Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225091 7.5 危険 シーメンス - SIMATIC PCS 7 で使用される Siemens WinCC の Web Navigator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3957 2013-06-18 11:16 2013-06-14 Show GitHub Exploit DB Packet Storm
225092 10 危険 オラクル - Oracle Java SE の Java Runtime Environment におけるセキュリティ・レベルを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1489 2013-06-17 17:01 2013-02-1 Show GitHub Exploit DB Packet Storm
225093 5 警告 ヒューレット・パッカード - HP Insight Diagnostics の hpdiags/frontend2/help/pageview.php における任意の HTML ファイルをインクルードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3575 2013-06-17 14:25 2013-06-10 Show GitHub Exploit DB Packet Storm
225094 7.8 危険 ヒューレット・パッカード - HP Insight Diagnostics の hpdiags/frontend2/commands/saveCompareConfig.php における絶対パストラバーサルの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3574 2013-06-17 14:23 2013-06-10 Show GitHub Exploit DB Packet Storm
225095 10 危険 ヒューレット・パッカード - HP Insight Diagnostics における不特定のインジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3573 2013-06-17 14:22 2013-06-10 Show GitHub Exploit DB Packet Storm
225096 4.3 警告 シスコシステムズ - Cisco Video Surveillance Operations Manager におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3376 2013-06-17 14:22 2013-06-14 Show GitHub Exploit DB Packet Storm
225097 4.3 警告 シスコシステムズ - Cisco Prime Central for Hosted Collaboration Solution におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3375 2013-06-17 14:21 2013-06-14 Show GitHub Exploit DB Packet Storm
225098 4.3 警告 Orchard Project - Orchard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3645 2013-06-17 11:59 2013-06-13 Show GitHub Exploit DB Packet Storm
225099 10 危険 オラクル - Oracle Java SE の Java Runtime Environment および JavaFX における 2D の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-0437 2013-06-14 19:15 2013-02-1 Show GitHub Exploit DB Packet Storm
225100 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-0436 2013-06-14 19:11 2013-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199461 5.5 MEDIUM
Local 		ledger monero A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app … CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-6861 2024-11-21 14:36 2020-05-6 Show GitHub Exploit DB Packet Storm
199462 5.5 MEDIUM
Local 		zte zenic_one_r22b ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-6867 2024-11-21 14:36 2020-05-1 Show GitHub Exploit DB Packet Storm
199463 4.9 MEDIUM
Network 		zte zxctn_6500_firmware A ZTE product is impacted by a resource management error vulnerability. An attacker could exploit this vulnerability to cause a denial of service by issuing a specific command. This affects: ZXCTN 65… NVD-CWE-noinfo
CVE-2020-6866 2024-11-21 14:36 2020-05-1 Show GitHub Exploit DB Packet Storm
199464 6.5 MEDIUM
Network 		zte oscp ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the inte… CWE-200
Information Exposure 		CVE-2020-6865 2024-11-21 14:36 2020-05-1 Show GitHub Exploit DB Packet Storm
199465 9.8 CRITICAL
Network 		hpe smart_update_manager A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vul… NVD-CWE-noinfo
CVE-2020-7136 2024-11-21 14:36 2020-05-1 Show GitHub Exploit DB Packet Storm
199466 6.1 MEDIUM
Network 		mailbeez mailbeez Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2020-6579 2024-11-21 14:36 2020-04-30 Show GitHub Exploit DB Packet Storm
199467 7.5 HIGH
Network 		php
tenable
oracle
debian 		php
tenable.sc
communications_diameter_signaling_router
debian_linux 		In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support (uncommon), urldecode() function can be made to access locations past the allocate… CWE-125
Out-of-bounds Read 		CVE-2020-7067 2024-11-21 14:36 2020-04-28 Show GitHub Exploit DB Packet Storm
199468 7.8 HIGH
Local 		hp service_pack_for_proliant A potential security vulnerability has been identified in the disk drive firmware installers named Supplemental Update / Online ROM Flash Component on HPE servers running Linux. The vulnerable softwa… NVD-CWE-noinfo
CVE-2020-7135 2024-11-21 14:36 2020-04-28 Show GitHub Exploit DB Packet Storm
199469 6.5 MEDIUM
Network 		hp hpe_iot_\+_gcp A remote access to sensitive data vulnerability was discovered in HPE IOT + GCP version(s): 1.4.0, 1.4.1, 1.4.2, 1.2.4.2. NVD-CWE-noinfo
CVE-2020-7134 2024-11-21 14:36 2020-04-25 Show GitHub Exploit DB Packet Storm
199470 9.8 CRITICAL
Network 		hp hpe_iot_\+_gcp A unauthorized remote access vulnerability was discovered in HPE IOT + GCP version(s): 1.4.0, 1.4.1, 1.4.2, 1.2.4.2. NVD-CWE-noinfo
CVE-2020-7133 2024-11-21 14:36 2020-04-25 Show GitHub Exploit DB Packet Storm