Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225531	8.5	危険	Huawei	-	Huawei Video Conference system 用の Huawei viewpoint VP9610 および VP9620 ユニットにおけるセッションをハイジャックされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-4629	2013-06-24 16:53	2013-05-13	Show	GitHub Exploit DB Packet Storm

225532	3.5	注意	Huawei	-	Huawei Campus Switch デバイス上で稼働する複数の Huawei Quidway SPU ボードにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-4628	2013-06-24 16:52	2013-05-16	Show	GitHub Exploit DB Packet Storm

225533	7.5	危険	Huawei	-	Huawei の AR ルータおよびスイッチ製品におけるセッションをハイジャックされる脆弱性	CWE-310 暗号の問題	CVE-2012-6571	2013-06-24 16:50	2012-08-4	Show	GitHub Exploit DB Packet Storm

225534	10	危険	Huawei	-	Huawei の AR ルータおよびスイッチ製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6570	2013-06-24 16:50	2012-08-4	Show	GitHub Exploit DB Packet Storm

225535	9.3	危険	Huawei	-	Huawei の AR ルータおよびスイッチ製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6569	2013-06-24 16:49	2012-08-4	Show	GitHub Exploit DB Packet Storm

225536	6.9	警告	Huawei	-	Huawei UTPS におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6568	2013-06-24 16:42	2012-09-22	Show	GitHub Exploit DB Packet Storm

225537	7.5	危険	Raphael Zschorsch	-	TYPO3 用 jQuery autocomplete for indexed_search における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4634	2013-06-24 15:26	2013-06-3	Show	GitHub Exploit DB Packet Storm

225538	4.3	警告	Catalin Florian Radut	-	Drupal 用 Zero Point テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1905	2013-06-24 15:24	2013-03-27	Show	GitHub Exploit DB Packet Storm

225539	2.1	注意	Jordan Starcher	-	Drupal 用 CurvyCorners モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1393	2013-06-24 15:20	2013-01-23	Show	GitHub Exploit DB Packet Storm

225540	6.9	警告	Fabrice Bellard	-	Xen で使用される Qemu の qemu guest エージェントにおける特定のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2007	2013-06-21 15:42	2013-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210531	9.8	CRITICAL Network	zzzcms	zzzphp	Eval injection vulnerability in the parserCommom method in the ParserTemplate class in zzz_template.php in zzzphp 1.7.2 allows remote attackers to execute arbitrary commands.	CWE-94 Code Injection	CVE-2020-20298	2024-11-21 14:12	2020-12-19	Show	GitHub Exploit DB Packet Storm

210532	7.8	HIGH Local	pdfresurrect_project debian fedoraproject	pdfresurrect debian_linux fedora	PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_version().	CWE-787 Out-of-bounds Write	CVE-2020-20740	2024-11-21 14:12	2020-11-21	Show	GitHub Exploit DB Packet Storm

210533	5.3	MEDIUM Network	libvips debian fedoraproject	libvips debian_linux fedora	im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an uninitialized variable which may cause the leakage of remote server path or stack address.	CWE-909 Missing Initialization of Resource	CVE-2020-20739	2024-11-21 14:12	2020-11-21	Show	GitHub Exploit DB Packet Storm

210534	7.2	HIGH Network	fastadmin	fastadmin	In fastadmin V1.0.0.20191212_beta, when a user with administrator rights has logged in, a malicious parameter can be passed for SQL injection in URL /admin/ajax/weigh.	CWE-89 SQL Injection	CVE-2020-21665	2024-11-21 14:12	2020-11-18	Show	GitHub Exploit DB Packet Storm

210535	7.2	HIGH Network	fastadmin-tp6_project	fastadmin-tp6	In fastadmin-tp6 v1.0, in the file app/admin/controller/Ajax.php the 'table' parameter passed is not filtered so a malicious parameter can be passed for SQL injection.	CWE-89 SQL Injection	CVE-2020-21667	2024-11-21 14:12	2020-11-14	Show	GitHub Exploit DB Packet Storm

210536	6.1	MEDIUM Network	broadleafcommerce	broadleaf_commerce	Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting (XSS) due to a slow HTTP post vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-21266	2024-11-21 14:12	2020-10-29	Show	GitHub Exploit DB Packet Storm

210537	6.5	MEDIUM Network	libarchive	libarchive	Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c) in libarchive-3.4.1dev allows remote attackers to cause a denial of service (out-of-bounds write in heap memory resul…	CWE-787 Out-of-bounds Write	CVE-2020-21674	2024-11-21 14:12	2020-10-16	Show	GitHub Exploit DB Packet Storm

210538	8.8	HIGH Network	pluck-cms	pluck	An issue was discovered in Pluck CMS 4.7.10-dev2 and 4.7.11. There is a file upload vulnerability that can cause a remote command execution via admin.php?action=files.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-21564	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm

210539	7.7	HIGH Network	halo	halo	There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through direct…	CWE-22 Path Traversal	CVE-2020-21527	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm

210540	9.8	CRITICAL Network	halo	halo	An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith func…	CWE-22 Path Traversal	CVE-2020-21526	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm