Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225611 4.3 警告 algisinfo - Joomla! 用の aiContactSafe コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3534 2013-05-15 17:32 2013-04-16 Show GitHub Exploit DB Packet Storm
225612 2.6 注意 Fedora Project - 389 Directory Server の ldap/servers/slapd/search.c における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1897 2013-05-15 16:07 2013-03-28 Show GitHub Exploit DB Packet Storm
225613 7.5 危険 Virtual Access - Virtual Access Monitor における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3533 2013-05-14 15:49 2013-05-10 Show GitHub Exploit DB Packet Storm
225614 7.5 危険 Web-Dorado - Drupal 用 Web Dorado Spider Video Player プラグインの settings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3532 2013-05-14 15:49 2013-05-10 Show GitHub Exploit DB Packet Storm
225615 7.5 危険 RadioCMS - RadioCMS の meneger.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3531 2013-05-14 15:48 2013-05-10 Show GitHub Exploit DB Packet Storm
225616 7.5 危険 Fabricio Zuardi - WordPress 用 Spiffy XSPF Player プラグインの playlist.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3530 2013-05-14 15:47 2013-05-10 Show GitHub Exploit DB Packet Storm
225617 4.3 警告 Smarty Pants Plugins - WordPress 用 WP FuneralPress プラグインの user/obits.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3529 2013-05-14 15:46 2013-05-10 Show GitHub Exploit DB Packet Storm
225618 7.5 危険 Vanilla Forums - Vanilla Forums の更新チェックにおける脆弱性 CWE-noinfo
情報不足 		CVE-2013-3528 2013-05-14 15:44 2013-04-5 Show GitHub Exploit DB Packet Storm
225619 7.5 危険 Vanilla Forums - Vanilla Forums における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3527 2013-05-14 15:37 2013-04-5 Show GitHub Exploit DB Packet Storm
225620 4.3 警告 georgemathewk - WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3526 2013-05-14 15:37 2013-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200451 9.8 CRITICAL
Network 		yokogawa centum_cs_3000_firmware
centum_vp_firmware
b\/m9000cs_firmware
b\/m9000vp_firmware 		CAMS for HIS CENTUM CS 3000 (includes CENTUM CS 3000 Small) R3.08.10 to R3.09.50, CENTUM VP (includes CENTUM VP Small, Basic) R4.01.00 to R6.07.00, B/M9000CS R5.04.01 to R5.05.01, and B/M9000 VP R6.0… CWE-287
Improper Authentication 		CVE-2020-5608 2024-11-21 14:34 2020-08-5 Show GitHub Exploit DB Packet Storm
200452 7.4 HIGH
Local 		checkpoint zonealarm_anti-ransomware ZoneAlarm Anti-Ransomware before version 1.0.713 copies files for the report from a directory with low privileges. A sophisticated timed attacker can replace those files with malicious or linked cont… CWE-59
Link Following 		CVE-2020-6012 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200453 7.8 HIGH
Local 		skygroup skysea_client_view Privilege escalation vulnerability in SKYSEA Client View Ver.12.200.12n to 15.210.05f allows an attacker to obtain unauthorized privileges and modify/obtain sensitive information or perform unintende… CWE-269
 Improper Privilege Management 		CVE-2020-5617 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200454 9.8 CRITICAL
Network 		calendar02_project
calendar01_project
link01_project
calendarform01_project
gallery01_project
telop01_project
pkobo-vote01_project
pkobo-news01_project 		calendar02
calendar01
link01
calendarform01
gallery01
telop01
pkobo-vote01
pkobo-news01 		[Calendar01], [Calendar02], [PKOBO-News01], [PKOBO-vote01], [Telop01], [Gallery01], [CalendarForm01], and [Link01] [Calendar01] free edition ver1.0.0, [Calendar02] free edition ver1.0.0, [PKOBO-News0… CWE-287
Improper Authentication 		CVE-2020-5616 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200455 8.8 HIGH
Network 		calendar02_project
calendar01_project 		calendar02
calendar01 		Cross-site request forgery (CSRF) vulnerability in [Calendar01] free edition ver1.0.0 and [Calendar02] free edition ver1.0.0 allows remote attackers to hijack the authentication of administrators via… CWE-352
 Origin Validation Error 		CVE-2020-5615 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200456 8.8 HIGH
Network 		teltonika-networks trb245_firmware Improper Access Control in Teltonika firmware TRB2_R_00.02.04.01 allows a low privileged user to perform unauthorized write operations. CWE-269
 Improper Privilege Management 		CVE-2020-5773 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200457 7.5 HIGH
Network 		teltonika-networks trb245_firmware Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by uploading a malicious package file. CWE-494
 Download of Code Without Integrity Check 		CVE-2020-5772 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200458 7.5 HIGH
Network 		teltonika-networks trb245_firmware Improper Input Validation in Teltonika firmware TRB2_R_00.02.04.01 allows a remote, authenticated attacker to gain root privileges by uploading a malicious backup archive. CWE-20
 Improper Input Validation  		CVE-2020-5771 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200459 8.8 HIGH
Network 		teltonika-networks trb245_firmware Cross-site request forgery in Teltonika firmware TRB2_R_00.02.04.01 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link. CWE-352
 Origin Validation Error 		CVE-2020-5770 2024-11-21 14:34 2020-08-4 Show GitHub Exploit DB Packet Storm
200460 5.7 MEDIUM
Network 		vmware tanzu_application_service_for_virtual_machines
operations_manager 		VMware Tanzu Application Service for VMs (2.7.x versions prior to 2.7.19, 2.8.x versions prior to 2.8.13, and 2.9.x versions prior to 2.9.7) contains an App Autoscaler that logs the UAA admin passwor… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-5414 2024-11-21 14:34 2020-08-1 Show GitHub Exploit DB Packet Storm