Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225091	4.3	警告	IBM	-	IBM Social Media Analytics におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3999	2013-07-26 14:17	2013-07-18	Show	GitHub Exploit DB Packet Storm

225092	3.5	注意	IBM	-	IBM Cognos Command Center の Web クライアントのヘルプページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3979	2013-07-26 14:16	2013-07-23	Show	GitHub Exploit DB Packet Storm

225093	4.3	警告	WordPress.org	-	WordPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2399	2013-07-26 12:07	2012-04-21	Show	GitHub Exploit DB Packet Storm

225094	7.5	危険	Pidgin	-	Pidgin の libpurple の MXit プロトコルプラグインにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3374	2013-07-25 16:24	2012-07-5	Show	GitHub Exploit DB Packet Storm

225095	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker における製品の鍵束の鍵の読み取り制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6581	2013-07-25 14:54	2012-10-25	Show	GitHub Exploit DB Packet Storm

225096	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker におけるメッセージの生成元の詳細を偽装される脆弱性	CWE-310 暗号の問題	CVE-2012-6580	2013-07-25 14:51	2012-10-25	Show	GitHub Exploit DB Packet Storm

225097	6.4	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker における特定の送信メールに対して暗号化または署名を設定される脆弱性	CWE-310 暗号の問題	CVE-2012-6579	2013-07-25 14:49	2012-10-25	Show	GitHub Exploit DB Packet Storm

225098	4.3	警告	Best Practical Solutions	-	Best Practical Solutions Request Tracker におけるメッセージを偽装される脆弱性	CWE-310 暗号の問題	CVE-2012-6578	2013-07-25 14:48	2012-10-25	Show	GitHub Exploit DB Packet Storm

225099	5	警告	シスコシステムズ	-	Cisco Unified MeetingPlace Web Conferencing サーバにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3438	2013-07-25 14:02	2013-07-23	Show	GitHub Exploit DB Packet Storm

225100	10	危険	日本電気 Portable SDK for UPnP project ソニー株式会社古河電気工業	-	Portable SDK for UPnP Devices におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5958	2013-07-24 17:04	2012-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211581	6.1	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter of $_GET['dbhcms_pid'] variable in dbhcms\page.php line 107,	CWE-79 Cross-site Scripting	CVE-2020-19879	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

211582	7.5	HIGH Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerabil…	NVD-CWE-noinfo	CVE-2020-19878	2024-11-21 14:09	2020-08-25	Show	GitHub Exploit DB Packet Storm

211583	5.3	MEDIUM Network	dbhcms_project	dbhcms	DBHcms v1.2.0 has a directory traversal vulnerability as there is no directory control function in directory /dbhcms/. A remote unauthenticated attacker can exploit this vulnerability to obtain serve…	CWE-22 Path Traversal	CVE-2020-19877	2024-11-21 14:09	2020-08-24	Show	GitHub Exploit DB Packet Storm

211584	7.8	HIGH Local	microsoft	.net_framework	A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To expl…	NVD-CWE-noinfo	CVE-2020-1046	2024-11-21 14:09	2020-08-18	Show	GitHub Exploit DB Packet Storm

211585	7.3	HIGH Network	microsoft	dynamics_365_for_finance_and_operations	A remote code execution vulnerability exists in Microsoft Dynamics 365 for Finance and Operations (on-premises) version 10.0.11. An attacker who successfully exploited this vulnerability could gain r…	NVD-CWE-noinfo	CVE-2020-1182	2024-11-21 14:09	2020-08-18	Show	GitHub Exploit DB Packet Storm

211586	7.8	HIGH Local	microsoft	.net_core .net_framework sharepoint_server sharepoint_enterprise_server visual_studio_2019 visual_studio_2017	A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, Shar…	NVD-CWE-Other	CVE-2020-1147	2024-11-21 14:09	2020-07-15	Show	GitHub Exploit DB Packet Storm

211587	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory, aka 'Windows Function Discovery Service Elevation of Privilege Vulnera…	NVD-CWE-noinfo	CVE-2020-1085	2024-11-21 14:09	2020-07-15	Show	GitHub Exploit DB Packet Storm

211588	9.0	CRITICAL Adjacent	microsoft	windows_server_2012 windows_server_2016 windows_server_2008	A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX…	CWE-20 Improper Input Validation	CVE-2020-1043	2024-11-21 14:09	2020-07-15	Show	GitHub Exploit DB Packet Storm

211589	9.0	CRITICAL Adjacent	microsoft	windows_server_2012 windows_server_2016 windows_server_2008	A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX…	CWE-20 Improper Input Validation	CVE-2020-1042	2024-11-21 14:09	2020-07-15	Show	GitHub Exploit DB Packet Storm

211590	9.0	CRITICAL Adjacent	microsoft	windows_server_2012 windows_server_2016 windows_server_2008	A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX…	CWE-20 Improper Input Validation	CVE-2020-1041	2024-11-21 14:09	2020-07-15	Show	GitHub Exploit DB Packet Storm