Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225601	4	警告	シスコシステムズ	-	Cisco WebEx Social のユーザ管理ページにおけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1245	2013-05-17 16:08	2013-05-15	Show	GitHub Exploit DB Packet Storm

225602	3.5	注意	シスコシステムズ	-	Cisco WebEx Social の portal モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1244	2013-05-17 16:04	2013-05-15	Show	GitHub Exploit DB Packet Storm

225603	7.8	危険	シスコシステムズ	-	Cisco TelePresence Supervisor MSE 8050 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1236	2013-05-17 16:04	2013-05-15	Show	GitHub Exploit DB Packet Storm

225604	6.8	警告	シスコシステムズ	-	Cisco Secure Access Control System における Web セッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2013-1200	2013-05-17 16:03	2013-05-16	Show	GitHub Exploit DB Packet Storm

225605	5	警告	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-287 不適切な認証	CVE-2013-1188	2013-05-17 16:01	2013-05-15	Show	GitHub Exploit DB Packet Storm

225606	-	-	シスコシステムズ	-	削除 Cisco ACE の Application Control Engine モジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2013-1175	2013-05-17 16:00	2013-05-16	Show	GitHub Exploit DB Packet Storm

225607	9.3	危険	マイクロソフト	-	x64 プラットフォーム上で稼働する Microsoft Malware Protection Engine における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-1346	2013-05-16 17:55	2013-05-14	Show	GitHub Exploit DB Packet Storm

225608	4.3	警告	Wesley Destailleur	-	Todoo Forum の todooforum.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3538	2013-05-15 17:47	2013-05-13	Show	GitHub Exploit DB Packet Storm

225609	7.5	危険	Wesley Destailleur	-	Todoo Forum の todooforum.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3537	2013-05-15 17:46	2013-05-13	Show	GitHub Exploit DB Packet Storm

225610	7.5	危険	WHMCS Limited	-	WHMCS 用 Group Pay モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3536	2013-05-15 17:38	2013-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212391	9.8	CRITICAL Network	ivanti	dsm_netinst	Unsafe storage of AD credentials in Ivanti DSM netinst 5.1 due to a static, hard-coded encryption key.	CWE-798 Use of Hard-coded Credentials	CVE-2020-13793	2024-11-21 14:01	2020-08-7	Show	GitHub Exploit DB Packet Storm

212392	8.8	HIGH Network	zyxel	nas326_firmware nas520_firmware nas540_firmware nas542_firmware	Certain Zyxel products have a locally accessible binary that allows a non-root user to generate a password for an undocumented user account that can be used for a TELNET session as root. This affects…	CWE-287 Improper Authentication	CVE-2020-13365	2024-11-21 14:01	2020-08-7	Show	GitHub Exploit DB Packet Storm

212393	8.8	HIGH Network	zyxel	nas326_firmware nas520_firmware nas540_firmware nas542_firmware	A backdoor in certain Zyxel products allows remote TELNET access via a CGI script. This affects NAS520 V5.21(AASZ.4)C0, V5.21(AASZ.0)C0, V5.11(AASZ.3)C0, and V5.11(AASZ.0)C0; NAS542 V5.11(ABAG.0)C0, …	NVD-CWE-noinfo	CVE-2020-13364	2024-11-21 14:01	2020-08-7	Show	GitHub Exploit DB Packet Storm

212394	8.8	HIGH Network	quadra-informatique	atos\/sips	The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for Magento allows command injection.	CWE-78 OS Command	CVE-2020-13404	2024-11-21 14:01	2020-08-6	Show	GitHub Exploit DB Packet Storm

212395	6.1	MEDIUM Network	extremenetworks	extreme_management_center	Extreme EAC Appliance 8.4.1.24 allows unauthenticated reflected XSS via a parameter in a GET request.	CWE-79 Cross-site Scripting	CVE-2020-13819	2024-11-21 14:01	2020-08-5	Show	GitHub Exploit DB Packet Storm

212396	7.1	HIGH Local	softperfect	ram_disk	An exploitable arbitrary file delete vulnerability exists in SoftPerfect RAM Disk 4.1 spvve.sys driver. A specially crafted I/O request packet (IRP) can allow an unprivileged user to delete any file …	NVD-CWE-noinfo	CVE-2020-13522	2024-11-21 14:01	2020-08-5	Show	GitHub Exploit DB Packet Storm

212397	3.3	LOW Local	softperfect	ram_disk	An exploitable information disclosure vulnerability exists in SoftPerfect’s RAM Disk 4.1 spvve.sys driver. A specially crafted I/O request packet (IRP) can cause the disclosure of sensitive informati…	CWE-862 Missing Authorization	CVE-2020-13523	2024-11-21 14:01	2020-08-5	Show	GitHub Exploit DB Packet Storm

212398	6.1	MEDIUM Network	extremenetworks	extreme_management_center	Extreme Management Center 8.4.1.24 allows unauthenticated reflected XSS via a parameter in a GET request.	CWE-79 Cross-site Scripting	CVE-2020-13820	2024-11-21 14:01	2020-08-4	Show	GitHub Exploit DB Packet Storm

212399	8.8	HIGH Network	teamviewer	teamviewer	TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10:…	CWE-88 Argument Injection	CVE-2020-13699	2024-11-21 14:01	2020-07-30	Show	GitHub Exploit DB Packet Storm

212400	7.5	HIGH Network	microweber	microweber	userfiles/modules/users/controller/controller.php in Microweber before 1.1.20 allows an unauthenticated user to disclose the users database via a /modules/ POST request.	CWE-306 Missing Authentication for Critical Function	CVE-2020-13405	2024-11-21 14:01	2020-07-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed