Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225651 4.3 警告 Invensys - Invensys Wonderware Information Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0688 2013-05-10 14:07 2013-05-7 Show GitHub Exploit DB Packet Storm
225652 9.3 危険 Invensys - Invensys Wonderware Information Server における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0686 2013-05-10 14:06 2013-05-7 Show GitHub Exploit DB Packet Storm
225653 9.3 危険 Invensys - Invensys Wonderware Information Server における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0685 2013-05-10 14:06 2013-05-7 Show GitHub Exploit DB Packet Storm
225654 7.5 危険 Invensys - Invensys Wonderware Information Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0684 2013-05-10 14:05 2013-05-7 Show GitHub Exploit DB Packet Storm
225655 9.3 危険 IBM - IBM WebSphere DataPower XC10 アプライアンスデバイスにおける認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0600 2013-05-10 14:04 2013-05-3 Show GitHub Exploit DB Packet Storm
225656 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1876 2013-05-9 19:47 2012-06-12 Show GitHub Exploit DB Packet Storm
225657 6.8 警告 GroundWork - GroundWork Monitor Enterprise におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3513 2013-05-9 16:33 2013-03-7 Show GitHub Exploit DB Packet Storm
225658 6.5 警告 GroundWork - GroundWork Monitor Enterprise の Cacti コンポーネントにおける構成の設定を読まれるの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3512 2013-05-9 16:33 2013-03-7 Show GitHub Exploit DB Packet Storm
225659 5.8 警告 GroundWork - GroundWork Monitor Enterprise の NeDi コンポーネントにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3511 2013-05-9 16:32 2013-03-7 Show GitHub Exploit DB Packet Storm
225660 6.5 警告 GroundWork - GroundWork Monitor Enterprise における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3510 2013-05-9 16:31 2013-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200461 9.8 CRITICAL
Network 		vmware
oracle 		spring_integration
flexcube_private_banking
retail_merchandising_system
banking_virtual_account_management
banking_credit_facilities_process_management
banking_corporate_lending_proces… 		Spring Integration framework provides Kryo Codec implementations as an alternative for Java (de)serialization. When Kryo is configured with default options, all unregistered classes are resolved on d… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-5413 2024-11-21 14:34 2020-08-1 Show GitHub Exploit DB Packet Storm
200462 8.8 HIGH
Network 		vmware gemfire
tanzu_gemfire_for_virtual_machines 		VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and 9.7.6, and VMware Tanzu GemFire for VMs versions prior to 1.11.1 and 1.10.2, when deployed without a SecurityManager, contain a JMX service … CWE-862
 Missing Authorization 		CVE-2020-5396 2024-11-21 14:34 2020-08-1 Show GitHub Exploit DB Packet Storm
200463 8.4 HIGH
Local 		rsa multifactor_authentication_agent Authentication Bypass Vulnerability RSA MFA Agent 2.0 for Microsoft Windows contains an Authentication Bypass vulnerability. A local unauthenticated attacker could potentially exploit this vulnerabil… CWE-287
Improper Authentication 		CVE-2020-5384 2024-11-21 14:34 2020-08-1 Show GitHub Exploit DB Packet Storm
200464 7.8 HIGH
Local 		toyota global_techstream Global TechStream (GTS) for TOYOTA dealers version 15.10.032 and earlier allows an attacker to cause a denial-of-service (DoS) condition and execute arbitrary code via unspecified vectors. CWE-787
 Out-of-bounds Write 		CVE-2020-5610 2024-11-21 14:34 2020-07-30 Show GitHub Exploit DB Packet Storm
200465 8.8 HIGH
Network 		grandstream ht801_firmware
ht802_firmware
ht812_firmware
ht814_firmware
ht818_firmware
ht813_firmware 		Grandstream HT800 series firmware version 1.0.17.5 and below contain a backdoor in the SSH service. An authenticated remote attacker can obtain a root shell by correctly answering a challenge prompt. CWE-326
Inadequate Encryption Strength 		CVE-2020-5763 2024-11-21 14:34 2020-07-30 Show GitHub Exploit DB Packet Storm
200466 7.5 HIGH
Network 		grandstream ht801_firmware
ht802_firmware
ht812_firmware
ht814_firmware
ht818_firmware
ht813_firmware 		Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to a denial of service attack against the TR-069 service. An unauthenticated remote attacker can stop the service due to a N… CWE-476
 NULL Pointer Dereference 		CVE-2020-5762 2024-11-21 14:34 2020-07-30 Show GitHub Exploit DB Packet Storm
200467 7.5 HIGH
Network 		grandstream ht801_firmware
ht802_firmware
ht812_firmware
ht814_firmware
ht818_firmware
ht813_firmware 		Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by s… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-5761 2024-11-21 14:34 2020-07-30 Show GitHub Exploit DB Packet Storm
200468 7.8 HIGH
Local 		grandstream ht801_firmware
ht802_firmware
ht812_firmware
ht814_firmware
ht818_firmware
ht813_firmware 		Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to an OS command injection vulnerability. Unauthenticated remote attackers can execute arbitrary commands as root by craftin… CWE-78
OS Command  		CVE-2020-5760 2024-11-21 14:34 2020-07-30 Show GitHub Exploit DB Packet Storm
200469 5.3 MEDIUM
Network 		kujirahand konawiki Directory traversal vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2020-5614 2024-11-21 14:34 2020-07-29 Show GitHub Exploit DB Packet Storm
200470 6.1 MEDIUM
Network 		kujirahand konawiki Cross-site scripting vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to execute an arbitrary script via a specially crafted URL. CWE-79
Cross-site Scripting 		CVE-2020-5613 2024-11-21 14:34 2020-07-29 Show GitHub Exploit DB Packet Storm