Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225751	6.5	警告	The phpMyAdmin Project	-	phpMyAdmin のエクスポート機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3240	2013-04-30 18:21	2013-04-24	Show	GitHub Exploit DB Packet Storm

225752	6.8	警告	Crunchify	-	WordPress 用 FourSquare Checkins プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2709	2013-04-30 17:54	2013-04-22	Show	GitHub Exploit DB Packet Storm

225753	6.8	警告	Crunchify	-	WordPress 用 All in One Webmaster プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2696	2013-04-30 17:52	2013-04-22	Show	GitHub Exploit DB Packet Storm

225754	5	警告	Blink Web Effects	-	WordPress 用 Social Media Widget プラグインにおける任意のファイルのアップロードを強制される脆弱性	CWE-noinfo 情報不足	CVE-2013-1949	2013-04-30 17:51	2013-04-9	Show	GitHub Exploit DB Packet Storm

225755	10	危険	Rob Westgeest	-	Ruby 用 md2pdf gem の converter.rb における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-1948	2013-04-30 17:51	2013-04-10	Show	GitHub Exploit DB Packet Storm

225756	9.3	危険	Kelly D. Redding	-	Ruby 用 kelredd-pruview gem における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2013-1947	2013-04-30 17:50	2013-04-4	Show	GitHub Exploit DB Packet Storm

225757	9.3	危険	karteek-docsplit	-	Ruby 用 Karteek Docsplit gem における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2013-1933	2013-04-30 17:49	2013-04-1	Show	GitHub Exploit DB Packet Storm

225758	6.8	警告	Novell plataformatec	-	Ruby 用 Devise gem における不正な結果が返される脆弱性	CWE-399 リソース管理の問題	CVE-2013-0233	2013-04-30 17:48	2013-01-28	Show	GitHub Exploit DB Packet Storm

225759	7.5	危険	Grape Erik Michaels-Ober	-	Grape などの製品で使用される Ruby 用 multi_xml gem におけるオブジェクトインジェクション攻撃を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0175	2013-04-30 17:43	2013-01-10	Show	GitHub Exploit DB Packet Storm

225760	5	警告	Ruby-lang.org	-	Ruby における safe-level の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4466	2013-04-30 17:29	2012-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200521	4.9	MEDIUM Network	cybozu	garoon	Path traversal vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to obtain unintended information via unspecified vectors.	CWE-22 Path Traversal	CVE-2020-5588	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200522	6.5	MEDIUM Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allow remote authenticated attackers to obtain unintended information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5587	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200523	4.8	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5586	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200524	4.8	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5585	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200525	7.5	HIGH Network	mitsubishielectric	cpu_module_logging_configuration_tool cw_configurator em_configurator gt_designer3 gx_logviewer gx_works2 gx_works3 m_commdtm-hart m_commdtm-io-link melfa-works melsec-l…	Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier,…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-5603	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200526	7.5	HIGH Network	mitsubishielectric	cpu_module_logging_configuration_tool cw_configurator em_configurator gt_designer3 gx_logviewer gx_works2 gx_works3 m_commdtm-hart m_commdtm-io-link melfa-works melsec-l…	Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver.…	CWE-611 XXE	CVE-2020-5602	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200527	7.5	HIGH Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allow remote attackers to obtain unintended information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5584	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200528	6.5	MEDIUM Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to obtain unauthorized Multi-Report's data via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5583	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200529	4.3	MEDIUM Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to alter the data for the file attached to Report via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5582	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

200530	6.5	MEDIUM Network	cybozu	garoon	Path traversal vulnerability in Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to obtain unintended information via unspecified vectors.	CWE-22 Path Traversal	CVE-2020-5581	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed