Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225001	7.5	危険	Lianja	-	Lianja SQL Server の db_netserver におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3563	2013-07-8 14:27	2013-07-4	Show	GitHub Exploit DB Packet Storm

225002	4.3	警告	シスコシステムズ	-	Cisco Identity Services Engine 上で稼働する administration/monitoring パネルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3413	2013-07-8 14:25	2013-07-3	Show	GitHub Exploit DB Packet Storm

225003	7.5	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird の PreserveWrapper の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1694	2013-07-8 11:06	2013-06-25	Show	GitHub Exploit DB Packet Storm

225004	10	危険	マイクロソフトアドビシステムズ Google	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-3343	2013-07-8 10:42	2013-06-11	Show	GitHub Exploit DB Packet Storm

225005	7.2	危険	Linux	-	Linux Kernel の kernel/events/core.c における権限を取得される脆弱性	CWE-189 数値処理の問題	CVE-2013-2094	2013-07-5 11:44	2013-04-25	Show	GitHub Exploit DB Packet Storm

225006	5	警告	Mozilla Foundation	-	Mozilla Firefox の国際化ドメイン名表示アルゴリズムにおけるアドレスバーを偽装される脆弱性	CWE-310 暗号の問題	CVE-2013-1699	2013-07-5 11:05	2013-06-25	Show	GitHub Exploit DB Packet Storm

225007	5	警告	レッドハット	-	Red Hat Enterprise Virtualization Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2144	2013-07-5 11:05	2013-06-10	Show	GitHub Exploit DB Packet Storm

225008	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の getUserMedia 許可の実装におけるカメラやマイクへのアクセスを許可させる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1698	2013-07-5 11:04	2013-06-25	Show	GitHub Exploit DB Packet Storm

225009	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1695	2013-07-5 11:03	2013-06-25	Show	GitHub Exploit DB Packet Storm

225010	4	警告	Mozilla Foundation	-	Mozilla Firefox におけるクリックジャッキング攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1696	2013-07-5 11:02	2013-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211831	6.6	MEDIUM Network	xwiki	xwiki	In XWiki before versions 11.10.5 or 12.2.1, any user with SCRIPT right (EDIT right before XWiki 7.4) can gain access to the application server Servlet context which contains tools allowing to instant…	CWE-74 Injection	CVE-2020-15171	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211832	5.5	MEDIUM Local	avast	antivirus	An issue was discovered in the Login Password feature of the Password Manager component in Avast Antivirus 20.1.5069.562. An entered password continues to be stored in Windows main memory after a log…	CWE-212 CWE-459 Improper Removal of Sensitive Information Before Storage or Transfer Incomplete Cleanup	CVE-2020-15024	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211833	6.1	MEDIUM Network	action_view_project debian fedoraproject	action_view debian_linux fedora	In Action View before versions 5.2.4.4 and 6.0.3.3 there is a potential Cross-Site Scripting (XSS) vulnerability in Action View's translation helpers. Views that allow the user to control the default…	-	CVE-2020-15169	2024-11-21 14:04	2020-09-12	Show	GitHub Exploit DB Packet Storm

211834	7.5	HIGH Network	zeromq fedoraproject debian	libzmq fedora debian_linux	In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and con…	-	CVE-2020-15166	2024-11-21 14:04	2020-09-12	Show	GitHub Exploit DB Packet Storm

211835	7.0	HIGH Network	ctrip	apollo	apollo-adminservice before version 1.7.1 does not implement access controls. If users expose apollo-adminservice to internet(which is not recommended), there are potential security issues since apoll…	NVD-CWE-Other	CVE-2020-15170	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211836	5.3	MEDIUM Network	node-fetch_project	node-fetch	node-fetch before versions 2.6.1 and 3.0.0-beta.9 did not honor the size option after following a redirect, which means that when a content size was over the limit, a FetchError would never get throw…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-15168	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211837	8.2	HIGH Network	linuxfoundation	the_update_framework	Python TUF (The Update Framework) reference implementation before version 0.12 it will incorrectly trust a previously downloaded root metadata file which failed verification at download time. This al…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2020-15163	2024-11-21 14:04	2020-09-10	Show	GitHub Exploit DB Packet Storm

211838	8.6	HIGH Local	johnkerl	miller	In Miller (command line utility) using the configuration file support introduced in version 5.9.0, it is possible for an attacker to cause Miller to run arbitrary code by placing a malicious `.mlrrc`…	CWE-427 Uncontrolled Search Path Element	CVE-2020-15167	2024-11-21 14:04	2020-09-3	Show	GitHub Exploit DB Packet Storm

211839	8.8	HIGH Network	sensiolabs fedoraproject	httpclient symfony fedora	In Symfony before versions 4.4.13 and 5.1.5, the CachingHttpClient class from the HttpClient Symfony component relies on the HttpCache class to handle requests. HttpCache uses internal headers like X…	-	CVE-2020-15094	2024-11-21 14:04	2020-09-3	Show	GitHub Exploit DB Packet Storm

211840	9.8	CRITICAL Network	duffel	paginator	There is a vulnerability in Paginator (Elixir/Hex package) which makes it susceptible to Remote Code Execution (RCE) attacks via input parameters to the paginate() function. This will potentially aff…	-	CVE-2020-15150	2024-11-21 14:04	2020-09-2	Show	GitHub Exploit DB Packet Storm