Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225051 7.5 危険 Appnitro Software - Machform の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4948 2013-07-31 15:27 2013-07-2 Show GitHub Exploit DB Packet Storm
225052 7.5 危険 Sawmill - Sawmill のデータベースのページの更新および作成における脆弱性 CWE-noinfo
情報不足 		CVE-2013-4947 2013-07-31 15:18 2013-07-9 Show GitHub Exploit DB Packet Storm
225053 4.3 警告 BMC Software - BMC Service Desk Express におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4946 2013-07-31 15:11 2013-06-12 Show GitHub Exploit DB Packet Storm
225054 7.5 危険 BMC Software - BMC Service Desk Express における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4945 2013-07-31 15:08 2013-06-12 Show GitHub Exploit DB Packet Storm
225055 2.1 注意 Drupal Indonesia - Drupal 用 TinyBox モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4140 2013-07-31 14:44 2013-07-10 Show GitHub Exploit DB Packet Storm
225056 2.6 注意 BuddyDev.com - WordPress 用 BuddyPress Extended Friendship Request プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4944 2013-07-31 14:36 2013-07-2 Show GitHub Exploit DB Packet Storm
225057 4.3 警告 OpenX - OpenX Source におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3515 2013-07-31 14:08 2013-05-8 Show GitHub Exploit DB Packet Storm
225058 4.3 警告 Monkey Project - Monkey HTTP Daemon の Directory Listing プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2181 2013-07-31 13:55 2013-06-14 Show GitHub Exploit DB Packet Storm
225059 9.3 危険 キングソフト株式会社 - Kingsoft Spreadsheets 2012 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0723 2013-07-31 13:47 2013-07-29 Show GitHub Exploit DB Packet Storm
225060 5 警告 ヒューレット・パッカード
レッドハット		 - 複数の Red Hat JBoss 製品の JBossWS Native におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-1483 2013-07-30 17:40 2011-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211211 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory, aka 'Windows CNG Key Isolation Service Elevation of… NVD-CWE-noinfo
CVE-2020-1359 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211212 5.5 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An information disclosure vulnerability exists when the Windows Resource Policy component improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on th… NVD-CWE-noinfo
CVE-2020-1358 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211213 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows System Events Broker improperly handles file operations, aka 'Windows System Events Broker Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2020-1357 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211214 7.8 HIGH
Local 		microsoft windows_server_2012
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations, aka 'Windows iSCSI Target Service Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2020-1356 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211215 7.8 HIGH
Local 		microsoft windows_server_2016
windows_10 		A remote code execution vulnerability exists when the Windows Font Driver Host improperly handles memory.An attacker who successfully exploited the vulnerability would gain execution on a victim syst… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-1355 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211216 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim … NVD-CWE-noinfo
CVE-2020-1354 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211217 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV… NVD-CWE-noinfo
CVE-2020-1353 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211218 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists when the Windows USO Core Worker improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim s… NVD-CWE-noinfo
CVE-2020-1352 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211219 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory, aka 'Microsoft Graphics Component Information Disclosure Vulnerability'. NVD-CWE-noinfo
CVE-2020-1351 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm
211220 10.0 CRITICAL
Network 		microsoft windows_server_2008
windows_server_2012
windows_server_2016
windows_server_2019 		A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka 'Windows DNS Server Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2020-1350 2024-11-21 14:10 2020-07-15 Show GitHub Exploit DB Packet Storm