Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225421	5	警告	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1162	2013-03-27 16:35	2013-03-15	Show	GitHub Exploit DB Packet Storm

225422	6.3	警告	シスコシステムズ	-	Android 用 Cisco Jabber IM アプリケーションの XML パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1161	2013-03-27 16:33	2013-03-12	Show	GitHub Exploit DB Packet Storm

225423	1.9	注意	Linux	-	Linux Kernel の net/bridge/br_mdb.c における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2013-2636	2013-03-26 17:46	2013-03-20	Show	GitHub Exploit DB Packet Storm

225424	8.5	危険	ヒューレット・パッカード	-	HP Systems Insight Manager における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1999	2013-03-26 17:30	2012-04-30	Show	GitHub Exploit DB Packet Storm

225425	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2417	2013-03-26 17:02	2011-08-9	Show	GitHub Exploit DB Packet Storm

225426	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2416	2013-03-26 16:58	2011-08-9	Show	GitHub Exploit DB Packet Storm

225427	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2415	2013-03-26 16:56	2011-08-9	Show	GitHub Exploit DB Packet Storm

225428	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2414	2013-03-26 16:54	2011-08-9	Show	GitHub Exploit DB Packet Storm

225429	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2140	2013-03-26 16:53	2011-08-9	Show	GitHub Exploit DB Packet Storm

225430	6.4	警告	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2139	2013-03-26 16:52	2011-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211771	5.9	MEDIUM Network	pichi_project	pichi	The boost ASIO wrapper in net/asio.cpp in Pichi before 1.3.0 lacks TLS hostname verification.	CWE-295 Improper Certificate Validation	CVE-2020-13616	2024-11-21 14:01	2020-05-27	Show	GitHub Exploit DB Packet Storm

211772	5.9	MEDIUM Network	qore	qore	lib/QoreSocket.cpp in Qore before 0.9.4.2 lacks hostname verification for X.509 certificates.	CWE-295 Improper Certificate Validation	CVE-2020-13615	2024-11-21 14:01	2020-05-27	Show	GitHub Exploit DB Packet Storm

211773	5.9	MEDIUM Network	axel_project fedoraproject opensuse	axel fedora leap backports_sle	An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.	CWE-295 Improper Certificate Validation	CVE-2020-13614	2024-11-21 14:01	2020-05-27	Show	GitHub Exploit DB Packet Storm

211774	4.8	MEDIUM Network	bbpress	bbpress	The bbPress plugin through 2.6.4 for WordPress has stored XSS in the Forum creation section, resulting in JavaScript execution at wp-admin/edit.php?post_type=forum (aka the Forum listing page) for al…	CWE-79 Cross-site Scripting	CVE-2020-13487	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211775	6.1	MEDIUM Network	verbb	knock_knock	The Knock Knock plugin before 1.2.8 for Craft CMS allows malicious redirection.	CWE-601 Open Redirect	CVE-2020-13486	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211776	9.1	CRITICAL Network	verbb	knock_knock	The Knock Knock plugin before 1.2.8 for Craft CMS allows IP Whitelist bypass via an X-Forwarded-For HTTP header.	CWE-697 Incorrect Comparison	CVE-2020-13485	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211777	7.4	HIGH Network	em-http-request_project fedoraproject	em-http-request fedora	EM-HTTP-Request 1.1.5 uses the library eventmachine in an insecure way that allows an attacker to perform a man-in-the-middle attack against users of the library. The hostname in a TLS server certifi…	CWE-295 Improper Certificate Validation	CVE-2020-13482	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211778	5.4	MEDIUM Network	verbb	image_resizer	An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action.	CWE-79 Cross-site Scripting	CVE-2020-13459	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211779	8.8	HIGH Network	verbb	image_resizer	An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action.	CWE-352 Origin Validation Error	CVE-2020-13458	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm

211780	9.8	CRITICAL Network	dext5	dext5	A Remote code execution vulnerability exists in DEXT5Upload in DEXT5 through 2.7.1402870. An attacker can upload a PHP file via dext5handler.jsp handler because the uploaded file is stored under dext…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-13442	2024-11-21 14:01	2020-05-26	Show	GitHub Exploit DB Packet Storm