Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225351	4	警告	Mozilla Foundation	-	Mozilla Firefox におけるクリックジャッキング攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1696	2013-07-5 11:02	2013-06-25	Show	GitHub Exploit DB Packet Storm

225352	10	危険	Mozilla Foundation	-	Mozilla Firefox のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1683	2013-07-5 11:01	2013-06-25	Show	GitHub Exploit DB Packet Storm

225353	9.3	危険	Mozilla Foundation	-	Mozilla Firefox のプロファイラの実装における任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-1688	2013-07-5 11:00	2013-06-25	Show	GitHub Exploit DB Packet Storm

225354	9.3	危険	libarchive	-	libarchive の archive_read_support_format_tar.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3641	2013-07-5 10:46	2007-07-12	Show	GitHub Exploit DB Packet Storm

225355	4.3	警告	libarchive	-	libarchive の archive_read_support_format_tar.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3644	2013-07-5 10:43	2007-07-12	Show	GitHub Exploit DB Packet Storm

225356	4.3	警告	libarchive	-	libarchive の archive_read_support_format_tar.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3645	2013-07-5 10:39	2007-07-12	Show	GitHub Exploit DB Packet Storm

225357	4	警告	IBM	-	IBM Sterling B2B Integrator および Sterling File Gateway における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-2985	2013-07-4 15:20	2013-06-30	Show	GitHub Exploit DB Packet Storm

225358	6.5	警告	IBM	-	IBM Sterling B2B Integrator および Sterling File Gateway におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2984	2013-07-4 15:18	2013-03-22	Show	GitHub Exploit DB Packet Storm

225359	6.5	警告	IBM	-	IBM Sterling B2B Integrator および Sterling File Gateway における任意のファイルをアップロードされる脆弱性	CWE-noinfo 情報不足	CVE-2013-2982	2013-07-4 15:17	2013-06-30	Show	GitHub Exploit DB Packet Storm

225360	6.5	警告	IBM	-	IBM Sterling B2B Integrator および Sterling File Gateway における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-0560	2013-07-4 15:14	2013-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210741	6.1	MEDIUM Network	codoforum	codoforum	Codoforum 4.8.3 allows HTML Injection in the 'admin dashboard Manage users Section.'	CWE-79 Cross-site Scripting	CVE-2020-21845	2024-11-21 14:12	2020-09-15	Show	GitHub Exploit DB Packet Storm

210742	6.1	MEDIUM Network	sagemcom	f\@st_3686_firmware	Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.	CWE-79 Cross-site Scripting	CVE-2020-21733	2024-11-21 14:12	2020-09-14	Show	GitHub Exploit DB Packet Storm

210743	6.1	MEDIUM Network	rukovoditel	rukovoditel	Rukovoditel Project Management app 2.6 is affected by: Cross Site Scripting (XSS). An attacker can add JavaScript code to the filename.	CWE-79 Cross-site Scripting	CVE-2020-21732	2024-11-21 14:12	2020-09-14	Show	GitHub Exploit DB Packet Storm

210744	6.1	MEDIUM Network	gazie_project	gazie	Gazie 7.29 is affected by: Cross Site Scripting (XSS) via http://192.168.100.7/gazie/modules/config/admin_utente.php?user_name=amministratore&Update. An attacker can inject JavaScript code, and the w…	CWE-79 Cross-site Scripting	CVE-2020-21731	2024-11-21 14:12	2020-09-14	Show	GitHub Exploit DB Packet Storm

210745	6.1	MEDIUM Network	appsaloon	wp-gdpr	controller/controller-comments.php in WP GDPR plugin through 2.1.1 has unauthenticated stored XSS.	CWE-79 Cross-site Scripting	CVE-2020-20628	2024-11-21 14:12	2020-09-1	Show	GitHub Exploit DB Packet Storm

210746	5.3	MEDIUM Network	givewp	givewp	The includes/gateways/stripe/includes/admin/admin-actions.php in GiveWP plugin through 2.5.9 for WordPress allows unauthenticated settings change.	CWE-306 Missing Authentication for Critical Function	CVE-2020-20627	2024-11-21 14:12	2020-09-1	Show	GitHub Exploit DB Packet Storm

210747	5.4	MEDIUM Network	lara\'s_google_analytics_project	lara\'s_google_analytics	lara-google-analytics.php in Lara Google Analytics plugin through 2.0.4 for WordPress allows authenticated stored XSS.	CWE-79 Cross-site Scripting	CVE-2020-20626	2024-11-21 14:12	2020-09-1	Show	GitHub Exploit DB Packet Storm

210748	7.5	HIGH Network	slicedinvoices	sliced_invoices	Sliced Invoices plugin for WordPress 3.8.2 and earlier allows unauthenticated information disclosure and authenticated SQL injection via core/class-sliced.php.	CWE-89 SQL Injection	CVE-2020-20625	2024-11-21 14:12	2020-09-1	Show	GitHub Exploit DB Packet Storm

210749	5.4	MEDIUM Network	cookielawinfo	gdpr_cookie_consent	ajax_policy_generator in admin/modules/cli-policy-generator/classes/class-policy-generator-ajax.php in GDPR Cookie Consent (cookie-law-info) 1.8.2 and below plugin for WordPress, allows authenticated…	CWE-79 Cross-site Scripting	CVE-2020-20633	2024-11-21 14:12	2020-08-22	Show	GitHub Exploit DB Packet Storm

210750	6.5	MEDIUM Network	elementor	website_builder	Elementor 2.9.5 and below WordPress plugin allows authenticated users to activate its safe mode feature. This can be exploited to disable all security plugins on the blog.	NVD-CWE-noinfo	CVE-2020-20634	2024-11-21 14:12	2020-08-22	Show	GitHub Exploit DB Packet Storm