Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225821 4.3 警告 Moodle - Moodle における重要なサイト情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2081 2013-05-29 14:33 2013-05-21 Show GitHub Exploit DB Packet Storm
225822 4 警告 Moodle - Moodle の core_grade コンポーネントにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2080 2013-05-29 14:30 2013-05-21 Show GitHub Exploit DB Packet Storm
225823 2.6 注意 jig.jp co., ltd. - モバツイtouch の Content Provider にアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2318 2013-05-29 14:01 2013-05-29 Show GitHub Exploit DB Packet Storm
225824 4.3 警告 フェンリル株式会社 - Sleipnir Mobile for Android におけるアドレスバー偽装の脆弱性 CWE-Other
その他 		CVE-2013-2317 2013-05-29 14:00 2013-05-29 Show GitHub Exploit DB Packet Storm
225825 4 警告 Moodle - Moodle の assignment モジュールにおける他のユーザのアサインメントを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2079 2013-05-29 13:51 2013-05-21 Show GitHub Exploit DB Packet Storm
225826 2.1 注意 RSAセキュリティ - 複数の EMC RSA 製品における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2013-0941 2013-05-28 12:29 2013-05-16 Show GitHub Exploit DB Packet Storm
225827 5 警告 David King - vino におけるクリップボードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-4429 2013-05-27 17:16 2012-10-1 Show GitHub Exploit DB Packet Storm
225828 3.5 注意 OpenBSD - OpenSSH における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-0814 2013-05-27 16:59 2012-01-27 Show GitHub Exploit DB Packet Storm
225829 10 危険 サン・マイクロシステムズ
アドビシステムズ
IBM		 - Adobe Reader および Adobe Acrobat における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0927 2013-05-27 16:52 2009-03-18 Show GitHub Exploit DB Packet Storm
225830 5 警告 Wireshark - Wireshark の ISAKMP 解析機能におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6059 2013-05-27 16:08 2012-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201421 9.6 CRITICAL
Network 		mit scratch-svg-renderer This affects the package scratch-svg-renderer before 0.2.0-prerelease.20201019174008. The loadString function does not escape SVG properly, which can be used to inject arbitrary elements into the DOM… CWE-79
Cross-site Scripting 		CVE-2020-7750 2024-11-21 14:37 2020-10-22 Show GitHub Exploit DB Packet Storm
201422 4.3 MEDIUM
Network 		raiseitsolutions rits_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-7371 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201423 4.3 MEDIUM
Network 		boltbrowser bolt_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented … CWE-306
Missing Authentication for Critical Function 		CVE-2020-7370 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201424 4.3 MEDIUM
Network 		yandex yandex_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-306
Missing Authentication for Critical Function 		CVE-2020-7369 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201425 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-Other
CVE-2020-7364 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201426 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-noinfo
CVE-2020-7363 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201427 7.6 HIGH
Network 		osm-static-maps_project osm-static-maps This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to injec… CWE-79
CWE-74
Cross-site Scripting
Injection 		CVE-2020-7749 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201428 8.1 HIGH
Network 		ts.ed_project ts.ed This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attac… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7748 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201429 6.3 MEDIUM
Network 		lightning-viz lightning This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller. CWE-79
Cross-site Scripting 		CVE-2020-7747 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201430 7.1 HIGH
Network 		mintegral mintegraladsdk This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can rem… CWE-94
Code Injection 		CVE-2020-7745 2024-11-21 14:37 2020-10-19 Show GitHub Exploit DB Packet Storm