Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225211 5 警告 Mozilla Foundation - 複数の Mozilla 製品の QCMS の実装におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1960 2013-06-7 18:30 2012-07-17 Show GitHub Exploit DB Packet Storm
225212 10 危険 アドビシステムズ - Adobe Flash Player および AIR の NetStream クラスにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0773 2013-06-7 17:58 2012-03-28 Show GitHub Exploit DB Packet Storm
225213 10 危険 アドビシステムズ - Windows 上で稼働する Adobe Flash Player および AIR における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0772 2013-06-7 17:56 2012-03-28 Show GitHub Exploit DB Packet Storm
225214 5 警告 アドビシステムズ - Adobe Flash Player における重要な情報を取得される脆弱性 CWE-189
数値処理の問題 		CVE-2012-0769 2013-06-7 17:54 2012-03-5 Show GitHub Exploit DB Packet Storm
225215 10 危険 アドビシステムズ - Adobe Flash Player の Matrix3D コンポーネントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0768 2013-06-7 17:53 2012-03-5 Show GitHub Exploit DB Packet Storm
225216 10 危険 アドビシステムズ
Google		 - Google Chrome 上で稼働する Adobe Flash Player におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0725 2013-06-7 16:59 2012-03-28 Show GitHub Exploit DB Packet Storm
225217 4.3 警告 シスコシステムズ - Cisco WebEx Meetings Server の Event Center モジュールにおけるホスト鍵およびイベントパスワードを破られる脆弱性 CWE-287
不適切な認証 		CVE-2013-1205 2013-06-7 16:56 2013-06-5 Show GitHub Exploit DB Packet Storm
225218 2.1 注意 アップル - Apple Mac OS X の XNU kernel における KASLR 保護メカニズムを破られる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3952 2013-06-7 15:56 2013-04-26 Show GitHub Exploit DB Packet Storm
225219 2.1 注意 アップル - Apple Mac OS X の XNU カーネルの posix_spawn システムコールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3949 2013-06-7 14:58 2013-04-26 Show GitHub Exploit DB Packet Storm
225220 4.3 警告 アップル - Apple iOS における任意のアプリケーションのインストールを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3948 2013-06-7 14:57 2013-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199671 6.1 MEDIUM
Network 		uhp uhp-100_firmware UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= (profile title). CWE-79
Cross-site Scripting 		CVE-2020-7235 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
199672 4.8 MEDIUM
Network 		ruckuswireless r310_firmware Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wireless X screen (after a successful login to the super account). CWE-79
Cross-site Scripting 		CVE-2020-7234 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
199673 9.8 CRITICAL
Network 		kmccontrols bac-a1616bc_firmware KMS Controls BAC-A1616BC BACnet devices have a cleartext password of snowman in the BACKDOOR_NAME variable in the BC_Logon.swf file. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-7233 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
199674 7.5 HIGH
Network 		evoko home Evoko Home devices 1.31 through 1.37 allow remote attackers to obtain sensitive information (such as usernames and password hashes) via a WebSocket request, as demonstrated by the sockjs/224/uf1psgff… NVD-CWE-noinfo
CVE-2020-7232 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
199675 5.3 MEDIUM
Network 		evoko home Evoko Home 1.31 devices provide different error messages for failed login requests depending on whether the username is valid. CWE-209
Information Exposure Through an Error Message 		CVE-2020-7231 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
199676 6.5 MEDIUM
Network 		westermo mrd-315_firmware Westermo MRD-315 1.7.3 and 1.7.4 devices have an information disclosure vulnerability that allows an authenticated remote attacker to retrieve the source code of different functions of the web applic… NVD-CWE-noinfo
CVE-2020-7227 2024-11-21 14:36 2020-01-19 Show GitHub Exploit DB Packet Storm
199677 5.3 MEDIUM
Network 		amcrest web_server An issue was discovered in Amcrest Web Server 2.520.AC00.18.R 2017-06-29 WEB 3.2.1.453504. The login page responds with JavaScript when one tries to authenticate. An attacker who changes the result p… CWE-287
Improper Authentication 		CVE-2020-7222 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm
199678 8.8 HIGH
Network 		meinbergglobal lantime_m300_firmware
lantime_m1000_firmware 		Meinberg Lantime M300 and M1000 devices allow attackers (with privileges to configure a device) to execute arbitrary OS commands by editing the /config/netconf.cmd script (aka Extended Network Config… CWE-78
OS Command  		CVE-2020-7240 2024-11-21 14:36 2020-01-21 Show GitHub Exploit DB Packet Storm
199679 6.1 MEDIUM
Network 		kibokolabs chained_quiz The chained-quiz plugin 1.1.8.1 for WordPress has reflected XSS via the wp-admin/admin-ajax.php total_questions parameter. CWE-79
Cross-site Scripting 		CVE-2020-7104 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm
199680 5.3 MEDIUM
Network 		zte f6x2w_firmware V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code. CWE-669
 Incorrect Resource Transfer Between Spheres 		CVE-2020-6862 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm