告 Canonical - Debian GNU/Linux などの製品で使用される MySQL Server 用 post-installation スクリプトにおける設定ファイルを読まれる脆弱性 CWE-362
競合状態 		CVE-2013-2162 2013-08-20 15:29 2013-07-25 Show GitHub Exploit DB Packet Storm
224837 10 危険 ヒューレット・パッカード - HP Service Manager および HP Service Center における特権的アクセス権を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-4808 2013-08-20 15:28 2013-08-14 Show GitHub Exploit DB Packet Storm
224838 7.5 危険 Mauro Lorenzutti - TYPO3 用 DB Integration エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5310 2013-08-20 14:57 2013-08-5 Show GitHub Exploit DB Packet Storm
224839 4.3 警告 Ilia Alshanetsky - FUDforum の install/forum_data/src/custom_fields.inc.t におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5309 2013-08-20 14:47 2013-02-17 Show GitHub Exploit DB Packet Storm
224840 4.3 警告 Juraj Sulek - TYPO3 用 RealURL Management エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5308 2013-08-20 14:39 2013-08-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212051 9.8 CRITICAL
Network 		idreamsoft icms iCMS 7.0.14 attackers to execute arbitrary OS commands via shell metacharacters in the DB_NAME parameter to install/install.php. CWE-78
OS Command  		CVE-2020-19527 2024-11-21 14:09 2020-12-11 Show GitHub Exploit DB Packet Storm
212052 7.8 HIGH
Local 		imagemagick
debian 		imagemagick
debian_linux 		Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7. CWE-787
 Out-of-bounds Write 		CVE-2020-19667 2024-11-21 14:09 2020-11-21 Show GitHub Exploit DB Packet Storm
212053 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrar… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-1167 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
212054 8.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could … NVD-CWE-noinfo
CVE-2020-1080 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
212055 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could … NVD-CWE-noinfo
CVE-2020-1047 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
212056 5.3 MEDIUM
Network 		alibaba nacos Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service lis… NVD-CWE-noinfo
CVE-2020-19676 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
212057 9.8 CRITICAL
Network 		niushop niushop Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-19672 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
212058 4.9 MEDIUM
Network 		niushop niushop In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords. CWE-306
Missing Authentication for Critical Function 		CVE-2020-19670 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
212059 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter. CWE-89
SQL Injection 		CVE-2020-19455 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
212060 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter. CWE-89
SQL Injection 		CVE-2020-19451 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm