Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225361	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の js::gc::MapAllocToTraceKind 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3963	2013-06-11 15:11	2012-08-28	Show	GitHub Exploit DB Packet Storm

225362	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2012-3962	2013-06-11 15:04	2012-08-28	Show	GitHub Exploit DB Packet Storm

225363	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の RangeData の実装における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3961	2013-06-11 15:01	2012-08-28	Show	GitHub Exploit DB Packet Storm

225364	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の mozSpellChecker::SetCurrentDictionary 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3960	2013-06-11 14:57	2012-08-28	Show	GitHub Exploit DB Packet Storm

225365	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsRangeUpdater::SelAdjDeleteNode 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3959	2013-06-11 14:54	2012-08-28	Show	GitHub Exploit DB Packet Storm

225366	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsHTMLEditRules::DeleteNonTableElements 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3958	2013-06-11 14:50	2012-08-28	Show	GitHub Exploit DB Packet Storm

225367	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsBlockFrame::MarkLineDirty 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3957	2013-06-11 14:45	2012-08-28	Show	GitHub Exploit DB Packet Storm

225368	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の MediaStreamGraphThreadRunnable::Run 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3956	2013-06-11 14:42	2012-08-28	Show	GitHub Exploit DB Packet Storm

225369	6.8	警告	LibTIFF	-	LibTIFF の tiff2pdf におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-3401	2013-06-11 14:34	2012-08-13	Show	GitHub Exploit DB Packet Storm

225370	6.8	警告	Linux	-	Linux Kernel の net/batman-adv/icmp_socket.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-4604	2013-06-10 15:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211091	9.6	CRITICAL Network	siemens	sicam_a8000_firmware	A vulnerability has been identified in SICAM WEB firmware for SICAM A8000 RTUs (All versions < V05.30). The login screen does not sufficiently sanitize input, which enables an attacker to generate sp…	CWE-79 Cross-site Scripting	CVE-2020-15781	2024-11-21 14:06	2020-08-15	Show	GitHub Exploit DB Packet Storm

211092	7.2	HIGH Network	geutebrueck	g-cam_ebc-2110_firmware g-cam_ebc-2111_firmware g-cam_efd-2240_firmware g-cam_efd-2241_firmware g-cam_efd-2250_firmware g-cam_ethc-2230_firmware g-cam_ethc-2239_firmware g-cam_et…	Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.…	CWE-78 OS Command	CVE-2020-16205	2024-11-21 14:06	2020-08-14	Show	GitHub Exploit DB Packet Storm

211093	8.8	HIGH Network	loway	queuemetrics	A SQL injection vulnerability in the qm_adm/qm_export_stats_run.do endpoint of Loway QueueMetrics before 19.10.21 allows remote authenticated users to execute arbitrary SQL commands via the exportId …	CWE-89 SQL Injection	CVE-2020-15947	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211094	8.8	HIGH Network	loway	queuemetrics	A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.10.21 allows remote authenticated attackers to execute arbitrary SQL commands via the TPF_XPAR1 parameter.	CWE-89 SQL Injection	CVE-2020-15925	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211095	8.6	HIGH Local	vng	zalo_desktop	An issue was discovered in Zalo.exe in VNG Zalo Desktop 19.8.1.0. An attacker can run arbitrary commands on a remote Windows machine running the Zalo client by sending the user of the device a crafte…	CWE-74 Injection	CVE-2020-16087	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211096	7.5	HIGH Network	sonatype	nexus_repository_manager	Sonatype Nexus Repository Manager OSS/Pro before 3.26.0 has Incorrect Access Control.	NVD-CWE-noinfo	CVE-2020-15868	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211097	7.5	HIGH Network	cisco	unified_ip_conference_station_7937g_firmware	A denial-of-service in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers restart the device remotely through sending specially crafted packets. Note: We cannot prove …	NVD-CWE-noinfo	CVE-2020-16139	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211098	7.5	HIGH Network	cisco	unified_ip_conference_station_7937g_firmware	A denial-of-service issue in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to remotely disable the device until it is power cycled. Note: We cannot prove this vul…	NVD-CWE-noinfo	CVE-2020-16138	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211099	9.8	CRITICAL Network	cisco	unified_ip_conference_station_7937g_firmware	A privilege escalation issue in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to reset the credentials for the SSH administrative console to arbitrary values. Not…	NVD-CWE-noinfo	CVE-2020-16137	2024-11-21 14:06	2020-08-13	Show	GitHub Exploit DB Packet Storm

211100	6.1	MEDIUM Network	roundcube fedoraproject	webmail fedora	Roundcube Webmail before 1.3.15 and 1.4.8 allows stored XSS in HTML messages during message display via a crafted SVG document. This issue has been fixed in 1.4.8 and 1.3.15.	CWE-79 Cross-site Scripting	CVE-2020-16145	2024-11-21 14:06	2020-08-12	Show	GitHub Exploit DB Packet Storm