Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224891	5.5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Endeca Server における脆弱性	CWE-noinfo 情報不足	CVE-2013-3764	2013-07-18 14:19	2013-07-16	Show	GitHub Exploit DB Packet Storm

224892	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebCenter Content における Site Studio に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3769	2013-07-18 14:19	2013-07-16	Show	GitHub Exploit DB Packet Storm

224893	5.5	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebCenter Content における Content Server に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3770	2013-07-18 14:19	2013-07-16	Show	GitHub Exploit DB Packet Storm

224894	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebCenter Content における Web Forms に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3772	2013-07-18 14:19	2013-07-16	Show	GitHub Exploit DB Packet Storm

224895	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における PIA Search Functionality に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3759	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

224896	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise Portal および PeopleTools における PIA Core Technology に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3761	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

224897	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Rich Text Editor に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3768	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

224898	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise Portal における Saved Search に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3780	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

224899	5.5	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise HRMS における Time および Labor に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3784	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

224900	6.4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools における Business Interlinks に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-3800	2013-07-18 13:58	2013-07-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211921	9.8	CRITICAL Network	midasolutions	eframework	There is an OS Command Injection in Mida eFramework 2.9.0 that allows an attacker to achieve Remote Code Execution (RCE) with administrative (root) privileges. Authentication is required.	CWE-78 OS Command	CVE-2020-15922	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211922	9.8	CRITICAL Network	midasolutions	eframework	Mida eFramework through 2.9.0 has a back door that permits a change of the administrative password and access to restricted functionalities, such as Code Execution.	CWE-287 Improper Authentication	CVE-2020-15921	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211923	9.8	CRITICAL Network	midasolutions	eframework	There is an OS Command Injection in Mida eFramework through 2.9.0 that allows an attacker to achieve Remote Code Execution (RCE) with administrative (root) privileges. No authentication is required.	CWE-78 OS Command	CVE-2020-15920	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211924	6.1	MEDIUM Network	midasolutions	eframework	A Reflected Cross Site Scripting (XSS) vulnerability was discovered in Mida eFramework through 2.9.0.	CWE-79 Cross-site Scripting	CVE-2020-15919	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211925	5.4	MEDIUM Network	midasolutions	eframework	Multiple Stored Cross Site Scripting (XSS) vulnerabilities were discovered in Mida eFramework through 2.9.0.	CWE-79 Cross-site Scripting	CVE-2020-15918	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211926	9.8	CRITICAL Network	claws-mail fedoraproject opensuse	claws-mail fedora leap backports_sle	common/session.c in Claws Mail before 3.17.6 has a protocol violation because suffix data after STARTTLS is mishandled.	NVD-CWE-noinfo	CVE-2020-15917	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211927	9.8	CRITICAL Network	tenda	ac15_firmware	goform/AdvSetLanip endpoint on Tenda AC15 AC1900 15.03.05.19 devices allows remote attackers to execute arbitrary system commands via shell metacharacters in the lanIp POST parameter.	CWE-78 OS Command	CVE-2020-15916	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211928	6.5	MEDIUM Adjacent	tesla	model_3_firmware	Tesla Model 3 vehicles allow attackers to open a door by leveraging access to a legitimate key card, and then using NFC Relay. NOTE: the vendor has developed Pin2Drive to mitigate this issue	NVD-CWE-noinfo	CVE-2020-15912	2024-11-21 14:06	2020-07-24	Show	GitHub Exploit DB Packet Storm

211929	8.8	HIGH Network	softwareupdate_project	softwareupdate	A SQL injection vulnerability in softwareupdate_controller.php in the Software Update module before 1.6 for MunkiReport allows attackers to execute arbitrary SQL commands via the last URL parameter o…	CWE-89 SQL Injection	CVE-2020-15887	2024-11-21 14:06	2020-07-23	Show	GitHub Exploit DB Packet Storm

211930	8.8	HIGH Network	reportdata_project	reportdata	A SQL injection vulnerability in reportdata_controller.php in the reportdata module before 3.5 for MunkiReport allows attackers to execute arbitrary SQL commands via the req parameter of the /module/…	CWE-89 SQL Injection	CVE-2020-15886	2024-11-21 14:06	2020-07-23	Show	GitHub Exploit DB Packet Storm