Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225321	7.5	危険	FreeNAC	-	FreeNAC の deviceadd.php における SQL インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2012-6560	2013-05-27 15:54	2013-05-23	Show	GitHub Exploit DB Packet Storm

225322	5	警告	Wireshark	-	Wireshark における重要なホスト名の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6052	2013-05-27 15:54	2012-11-28	Show	GitHub Exploit DB Packet Storm

225323	4.3	警告	FreeNAC	-	FreeNAC におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6559	2013-05-27 15:52	2013-05-23	Show	GitHub Exploit DB Packet Storm

225324	6.8	警告	Heaventools Software	-	HeavenTools PE Explorer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6558	2013-05-27 15:46	2012-05-18	Show	GitHub Exploit DB Packet Storm

225325	4.4	警告	GNU Project	-	GNU Grep おける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-5667	2013-05-27 15:46	2012-12-21	Show	GitHub Exploit DB Packet Storm

225326	4.3	警告	zodiacdm	-	Vanilla Forums 用の AboutMe プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6557	2013-05-27 15:43	2013-05-23	Show	GitHub Exploit DB Packet Storm

225327	4.3	警告	jspautsch	-	Vanilla Forums 用の FirstLastNames プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6556	2013-05-27 15:41	2013-05-23	Show	GitHub Exploit DB Packet Storm

225328	4.3	警告	sahotataran	-	Vanilla Forums 用の LatestComment プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6555	2013-05-27 15:40	2013-05-23	Show	GitHub Exploit DB Packet Storm

225329	6.5	警告	activeCollab	-	activeCollab 用の Chat モジュールにおける任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6554	2013-05-27 15:36	2012-05-16	Show	GitHub Exploit DB Packet Storm

225330	9.3	危険	アップル	-	Apple QuickTime におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1021	2013-05-27 15:27	2013-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211351	6.1	MEDIUM Local	mirumee	saleor	In Saleor Storefront before version 2.10.3, request data used to authenticate customers was inadvertently cached in the browser's local storage mechanism, including credentials. A malicious user with…	-	CVE-2020-15085	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

211352	9.1	CRITICAL Network	auth0	express-jwt	In express-jwt (NPM package) up and including version 5.3.3, the algorithms entry to be specified in the configuration is not being enforced. When algorithms is not specified in the configuration, wi…	CWE-863 Incorrect Authorization	CVE-2020-15084	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

211353	7.8	HIGH Local	arswp	windows_cleanup_assistant	In Windows cleaning assistant 3.2, the driver file (AtpKrnl.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input value…	CWE-20 Improper Input Validation	CVE-2020-14957	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

211354	7.8	HIGH Local	arswp	windows_cleanup_assistant	In Windows cleaning assistant 3.2, the driver file (AtpKrnl.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input value…	CWE-20 Improper Input Validation	CVE-2020-14956	2024-11-21 14:04	2020-07-1	Show	GitHub Exploit DB Packet Storm

211355	9.8	CRITICAL Network	sophos	xg_firewall_firmware	Sophos XG Firewall 17.x through v17.5 MR12 allows a Buffer Overflow and remote code execution via the HTTP/S Bookmarks feature for clientless access. Hotfix HF062020.1 was published for all firewalls…	CWE-120 Classic Buffer Overflow	CVE-2020-15069	2024-11-21 14:04	2020-06-30	Show	GitHub Exploit DB Packet Storm

211356	6.5	MEDIUM Network	iball	wrb303n_firmware	iBall WRB303N devices allow CSRF attacks, as demonstrated by enabling remote management, enabling DHCP, or modifying the subnet range for IP addresses.	CWE-352 Origin Validation Error	CVE-2020-15043	2024-11-21 14:04	2020-06-30	Show	GitHub Exploit DB Packet Storm

211357	5.5	MEDIUM Local	jiangmin	jiangmin_antivirus	In Jiangmin Antivirus 16.0.13.129, the driver file (KVFG.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values f…	CWE-20 Improper Input Validation	CVE-2020-14955	2024-11-21 14:04	2020-06-27	Show	GitHub Exploit DB Packet Storm

211358	6.1	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to reflected cross-site scripting. The Devices-Config.php file improperly validates user input. An attacker can exploit this vulnerability by crafting arbitrary JavaScript in …	CWE-79 Cross-site Scripting	CVE-2020-15017	2024-11-21 14:04	2020-06-26	Show	GitHub Exploit DB Packet Storm

211359	6.1	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to reflected cross-site scripting. The Other-Converter.php file improperly validates user input. An attacker can exploit this vulnerability by crafting arbitrary JavaScript in…	CWE-79 Cross-site Scripting	CVE-2020-15016	2024-11-21 14:04	2020-06-26	Show	GitHub Exploit DB Packet Storm

211360	5.9	MEDIUM Network	trojita_project	trojita	MSA/SMTP.cpp in Trojita before 0.8 ignores certificate-verification errors, which allows man-in-the-middle attackers to spoof SMTP servers.	CWE-295 Improper Certificate Validation	CVE-2020-15047	2024-11-21 14:04	2020-06-25	Show	GitHub Exploit DB Packet Storm