Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225091	3.5	注意	IBM	-	IBM Cognos Command Center の Web クライアントのヘルプページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3979	2013-07-26 14:16	2013-07-23	Show	GitHub Exploit DB Packet Storm

225092	4.3	警告	WordPress.org	-	WordPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2399	2013-07-26 12:07	2012-04-21	Show	GitHub Exploit DB Packet Storm

225093	7.5	危険	Pidgin	-	Pidgin の libpurple の MXit プロトコルプラグインにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3374	2013-07-25 16:24	2012-07-5	Show	GitHub Exploit DB Packet Storm

225094	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker における製品の鍵束の鍵の読み取り制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6581	2013-07-25 14:54	2012-10-25	Show	GitHub Exploit DB Packet Storm

225095	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker におけるメッセージの生成元の詳細を偽装される脆弱性	CWE-310 暗号の問題	CVE-2012-6580	2013-07-25 14:51	2012-10-25	Show	GitHub Exploit DB Packet Storm

225096	6.4	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker における特定の送信メールに対して暗号化または署名を設定される脆弱性	CWE-310 暗号の問題	CVE-2012-6579	2013-07-25 14:49	2012-10-25	Show	GitHub Exploit DB Packet Storm

225097	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker におけるメッセージを偽装される脆弱性	CWE-310 暗号の問題	CVE-2012-6578	2013-07-25 14:48	2012-10-25	Show	GitHub Exploit DB Packet Storm

225098	5	警告	シスコシステムズ	-	Cisco Unified MeetingPlace Web Conferencing サーバにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3438	2013-07-25 14:02	2013-07-23	Show	GitHub Exploit DB Packet Storm

225099	10	危険	日本電気 Portable SDK for UPnP project ソニー株式会社古河電気工業	-	Portable SDK for UPnP Devices におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5958	2013-07-24 17:04	2012-12-6	Show	GitHub Exploit DB Packet Storm

225100	10	危険	日本電気 Portable SDK for UPnP project ソニー株式会社古河電気工業	-	Portable SDK for UPnP Devices におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5959	2013-07-24 17:04	2012-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211431	5.5	MEDIUM Local	artifex debian	mupdf debian_linux	Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-19609	2024-11-21 14:09	2021-07-22	Show	GitHub Exploit DB Packet Storm

211432	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a direct copy to NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 CWE-120 NULL Pointer Dereference Classic Buffer Overflow	CVE-2020-19722	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211433	6.5	MEDIUM Network	axiosys	bento4	A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of-bounds write while running mp42aac, leading to system crashes and a denial of service (DOS).	CWE-787 Out-of-bounds Write	CVE-2020-19721	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211434	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 CWE-120 NULL Pointer Dereference Classic Buffer Overflow	CVE-2020-19720	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211435	6.5	MEDIUM Network	axiosys	bento4	A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS).	CWE-120 Classic Buffer Overflow	CVE-2020-19719	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211436	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 NULL Pointer Dereference	CVE-2020-19718	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211437	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/Ap48bdlAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 NULL Pointer Dereference	CVE-2020-19717	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211438	6.5	MEDIUM Network	exiv2 debian	exiv2 debian_linux	A buffer overflow vulnerability in the Databuf function in types.cpp of Exiv2 v0.27.1 leads to a denial of service (DOS).	CWE-120 Classic Buffer Overflow	CVE-2020-19716	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

211439	8.8	HIGH Network	mitre	caldera	A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.	CWE-78 OS Command	CVE-2020-19907	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

211440	5.4	MEDIUM Network	ipfire	ipfire	An authenticated Stored Cross-Site Scriptiong (XSS) vulnerability exists in Lightning Wire Labs IPFire 2.21 (x86_64) - Core Update 130 in the "routing.cgi" Routing Table Entries via the "Remark" text…	CWE-79 Cross-site Scripting	CVE-2020-19204	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed