Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225701 7.5 危険 Indra - EDItran Communications Platform の editcp におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-5288 2013-07-2 16:08 2010-06-25 Show GitHub Exploit DB Packet Storm
225702 6.8 警告 JS-YAML Project - Node.js 用 JS-YAML モジュールにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4660 2013-07-2 16:07 2013-06-23 Show GitHub Exploit DB Packet Storm
225703 2.1 注意 X.Org Foundation
Canonical		 - X.Org X Server における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1940 2013-07-2 16:01 2013-04-10 Show GitHub Exploit DB Packet Storm
225704 6.8 警告 Novell
Canonical
レッドハット		 - IcedTea-Web プラグインにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1927 2013-07-2 15:58 2013-04-17 Show GitHub Exploit DB Packet Storm
225705 5.8 警告 Novell
Canonical
レッドハット		 - IcedTea-Web プラグインにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1926 2013-07-2 15:56 2013-04-17 Show GitHub Exploit DB Packet Storm
225706 4.3 警告 KENT-WEB - CLIP-MAIL におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3649 2013-07-2 15:51 2013-06-27 Show GitHub Exploit DB Packet Storm
225707 4.3 警告 KENT-WEB - POST-MAIL におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3648 2013-07-2 15:42 2013-06-27 Show GitHub Exploit DB Packet Storm
225708 6 警告 ヒューレット・パッカード - HP NonStop サーバ上で稼働する HP NonStop SQL/MX におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2323 2013-07-2 14:58 2013-06-24 Show GitHub Exploit DB Packet Storm
225709 3.5 注意 ヒューレット・パッカード - HP NonStop サーバ上で稼働する HP NonStop SQL/MX における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2322 2013-07-2 14:57 2013-06-24 Show GitHub Exploit DB Packet Storm
225710 7.8 危険 シスコシステムズ - Cisco Email セキュリティ アプライアンスおよびコンテンツ セキュリティ管理アプライアンスデバイス上で稼働する AsyncOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-3386 2013-07-1 14:52 2013-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209901 9.8 CRITICAL
Network 		noise-java_project noise-java An issue was discovered in Noise-Java through 2020-08-27. AESGCMOnCtrCipherState.encryptWithAd() allows out-of-bounds access. CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2020-25023 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209902 9.8 CRITICAL
Network 		noise-java_project noise-java An issue was discovered in Noise-Java through 2020-08-27. AESGCMFallbackCipherState.encryptWithAd() allows out-of-bounds access. CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2020-25022 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209903 9.8 CRITICAL
Network 		noise-java_project noise-java An issue was discovered in Noise-Java through 2020-08-27. ChaChaPolyCipherState.encryptWithAd() allows out-of-bounds access. CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2020-25021 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209904 7.5 HIGH
Network 		laravel laravel An issue was discovered in Laravel before 6.18.35 and 7.x before 7.24.0. The $guarded property is mishandled in some situations involving requests with JSON column nesting expressions. CWE-863
 Incorrect Authorization 		CVE-2020-24941 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209905 7.5 HIGH
Network 		laravel laravel An issue was discovered in Laravel before 6.18.34 and 7.x before 7.23.2. Unvalidated values are saved to the database in some situations in which table names are stripped during a mass assignment. CWE-20
 Improper Input Validation  		CVE-2020-24940 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209906 9.8 CRITICAL
Network 		nasm netwide_assembler In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7. CWE-415
 Double Free 		CVE-2020-24978 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209907 7.8 HIGH
Local 		xpdfreader xpdf There is an invalid memory access in the function fprintf located in Error.cc in Xpdf 4.0.2. It can be triggered by sending a crafted PDF file to the pdftohtml binary, which allows a remote attacker … CWE-787
 Out-of-bounds Write 		CVE-2020-24999 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209908 7.8 HIGH
Local 		xpdfreader xpdf There is an invalid memory access in the function TextString::~TextString() located in Catalog.cc in Xpdf 4.0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftohtml binar… CWE-665
 Improper Initialization 		CVE-2020-24996 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209909 9.8 CRITICAL
Network 		heybbs_project heybbs Heybbs v1.2 has a SQL injection vulnerability in login.php file via the username parameter which may allow a remote attacker to execute arbitrary code. CWE-89
SQL Injection 		CVE-2020-25006 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm
209910 9.8 CRITICAL
Network 		heybbs_project heybbs Heybbs v1.2 has a SQL injection vulnerability in msg.php file via the ID parameter which may allow a remote attacker to execute arbitrary code. CWE-89
SQL Injection 		CVE-2020-25005 2024-11-21 14:16 2020-09-4 Show GitHub Exploit DB Packet Storm