Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225171 4 警告 フェンリル株式会社 - Sleipnir Mobile for Android において任意のエクステンション API が呼び出される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2304 2013-04-12 12:01 2013-04-12 Show GitHub Exploit DB Packet Storm
225172 4.3 警告 Splunk - Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2766 2013-04-12 11:04 2013-03-25 Show GitHub Exploit DB Packet Storm
225173 5 警告 Puppet - Puppet Labs の Puppet Enterprise におけるコンソールアクセスを取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-2716 2013-04-12 11:03 2013-03-28 Show GitHub Exploit DB Packet Storm
225174 7.5 危険 Digineo - Ruby 用 Thumbshooter gem の lib/thumbshooter.rb における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1898 2013-04-11 19:42 2013-03-25 Show GitHub Exploit DB Packet Storm
225175 7.5 危険 Dan Kubb - Ruby 用 extlib gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1802 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
225176 7.5 危険 John Nunemaker - Ruby 用 httparty gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1801 2013-04-11 19:41 2013-01-14 Show GitHub Exploit DB Packet Storm
225177 7.5 危険 John Nunemaker - Ruby 用 crack gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1800 2013-04-11 19:40 2013-01-14 Show GitHub Exploit DB Packet Storm
225178 7.5 危険 Daniel Harrington - Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0285 2013-04-11 19:39 2013-01-14 Show GitHub Exploit DB Packet Storm
225179 5 警告 New Relic - Ruby Agent における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0284 2013-04-11 19:38 2013-02-13 Show GitHub Exploit DB Packet Storm
225180 6.8 警告 Michael Bleigh and Intridea, Inc. - Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-6134 2013-04-11 19:37 2013-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199271 8.8 HIGH
Network 		google chrome Use after free in Media in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to execute arbitrary code via a crafted HTML page. CWE-416
 Use After Free 		CVE-2020-6572 2024-11-21 14:35 2021-01-15 Show GitHub Exploit DB Packet Storm
199272 6.1 MEDIUM
Network 		opera opera URLs using “javascript:” have the protocol removed when pasted into the address bar to protect users from cross-site scripting (XSS) attacks, but in certain circumstances this removal was not perform… CWE-79
Cross-site Scripting 		CVE-2020-6159 2024-11-21 14:35 2020-12-24 Show GitHub Exploit DB Packet Storm
199273 7.5 HIGH
Network 		rockwellautomation micrologix_1100_b_firmware An exploitable denial-of-service vulnerability exists in the IPv4 functionality of Allen-Bradley MicroLogix 1100 Programmable Logic Controller Systems Series B FRN 16.000, Series B FRN 15.002, Series… NVD-CWE-noinfo
CVE-2020-6111 2024-11-21 14:35 2020-12-3 Show GitHub Exploit DB Packet Storm
199274 3.5 LOW
Adjacent 		sap adaptive_server_enterprise In certain situations, an attacker with regular user credentials and local access to an ASE cockpit installation can access sensitive information which appears in the installation log files. This inf… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-6317 2024-11-21 14:35 2020-12-1 Show GitHub Exploit DB Packet Storm
199275 4.3 MEDIUM
Network 		opera opera_touch Opera Touch for iOS before version 2.4.5 is vulnerable to an address bar spoofing attack. The vulnerability allows a malicious page to trick the browser into showing an address of a different page. T… NVD-CWE-Other
CVE-2020-6157 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm
199276 7.8 HIGH
Local 		pixar openusd A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provi… CWE-787
 Out-of-bounds Write 		CVE-2020-6156 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm
199277 7.8 HIGH
Local 		pixar openusd A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which ca… CWE-787
 Out-of-bounds Write 		CVE-2020-6155 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm
199278 7.8 HIGH
Local 		pixar openusd A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software USDC file format SPECS section decompression heap overflow. CWE-787
 Out-of-bounds Write 		CVE-2020-6150 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm
199279 7.8 HIGH
Local 		pixar openusd A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provi… CWE-787
 Out-of-bounds Write 		CVE-2020-6149 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm
199280 7.8 HIGH
Local 		pixar openusd A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. An instance exists in USDC file format FIELDSETS section decompression he… CWE-787
 Out-of-bounds Write 		CVE-2020-6148 2024-11-21 14:35 2020-11-14 Show GitHub Exploit DB Packet Storm