Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225671 7.5 危険 GroundWork - GroundWork Monitor Enterprise の Performance コンポーネントにおける任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3506 2013-05-9 16:23 2013-03-7 Show GitHub Exploit DB Packet Storm
225672 4 警告 GroundWork - GroundWork Monitor Enterprise の Nagios-App コンポーネントにおけるアクセス制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3505 2013-05-9 16:22 2013-03-7 Show GitHub Exploit DB Packet Storm
225673 5.5 警告 GroundWork - GroundWork Monitor Enterprise の MONARCH コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3504 2013-05-9 16:21 2013-03-7 Show GitHub Exploit DB Packet Storm
225674 3.5 注意 GroundWork - GroundWork Monitor Enterprise の MONARCH コンポーネントにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3503 2013-05-9 16:18 2013-03-7 Show GitHub Exploit DB Packet Storm
225675 6.5 警告 GroundWork - GroundWork Monitor Enterprise における任意のコマンドを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3502 2013-05-9 16:17 2013-03-7 Show GitHub Exploit DB Packet Storm
225676 4.3 警告 GroundWork - GroundWork Monitor Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3501 2013-05-9 16:16 2013-03-7 Show GitHub Exploit DB Packet Storm
225677 7.5 危険 GroundWork - GroundWork Monitor Enterprise におけるファイルシステムの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3500 2013-05-9 16:15 2013-03-7 Show GitHub Exploit DB Packet Storm
225678 7.5 危険 GroundWork - GroundWork Monitor Enterprise における管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3499 2013-05-9 16:07 2013-03-7 Show GitHub Exploit DB Packet Storm
225679 6.3 警告 シスコシステムズ - Cisco ISR G2 ルータ上で稼働する Cisco IOS の ISM モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2013-1241 2013-05-9 15:43 2013-05-7 Show GitHub Exploit DB Packet Storm
225680 1.9 注意 Linux - Linux kernel の net/core/scm.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1958 2013-05-9 11:18 2013-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212691 5.3 MEDIUM
Network 		prestashop prestashop In PrestaShop from version 1.5.0.0 and before 1.7.6.6, there is information exposure in the upload directory. The problem is fixed in version 1.7.6.6. A possible workaround is to add an empty index.p… CWE-200
Information Exposure 		CVE-2020-15081 2024-11-21 14:04 2020-07-3 Show GitHub Exploit DB Packet Storm
212692 5.3 MEDIUM
Network 		prestashop prestashop In PrestaShop from version 1.7.4.0 and before version 1.7.6.6, some files should not be in the release archive, and others should not be accessible. The problem is fixed in version 1.7.6.6 A possible… CWE-862
 Missing Authorization 		CVE-2020-15080 2024-11-21 14:04 2020-07-3 Show GitHub Exploit DB Packet Storm
212693 5.4 MEDIUM
Network 		prestashop prestashop In PrestaShop from version 1.5.0.0 and before version 1.7.6.6, there is improper access control in Carrier page, Module Manager and Module Positions. The problem is fixed in version 1.7.6.6 NVD-CWE-noinfo
CVE-2020-15079 2024-11-21 14:04 2020-07-3 Show GitHub Exploit DB Packet Storm
212694 8.8 HIGH
Network 		factorfx open_computer_software_inventory_next_generation OCS Inventory NG 2.7 allows Remote Command Execution via shell metacharacters to require/commandLine/CommandLine.php because mib_file in plugins/main_sections/ms_config/ms_snmp_config.php is mishandl… CWE-78
OS Command  		CVE-2020-14947 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212695 8.8 HIGH
Network 		squid-cache
fedoraproject 		squid
fedora 		An issue was discovered in http/ContentLengthInterpreter.cc in Squid before 4.12 and 5.x before 5.0.3. A Request Smuggling and Poisoning attack can succeed against the HTTP cache. The client sends an… CWE-444
HTTP Request Smuggling 		CVE-2020-15049 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212696 8.8 HIGH
Network 		prestosql presto In Presto before version 337, authenticated users can bypass authorization checks by directly accessing internal APIs. This impacts Presto server installations with secure internal communication conf… NVD-CWE-Other
CVE-2020-15087 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212697 6.1 MEDIUM
Local 		mirumee saleor In Saleor Storefront before version 2.10.3, request data used to authenticate customers was inadvertently cached in the browser's local storage mechanism, including credentials. A malicious user with… - CVE-2020-15085 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212698 9.1 CRITICAL
Network 		auth0 express-jwt In express-jwt (NPM package) up and including version 5.3.3, the algorithms entry to be specified in the configuration is not being enforced. When algorithms is not specified in the configuration, wi… CWE-863
 Incorrect Authorization 		CVE-2020-15084 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212699 7.8 HIGH
Local 		arswp windows_cleanup_assistant In Windows cleaning assistant 3.2, the driver file (AtpKrnl.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input value… CWE-20
 Improper Input Validation  		CVE-2020-14957 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm
212700 7.8 HIGH
Local 		arswp windows_cleanup_assistant In Windows cleaning assistant 3.2, the driver file (AtpKrnl.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input value… CWE-20
 Improper Input Validation  		CVE-2020-14956 2024-11-21 14:04 2020-07-1 Show GitHub Exploit DB Packet Storm