Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225291 4.9 警告 Linux - Linux Kernel の net/bluetooth/sco.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3226 2013-06-13 17:35 2013-04-7 Show GitHub Exploit DB Packet Storm
225292 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1477 2013-06-13 17:35 2013-02-1 Show GitHub Exploit DB Packet Storm
225293 5.8 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2013-1212 2013-06-13 17:23 2013-05-28 Show GitHub Exploit DB Packet Storm
225294 9.3 危険 アップル
オラクル		 - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1474 2013-06-13 17:23 2013-02-1 Show GitHub Exploit DB Packet Storm
225295 4.3 警告 アップル - Apple iTunes における HTTPS サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1014 2013-06-13 17:20 2013-05-16 Show GitHub Exploit DB Packet Storm
225296 10 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1472 2013-06-13 17:08 2013-02-1 Show GitHub Exploit DB Packet Storm
225297 4.3 警告 Google - Google Chrome におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2849 2013-06-13 16:58 2013-05-21 Show GitHub Exploit DB Packet Storm
225298 6.8 警告 Google - Google Chrome のワーカーの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2013-2847 2013-06-13 16:53 2013-05-21 Show GitHub Exploit DB Packet Storm
225299 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2846 2013-06-13 16:52 2013-05-21 Show GitHub Exploit DB Packet Storm
225300 7.5 危険 Google - Google Chrome の Web Audio の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2845 2013-06-13 16:52 2013-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200271 7.2 HIGH
Network 		comtechtel stampede_fx-1010_firmware Comtech Stampede FX-1010 7.4.3 devices allow remote authenticated administrators to achieve remote code execution by navigating to the Diagnostics Trace Route page and entering shell metacharacters i… CWE-78
OS Command  		CVE-2020-7242 2024-11-21 14:36 2020-01-21 Show GitHub Exploit DB Packet Storm
200272 7.5 HIGH
Network 		wpseeds wp_database_backup The WP Database Backup plugin through 5.5 for WordPress stores downloads by default locally in the directory wp-content/uploads/db-backup/. This might allow attackers to read ZIP archives by guessing… CWE-330
 Use of Insufficiently Random Values 		CVE-2020-7241 2024-11-21 14:36 2020-01-21 Show GitHub Exploit DB Packet Storm
200273 5.5 MEDIUM
Local 		gallagher command_centre An issue was discovered in Gallagher Command Centre 7.x before 7.90.991(MR5), 8.00 before 8.00.1161(MR5), and 8.10 before 8.10.1134(MR4). External system configuration data (used for third party inte… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-7215 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200274 8.8 HIGH
Network 		cacti cacti Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller c… CWE-78
OS Command  		CVE-2020-7237 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200275 6.1 MEDIUM
Network 		uhp uhp-100_firmware UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= (Site Name field of the Site Setup section). CWE-79
Cross-site Scripting 		CVE-2020-7236 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200276 6.1 MEDIUM
Network 		uhp uhp-100_firmware UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= (profile title). CWE-79
Cross-site Scripting 		CVE-2020-7235 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200277 4.8 MEDIUM
Network 		ruckuswireless r310_firmware Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wireless X screen (after a successful login to the super account). CWE-79
Cross-site Scripting 		CVE-2020-7234 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200278 9.8 CRITICAL
Network 		kmccontrols bac-a1616bc_firmware KMS Controls BAC-A1616BC BACnet devices have a cleartext password of snowman in the BACKDOOR_NAME variable in the BC_Logon.swf file. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-7233 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200279 7.5 HIGH
Network 		evoko home Evoko Home devices 1.31 through 1.37 allow remote attackers to obtain sensitive information (such as usernames and password hashes) via a WebSocket request, as demonstrated by the sockjs/224/uf1psgff… NVD-CWE-noinfo
CVE-2020-7232 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
200280 5.3 MEDIUM
Network 		evoko home Evoko Home 1.31 devices provide different error messages for failed login requests depending on whether the username is valid. CWE-209
Information Exposure Through an Error Message 		CVE-2020-7231 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm