Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224901	5	警告	Little CMS	-	OpenJDK などの製品で使用される Little CMS におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-4160	2014-01-24 14:02	2013-06-25	Show	GitHub Exploit DB Packet Storm

224902	5	警告	シスコシステムズ	-	Cisco ASR 5000 シリーズのデバイス上で稼働する Gateway GPRS Support Node コンポーネントにおけるトップアップ支払の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0669	2014-01-24 13:56	2014-01-22	Show	GitHub Exploit DB Packet Storm

224903	4	警告	シスコシステムズ	-	Cisco MediaSens の Search and Play インターフェースにおける任意の記録をダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-0672	2014-01-24 12:28	2014-01-22	Show	GitHub Exploit DB Packet Storm

224904	5.8	警告	シスコシステムズ	-	Cisco MediaSense におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2014-0671	2014-01-24 12:24	2014-01-22	Show	GitHub Exploit DB Packet Storm

224905	4.3	警告	シスコシステムズ	-	Cisco MediaSense の Search and Play インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0670	2014-01-24 12:17	2014-01-22	Show	GitHub Exploit DB Packet Storm

224906	6.8	警告	Seagate Technology LLC	-	Seagate BlackArmor NAS 220 デバイスのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-6922	2014-01-23 18:35	2013-12-3	Show	GitHub Exploit DB Packet Storm

224907	7.2	危険	レッドハット	-	Red Hat Enterprise Virtualization で使用される SPICE サービスにおける権限を取得される脆弱性	CWE-Other その他	CVE-2013-2152	2014-01-23 18:17	2013-06-10	Show	GitHub Exploit DB Packet Storm

224908	3.2	注意	Linux NFS	-	nfs-utils の rpc-gssd におけるその他の制限ファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2013-1923	2014-01-23 18:13	2013-04-3	Show	GitHub Exploit DB Packet Storm

224909	7.2	危険	レッドハット	-	Red Hat Enterprise Virtualization における権限を取得される脆弱性	CWE-Other その他	CVE-2013-2151	2014-01-23 18:12	2013-06-10	Show	GitHub Exploit DB Packet Storm

224910	9.3	危険	Lenovo	-	Lenovo Thinkpad Bluetooth with Enhanced Data Rate ソフトウェアにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2013-1361	2014-01-23 17:57	2013-01-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210431	9.8	CRITICAL Network	egavilanmedia	egm_address_book	EGavilan Media EGM Address Book 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrary code execution.	CWE-89 SQL Injection	CVE-2020-29474	2024-11-21 14:24	2020-12-25	Show	GitHub Exploit DB Packet Storm

210432	9.8	CRITICAL Network	egavilanmedia	under_construction_page_with_cpanel	EGavilan Media Under Construction page with cPanel 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrar…	CWE-89 SQL Injection	CVE-2020-29472	2024-11-21 14:24	2020-12-25	Show	GitHub Exploit DB Packet Storm

210433	9.8	CRITICAL Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. By using the _internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command an…	CWE-78 OS Command	CVE-2020-29552	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

210434	9.1	CRITICAL Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. Using the _internal/pc/shutdown.php path, it is possible to shutdown the system. Among others, the following files and scripts are also accessible: _…	CWE-306 Missing Authentication for Critical Function	CVE-2020-29551	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

210435	7.5	HIGH Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. The password of an integration user account (used for the connection of the MS Office 365 Integration Service) is stored in cleartext in configuratio…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-29550	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

210436	9.8	CRITICAL Network	zyxel	usg20-vpn_firmware usg20w-vpn_firmware usg40_firmware usg40w_firmware usg60_firmware usg60w_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg…	Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29583	2024-11-21 14:24	2020-12-23	Show	GitHub Exploit DB Packet Storm

210437	7.5	HIGH Network	miniweb_http_server_project	miniweb_http_server	MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request.	CWE-120 Classic Buffer Overflow	CVE-2020-29596	2024-11-21 14:24	2020-12-22	Show	GitHub Exploit DB Packet Storm

210438	4.3	MEDIUM Network	atlassian	crucible	Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29447	2024-11-21 14:24	2020-12-21	Show	GitHub Exploit DB Packet Storm

210439	7.5	HIGH Network	golang	ssh	A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.	CWE-476 NULL Pointer Dereference	CVE-2020-29652	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

210440	7.2	HIGH Network	pluck-cms	pluck	A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29607	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm