Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224931 4.3 警告 Open-Xchange - Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3106 2013-09-6 15:03 2013-06-3 Show GitHub Exploit DB Packet Storm
224932 4.3 警告 Open-Xchange - Open-Xchange App Suite および Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2583 2013-09-6 14:54 2013-04-17 Show GitHub Exploit DB Packet Storm
224933 5 警告 Open-Xchange - Open-Xchange App Suite および Server のリダイレクトサーブレットにおける CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2013-2582 2013-09-6 14:47 2013-04-17 Show GitHub Exploit DB Packet Storm
224934 5.8 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Archer GRC におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3277 2013-09-6 12:06 2013-09-3 Show GitHub Exploit DB Packet Storm
224935 6.8 警告 シスコシステムズ - Cisco Global Site Selector の Web フレームワークにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5471 2013-09-6 11:49 2013-09-4 Show GitHub Exploit DB Packet Storm
224936 6.8 警告 ShareThis - WordPress 用 ShareThis プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3479 2013-09-6 11:44 2013-08-27 Show GitHub Exploit DB Packet Storm
224937 4.3 警告 シスコシステムズ - Cisco Prime NCS および Cisco WCS にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5990 2013-09-5 19:40 2013-09-3 Show GitHub Exploit DB Packet Storm
224938 5 警告 シスコシステムズ - Cisco Secure Access Control System におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5470 2013-09-5 12:09 2013-09-4 Show GitHub Exploit DB Packet Storm
224939 5 警告 シスコシステムズ - Cisco モビリティ サービス エンジンにおける認証されていないセッションを取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3469 2013-09-5 12:01 2013-09-3 Show GitHub Exploit DB Packet Storm
224940 4.3 警告 VMware - VMware ESXi および ESX におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1661 2013-09-5 11:50 2013-08-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211271 7.7 HIGH
Network 		halo halo There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through direct… CWE-22
Path Traversal 		CVE-2020-21527 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211272 9.8 CRITICAL
Network 		halo halo An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith func… CWE-22
Path Traversal 		CVE-2020-21526 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211273 7.5 HIGH
Network 		halo halo Halo V1.1.3 is affected by: Arbitrary File reading. In an interface that reads files in halo v1.1.3, a directory traversal check is performed on the input path parameter, but the startsWith function … CWE-22
Path Traversal 		CVE-2020-21525 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211274 9.1 CRITICAL
Network 		halo halo There is a XML external entity (XXE) vulnerability in halo v1.1.3, The function of importing other blogs in the background(/api/admin/migrations/wordpress) needs to parse the xml file, but it is not … CWE-611
XXE 		CVE-2020-21524 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211275 9.8 CRITICAL
Network 		halo halo A Server-Side Freemarker template injection vulnerability in halo CMS v1.1.3 In the Edit Theme File function. The ftl file can be edited. This is the Freemarker template file. This file can cause arb… CWE-74
Injection 		CVE-2020-21523 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211276 9.8 CRITICAL
Network 		halo halo An issue was discovered in halo V1.1.3. A Zip Slip Directory Traversal Vulnerability in the backend,the attacker can overwrite some files, such as ftl files, .bashrc files in the user directory, and … CWE-22
Path Traversal 		CVE-2020-21522 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211277 4.9 MEDIUM
Network 		frontaccounting frontaccounting An issue was discovered in FrontAccounting 2.4.7. There is a Directory Traversal vulnerability that can empty folder via admin/inst_lang.php. CWE-22
Path Traversal 		CVE-2020-21244 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211278 9.8 CRITICAL
Network 		metinfo metinfo An issue was discovered in MetInfo v7.0.0 beta. There is SQL Injection via the install/index.php?action=adminsetup&cndata=yes&endata=yes&showdata=yes URI. CWE-89
SQL Injection 		CVE-2020-20800 2024-11-21 14:12 2020-10-1 Show GitHub Exploit DB Packet Storm
211279 5.4 MEDIUM
Network 		elementor elementor_page_builder A stored XSS vulnerability exists in the Custom Link Attributes control Affect function in Elementor Page Builder 2.9.2 and earlier versions. It is caused by inadequate filtering on the link custom a… CWE-79
Cross-site Scripting 		CVE-2020-20406 2024-11-21 14:12 2020-09-17 Show GitHub Exploit DB Packet Storm
211280 6.1 MEDIUM
Network 		codoforum codoforum Codoforum 4.8.3 allows HTML Injection in the 'admin dashboard Manage users Section.' CWE-79
Cross-site Scripting 		CVE-2020-21845 2024-11-21 14:12 2020-09-15 Show GitHub Exploit DB Packet Storm