Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225811	7.5	危険	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-2956	2013-05-29 16:36	2013-05-13	Show	GitHub Exploit DB Packet Storm

225812	3.5	注意	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2955	2013-05-29 16:35	2013-05-13	Show	GitHub Exploit DB Packet Storm

225813	5	警告	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2013-2954	2013-05-29 16:35	2013-05-13	Show	GitHub Exploit DB Packet Storm

225814	4.3	警告	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2013-2953	2013-05-29 16:30	2013-05-13	Show	GitHub Exploit DB Packet Storm

225815	5.8	警告	シスコシステムズ	-	iOS 上で稼働する Cisco WebEx における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-6399	2013-05-29 16:30	2013-05-27	Show	GitHub Exploit DB Packet Storm

225816	5	警告	Moodle	-	Moodle の lib/formslib.php におけるフォームデータのフィルタリングを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2083	2013-05-29 14:34	2013-05-21	Show	GitHub Exploit DB Packet Storm

225817	5	警告	Moodle	-	Moodle における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2082	2013-05-29 14:33	2013-05-21	Show	GitHub Exploit DB Packet Storm

225818	4.3	警告	Moodle	-	Moodle における重要なサイト情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2081	2013-05-29 14:33	2013-05-21	Show	GitHub Exploit DB Packet Storm

225819	4	警告	Moodle	-	Moodle の core_grade コンポーネントにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2080	2013-05-29 14:30	2013-05-21	Show	GitHub Exploit DB Packet Storm

225820	2.6	注意	jig.jp co., ltd.	-	モバツイtouch の Content Provider にアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2318	2013-05-29 14:01	2013-05-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210371	7.8	HIGH Local	pdfresurrect_project debian fedoraproject	pdfresurrect debian_linux fedora	PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_version().	CWE-787 Out-of-bounds Write	CVE-2020-20740	2024-11-21 14:12	2020-11-21	Show	GitHub Exploit DB Packet Storm

210372	5.3	MEDIUM Network	libvips debian fedoraproject	libvips debian_linux fedora	im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an uninitialized variable which may cause the leakage of remote server path or stack address.	CWE-909 Missing Initialization of Resource	CVE-2020-20739	2024-11-21 14:12	2020-11-21	Show	GitHub Exploit DB Packet Storm

210373	7.2	HIGH Network	fastadmin	fastadmin	In fastadmin V1.0.0.20191212_beta, when a user with administrator rights has logged in, a malicious parameter can be passed for SQL injection in URL /admin/ajax/weigh.	CWE-89 SQL Injection	CVE-2020-21665	2024-11-21 14:12	2020-11-18	Show	GitHub Exploit DB Packet Storm

210374	7.2	HIGH Network	fastadmin-tp6_project	fastadmin-tp6	In fastadmin-tp6 v1.0, in the file app/admin/controller/Ajax.php the 'table' parameter passed is not filtered so a malicious parameter can be passed for SQL injection.	CWE-89 SQL Injection	CVE-2020-21667	2024-11-21 14:12	2020-11-14	Show	GitHub Exploit DB Packet Storm

210375	6.1	MEDIUM Network	broadleafcommerce	broadleaf_commerce	Broadleaf Commerce 5.1.14-GA is affected by cross-site scripting (XSS) due to a slow HTTP post vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-21266	2024-11-21 14:12	2020-10-29	Show	GitHub Exploit DB Packet Storm

210376	6.5	MEDIUM Network	libarchive	libarchive	Heap-based buffer overflow in archive_string_append_from_wcs() (archive_string.c) in libarchive-3.4.1dev allows remote attackers to cause a denial of service (out-of-bounds write in heap memory resul…	CWE-787 Out-of-bounds Write	CVE-2020-21674	2024-11-21 14:12	2020-10-16	Show	GitHub Exploit DB Packet Storm

210377	8.8	HIGH Network	pluck-cms	pluck	An issue was discovered in Pluck CMS 4.7.10-dev2 and 4.7.11. There is a file upload vulnerability that can cause a remote command execution via admin.php?action=files.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-21564	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm

210378	7.7	HIGH Network	halo	halo	There is an Arbitrary file deletion vulnerability in halo v1.1.3. A backup function in the background allows a user, when deleting their backup files, to delete any files on the system through direct…	CWE-22 Path Traversal	CVE-2020-21527	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm

210379	9.8	CRITICAL Network	halo	halo	An Arbitrary file writing vulnerability in halo v1.1.3. In an interface to write files in the background, a directory traversal check is performed on the input path parameter, but the startsWith func…	CWE-22 Path Traversal	CVE-2020-21526	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm

210380	7.5	HIGH Network	halo	halo	Halo V1.1.3 is affected by: Arbitrary File reading. In an interface that reads files in halo v1.1.3, a directory traversal check is performed on the input path parameter, but the startsWith function …	CWE-22 Path Traversal	CVE-2020-21525	2024-11-21 14:12	2020-10-1	Show	GitHub Exploit DB Packet Storm