Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225141	10	危険	日立	-	EUR Form Client における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-4773	2013-06-26 12:15	2010-11-15	Show	GitHub Exploit DB Packet Storm

225142	6	警告	A51 D.O.O.	-	ActiveCollab のアクセス制御機能における問題	CWE-264 認可・権限・アクセス制御	CVE-2010-0215	2013-06-26 12:08	2010-10-7	Show	GitHub Exploit DB Packet Storm

225143	2.1	注意	アップル	-	Apple Mac OS X の sso_util におけるパスワード漏えいの脆弱性	CWE-200 情報漏えい	CVE-2008-1578	2013-06-25 18:42	2008-05-28	Show	GitHub Exploit DB Packet Storm

225144	2.6	注意	サイボウズ	-	複数のサイボウズ製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2305	2013-06-25 18:35	2013-04-15	Show	GitHub Exploit DB Packet Storm

225145	2.1	注意	トランスウエア	-	Active! mail における情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2013-2302	2013-06-25 18:29	2013-04-4	Show	GitHub Exploit DB Packet Storm

225146	10	危険	アドビシステムズ	-	Adobe ColdFusion に任意のコードが実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-1389	2013-06-25 18:24	2013-05-14	Show	GitHub Exploit DB Packet Storm

225147	4	警告	日本電気	-	複数の NEC 製モバイルルータにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0717	2013-06-25 18:18	2013-03-19	Show	GitHub Exploit DB Packet Storm

225148	5	警告	ウインドリバー株式会社	-	VxWorks Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0716	2013-06-25 18:14	2013-03-18	Show	GitHub Exploit DB Packet Storm

225149	6.8	警告	ウインドリバー株式会社	-	VxWorks の WebCLI におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0715	2013-06-25 18:09	2013-03-18	Show	GitHub Exploit DB Packet Storm

225150	7.8	危険	ウインドリバー株式会社	-	VxWorks の SSH サーバ (IPSSH) におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0714	2013-06-25 18:04	2013-03-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197851	7.5	HIGH Network	totaljs	total.js_cms	controllers/admin.js in Total.js CMS 13 allows remote attackers to execute arbitrary code via a POST to the /admin/api/widgets/ URI. This can be exploited in conjunction with CVE-2019-15954.	CWE-863 Incorrect Authorization	CVE-2020-9381	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197852	9.8	CRITICAL Network	tp-link	tl-wr849n_firmware	On TP-Link TL-WR849N 0.9.1 4.16 devices, a remote command execution vulnerability in the diagnostics area can be exploited when an attacker sends specific shell metacharacters to the panel's tracerou…	CWE-78 OS Command	CVE-2020-9374	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197853	7.5	HIGH Network	sympa fedoraproject debian	sympa fedora debian_linux	Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service (disk consumption from temporary files, and a flood of notifications to listmasters) via a series of requests with mal…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-9369	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197854	9.8	CRITICAL Network	gnu	screen	A buffer overflow was found in the way GNU Screen before 4.8.0 treated the special escape OSC 49. Specially crafted output, or a special program, could corrupt memory and crash Screen or possibly hav…	CWE-787 Out-of-bounds Write	CVE-2020-9366	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197855	7.5	HIGH Network	pureftpd fedoraproject	pure-ftpd fedora	An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in utils.c.	CWE-125 Out-of-bounds Read	CVE-2020-9365	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197856	7.8	HIGH Local	sophos	cloud_optix mobile intercept_x_endpoint intercept_x_for_server secure_web_gateway endpoint_protection	The Sophos AV parsing engine before 2020-01-14 allows virus-detection bypass via a crafted ZIP archive. This affects Endpoint Protection, Cloud Optix, Mobile, Intercept X Endpoint, Intercept X for Se…	CWE-436 Interpretation Conflict	CVE-2020-9363	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197857	7.8	HIGH Local	quickheal	home_security internet_security total_security_multi-device antivirus_pro antivirus_for_server total_security	The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet…	CWE-436 Interpretation Conflict	CVE-2020-9362	2024-11-21 14:40	2020-02-25	Show	GitHub Exploit DB Packet Storm

197858	9.8	CRITICAL Network	networkmanager-ssh_project debian	networkmanager-ssh debian_linux	danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled.	NVD-CWE-noinfo	CVE-2020-9355	2024-11-21 14:40	2020-02-23	Show	GitHub Exploit DB Packet Storm

197859	7.5	HIGH Network	smartclient	smartclient	An issue was discovered in SmartClient 12.0. The Remote Procedure Call (RPC) saveFile provided by the console functionality on the /tools/developerConsoleOperations.jsp (or /isomorphic/IDACall) URL a…	CWE-22 Path Traversal	CVE-2020-9354	2024-11-21 14:40	2020-02-23	Show	GitHub Exploit DB Packet Storm

197860	7.5	HIGH Network	smartclient	smartclient	An issue was discovered in SmartClient 12.0. The Remote Procedure Call (RPC) loadFile provided by the console functionality on the /tools/developerConsoleOperations.jsp (or /isomorphic/IDACall) URL i…	CWE-22 Path Traversal	CVE-2020-9353	2024-11-21 14:40	2020-02-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed