Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225671 6.4 警告 サン・マイクロシステムズ - Oracle Java SE の Java Runtime Environment における JAX-WS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-5074 2013-01-17 16:46 2012-10-16 Show GitHub Exploit DB Packet Storm
225672 5 警告 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2012-5082 2013-01-17 16:45 2012-10-16 Show GitHub Exploit DB Packet Storm
225673 7.6 危険 オラクル - Oracle Java SE の JavaFX における脆弱性 CWE-noinfo
情報不足 		CVE-2012-5080 2013-01-17 16:44 2012-10-16 Show GitHub Exploit DB Packet Storm
225674 6.4 警告 Google - Google Chrome におけるファイルアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0829 2013-01-17 14:32 2013-01-10 Show GitHub Exploit DB Packet Storm
225675 6.8 警告 Google - Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0828 2013-01-17 14:25 2013-01-10 Show GitHub Exploit DB Packet Storm
225676 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5157 2013-01-17 14:14 2013-01-10 Show GitHub Exploit DB Packet Storm
225677 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-5156 2013-01-17 14:11 2013-01-10 Show GitHub Exploit DB Packet Storm
225678 5 警告 Google - Mac OS X 上で稼働する Google Chrome におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5155 2013-01-17 14:09 2013-01-10 Show GitHub Exploit DB Packet Storm
225679 7.5 危険 Google - Windows 上で稼働する Google Chrome における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-5154 2013-01-17 14:05 2013-01-10 Show GitHub Exploit DB Packet Storm
225680 7.5 危険 Google - Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5153 2013-01-17 14:03 2013-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211461 8.8 HIGH
Network 		loway queuemetrics A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.04.1 allows remote authenticated attackers to execute arbitrary SQL commands via the TASKS_LIST__pt.querystring parameter. CWE-89
SQL Injection 		CVE-2020-13127 2024-11-21 14:00 2020-09-10 Show GitHub Exploit DB Packet Storm
211462 7.2 HIGH
Network 		openfind mail2000 Openfind Mail2000 contains Broken Access Control vulnerability, which can be used to execute unauthorized commands after attackers obtain the administrator access token or cookie. NVD-CWE-noinfo
CVE-2020-12776 2024-11-21 14:00 2020-09-1 Show GitHub Exploit DB Packet Storm
211463 3.8 LOW
Local 		qemu
canonical
debian 		qemu
ubuntu_linux
debian_linux 		In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPY_AREA macro while handling MMIO write operations through the sm501_2d_engi… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-12829 2024-11-21 14:00 2020-09-1 Show GitHub Exploit DB Packet Storm
211464 8.8 HIGH
Network 		seczetta neprofile A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flo… CWE-74
Injection 		CVE-2020-12855 2024-11-21 14:00 2020-08-27 Show GitHub Exploit DB Packet Storm
211465 7.5 HIGH
Network 		oasis-open oasis_digital_signature_services In OASIS Digital Signature Services (DSS) 1.0, an attacker can control the validation outcome (i.e., trigger either a valid or invalid outcome for a valid or invalid signature) via a crafted XML sign… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-13101 2024-11-21 14:00 2020-08-24 Show GitHub Exploit DB Packet Storm
211466 6.1 MEDIUM
Network 		zulip zulip_server Zulip Server before 2.1.5 allows reflected XSS via the Dropbox webhook. CWE-79
Cross-site Scripting 		CVE-2020-12759 2024-11-21 14:00 2020-08-21 Show GitHub Exploit DB Packet Storm
211467 6.1 MEDIUM
Network 		teradici pcoip_management_console Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a malicious payload. CWE-79
Cross-site Scripting 		CVE-2020-13183 2024-11-21 14:00 2020-08-18 Show GitHub Exploit DB Packet Storm
211468 8.8 HIGH
Network 		noviflow noviware The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" comma… CWE-78
OS Command  		CVE-2020-13122 2024-11-21 14:00 2020-08-18 Show GitHub Exploit DB Packet Storm
211469 4.3 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-13286 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm
211470 6.5 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-13281 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm