Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225731 9.3 危険 IBM - IBM SPSS SamplePower の vsflex7l ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5947 2013-05-1 11:42 2013-04-26 Show GitHub Exploit DB Packet Storm
225732 9.3 危険 IBM - IBM SPSS SamplePower の C1sizer.ocx におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5946 2013-05-1 11:42 2013-04-26 Show GitHub Exploit DB Packet Storm
225733 9.3 危険 IBM - IBM SPSS SamplePower の Vsflex8l ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-5945 2013-05-1 11:41 2013-04-26 Show GitHub Exploit DB Packet Storm
225734 4.3 警告 ヒューレット・パッカード - HP Managed Printing Administration におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5219 2013-05-1 11:22 2013-04-25 Show GitHub Exploit DB Packet Storm
225735 3.5 注意 IBM - 複数の IBM 製品で使用される IBM Sametime のクライアントの実装におけるコマンドを送信される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0553 2013-05-1 11:21 2013-04-22 Show GitHub Exploit DB Packet Storm
225736 3.5 注意 IBM - IBM Sametime の Sametime Links サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0533 2013-05-1 11:15 2013-04-22 Show GitHub Exploit DB Packet Storm
225737 9.3 危険 IBM - IBM SPSS SamplePower の olch2x32 ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0593 2013-05-1 11:14 2013-04-26 Show GitHub Exploit DB Packet Storm
225738 2.3 注意 IBM - IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0572 2013-05-1 11:13 2013-04-25 Show GitHub Exploit DB Packet Storm
225739 2.9 注意 IBM - IBM Application Support Facility for z/OS の IBM Document Connect for Application Support Facility におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0571 2013-05-1 11:11 2013-04-25 Show GitHub Exploit DB Packet Storm
225740 4.3 警告 IBM - IBM Connections におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0569 2013-05-1 11:04 2013-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213321 7.8 HIGH
Local 		valvesoftware source Valve Source allows local users to gain privileges by writing to the /tmp/hl2_relaunch file, which is later executed in the context of a different user account. CWE-78
OS Command  		CVE-2020-12242 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
213322 8.8 HIGH
Network 		amd atillk64 AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space o… CWE-862
 Missing Authorization 		CVE-2020-12138 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
213323 9.8 CRITICAL
Network 		farukawa electric_consciousmap The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote code execution because of javax.faces.ViewState Java deserialization. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-12133 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
213324 7.5 HIGH
Network 		prestashop correos_express The Correos Express addon for PrestaShop 1.6 through 1.7 allows remote attackers to obtain sensitive information, such as a service's owner password that can be used to modify orders via SOAP. Attack… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-12120 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
213325 5.3 MEDIUM
Network 		trusteddomain
fedoraproject 		opendmarc
fedora 		OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail message. This is caused by incorrect parsin… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-12272 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm
213326 9.8 CRITICAL
Network 		testlink testlink In TestLink 1.9.20, the lib/cfields/cfieldsExport.php goback_url parameter causes a security risk because it depends on client input and is not constrained to lib/cfields/cfieldsView.php at the web s… NVD-CWE-noinfo
CVE-2020-12274 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm
213327 7.5 HIGH
Network 		testlink testlink In TestLink 1.9.20, a crafted login.php viewer parameter exposes cleartext credentials. CWE-311
CWE-522
Missing Encryption of Sensitive Data
 Insufficiently Protected Credentials 		CVE-2020-12273 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm
213328 6.1 MEDIUM
Network 		grafana grafana Grafana version < 6.7.3 is vulnerable for annotation popup XSS. CWE-79
Cross-site Scripting 		CVE-2020-12052 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm
213329 9.8 CRITICAL
Network 		sophos sfos A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with eithe… CWE-89
SQL Injection 		CVE-2020-12271 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm
213330 9.8 CRITICAL
Network 		artifex
debian
opensuse 		jbig2dec
debian_linux
leap 		jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow. CWE-787
 Out-of-bounds Write 		CVE-2020-12268 2024-11-21 13:59 2020-04-27 Show GitHub Exploit DB Packet Storm