Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224841	6.9	警告	Mozilla Foundation	-	Windows 上で稼働する Mozilla Firefox および Thunderbird における権限を取得される脆弱性	CWE-Other その他	CVE-2013-1712	2013-08-8 15:45	2013-08-6	Show	GitHub Exploit DB Packet Storm

224842	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey の XrayWrapper の実装におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1711	2013-08-8 15:40	2013-08-6	Show	GitHub Exploit DB Packet Storm

224843	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1708	2013-08-8 15:36	2013-08-6	Show	GitHub Exploit DB Packet Storm

224844	7.2	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の Mozilla Updater におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1707	2013-08-8 15:35	2013-08-6	Show	GitHub Exploit DB Packet Storm

224845	7.2	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の Mozilla Maintenance Service におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1706	2013-08-8 15:33	2013-08-6	Show	GitHub Exploit DB Packet Storm

224846	9.3	危険	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey の nsINode::GetParentNode 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2013-1704	2013-08-8 15:31	2013-08-6	Show	GitHub Exploit DB Packet Storm

224847	10	危険	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1702	2013-08-8 15:29	2013-08-6	Show	GitHub Exploit DB Packet Storm

224848	7.5	危険	日本ナショナルインスツルメンツ	-	National Instruments Lookout の ActiveX コントロールにおける脆弱性	CWE-noinfo 情報不足	CVE-2013-5026	2013-08-8 15:27	2013-03-22	Show	GitHub Exploit DB Packet Storm

224849	6.4	警告	日本ナショナルインスツルメンツ	-	National Instruments LabWindows/CVI および LabVIEW などの製品で使用される cw3dgrph.ocx における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-5022	2013-08-8 15:03	2013-03-22	Show	GitHub Exploit DB Packet Storm

224850	9.3	危険	ABB 日本ナショナルインスツルメンツ	-	複数の National Instruments 製品および ABB DataManager などの製品で使用される National Instruments cwui.ocx における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-5021	2013-08-8 15:00	2013-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199671	7.2	HIGH Network	expressionengine	expressionengine	Unsanitized user input in ExpressionEngine <= 5.4.0 control panel member creation leads to an SQL injection. The user needs member creation/admin control panel access to execute the attack.	CWE-89 SQL Injection	CVE-2020-8242	2024-11-21 14:38	2022-02-19	Show	GitHub Exploit DB Packet Storm

199672	7.8	HIGH Local	bitdefender	total_security internet_security antivirus_plus	A Process Control vulnerability in ProductAgentUI.exe as used in Bitdefender Antivirus Plus allows an attacker to tamper with product settings via a specially crafted DLL file. This issue affects: Bi…	NVD-CWE-Other	CVE-2020-8107	2024-11-21 14:38	2022-02-18	Show	GitHub Exploit DB Packet Storm

199673	7.8	HIGH Local	goabode	iota_all-in-one_security_kit_firmware	OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject commands and gain root access. This issue affects: Abode iota All-…	CWE-78 OS Command	CVE-2020-8105	2024-11-21 14:38	2021-12-20	Show	GitHub Exploit DB Packet Storm

199674	6.1	MEDIUM Network	rocket.chat	rocket.chat	A link preview rendering issue in Rocket.Chat versions before 3.9 could lead to potential XSS attacks.	CWE-79 Cross-site Scripting	CVE-2020-8291	2024-11-21 14:38	2021-10-18	Show	GitHub Exploit DB Packet Storm

199675	6.5	MEDIUM Network	citrix	netscaler_gateway gateway application_delivery_controller_firmware	Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack t…	NVD-CWE-Other	CVE-2020-8300	2024-11-21 14:38	2021-06-16	Show	GitHub Exploit DB Packet Storm

199676	6.5	MEDIUM Adjacent	citrix	netscaler_gateway gateway application_delivery_controller_firmware sd-wan_wanop	Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8299	2024-11-21 14:38	2021-06-16	Show	GitHub Exploit DB Packet Storm

199677	6.5	MEDIUM Network	mongodb	mongomirror database_tools	Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in acc…	CWE-295 Improper Certificate Validation	CVE-2020-7924	2024-11-21 14:38	2021-04-13	Show	GitHub Exploit DB Packet Storm

199678	5.5	MEDIUM Local	lenovo	pcmanager	A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, that could allow configuration files to be written to non-standard locations.	CWE-276 Incorrect Default Permissions	CVE-2020-8357	2024-11-21 14:38	2021-03-10	Show	GitHub Exploit DB Packet Storm

199679	4.9	MEDIUM Network	lenovo	xclarity_orchestrator	An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in cl…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-8356	2024-11-21 14:38	2021-03-10	Show	GitHub Exploit DB Packet Storm

199680	9.8	CRITICAL Network	fs-path_project	fs-path	fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, and `removeSync` methods.	CWE-77 Command Injection	CVE-2020-8298	2024-11-21 14:38	2021-03-5	Show	GitHub Exploit DB Packet Storm