Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225841	6.8	警告	Elgg	-	Elgg の engine/lib/users.php における任意のアカウントを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6562	2013-05-27 15:57	2012-05-19	Show	GitHub Exploit DB Packet Storm

225842	4.3	警告	Elgg	-	Elgg の engine/lib/views.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6561	2013-05-27 15:55	2012-05-19	Show	GitHub Exploit DB Packet Storm

225843	5	警告	Wireshark	-	Wireshark の USB 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2012-6053	2013-05-27 15:55	2012-11-28	Show	GitHub Exploit DB Packet Storm

225844	7.5	危険	FreeNAC	-	FreeNAC の deviceadd.php における SQL インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2012-6560	2013-05-27 15:54	2013-05-23	Show	GitHub Exploit DB Packet Storm

225845	5	警告	Wireshark	-	Wireshark における重要なホスト名の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6052	2013-05-27 15:54	2012-11-28	Show	GitHub Exploit DB Packet Storm

225846	4.3	警告	FreeNAC	-	FreeNAC におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6559	2013-05-27 15:52	2013-05-23	Show	GitHub Exploit DB Packet Storm

225847	6.8	警告	Heaventools Software	-	HeavenTools PE Explorer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6558	2013-05-27 15:46	2012-05-18	Show	GitHub Exploit DB Packet Storm

225848	4.4	警告	GNU Project	-	GNU Grep おける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-5667	2013-05-27 15:46	2012-12-21	Show	GitHub Exploit DB Packet Storm

225849	4.3	警告	zodiacdm	-	Vanilla Forums 用の AboutMe プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6557	2013-05-27 15:43	2013-05-23	Show	GitHub Exploit DB Packet Storm

225850	4.3	警告	jspautsch	-	Vanilla Forums 用の FirstLastNames プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6556	2013-05-27 15:41	2013-05-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201221	8.8	HIGH Network	codesnippets	code_snippets	The Code Snippets plugin before 2.14.0 for WordPress allows CSRF because of the lack of a Referer check on the import menu.	CWE-352 Origin Validation Error	CVE-2020-8417	2024-11-21 14:38	2020-01-29	Show	GitHub Exploit DB Packet Storm

201222	5.5	MEDIUM Local	python	python	In Python (CPython) 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1, an insecure dependency load upon launch on Windows 7 may result in an attacker's copy of api-ms-win-core-path-l1-1-0.…	CWE-427 Uncontrolled Search Path Element	CVE-2020-8315	2024-11-21 14:38	2020-01-29	Show	GitHub Exploit DB Packet Storm

201223	8.8	HIGH Network	uclouvain debian	openjpeg debian_linux	opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case, a different issue than CVE-2020-6851.	CWE-787 Out-of-bounds Write	CVE-2020-8112	2024-11-21 14:38	2020-01-29	Show	GitHub Exploit DB Packet Storm

201224	9.8	CRITICAL Network	prosody debian	mod_auth_ldap2 mod_auth_ldap debian_linux	The mod_auth_ldap and mod_auth_ldap2 Community Modules through 2020-01-27 for Prosody incompletely verify the XMPP address passed to the is_admin() function. This grants remote entities admin-only fu…	CWE-863 Incorrect Authorization	CVE-2020-8086	2024-11-21 14:38	2020-01-29	Show	GitHub Exploit DB Packet Storm

201225	5.4	MEDIUM Network	liferay	liferay_portal	In LifeRay Portal CE 7.1.0 through 7.2.1 GA2, the First Name, Middle Name, and Last Name fields for user accounts in MyAccountPortlet are all vulnerable to a persistent XSS issue. Any user can modify…	CWE-79 Cross-site Scripting	CVE-2020-7934	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

201226	8.8	HIGH Network	super_file_explorer_project	super_file_explorer	An arbitrary file upload vulnerability has been discovered in the Super File Explorer app 1.0.1 for iOS. The vulnerability is located in the developer path that is accessible and hidden next to the r…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-7998	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

201227	6.1	MEDIUM Network	asus	rt-ac66u_firmware	ASUS WRT-AC66U 3 RT 3.0.0.4.372_67 devices allow XSS via the Client Name field to the Parental Control feature.	CWE-79 Cross-site Scripting	CVE-2020-7997	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

201228	6.1	MEDIUM Network	typo3	typo3	svg.swf in TYPO3 6.2.0 to 6.2.38 ELTS and 7.0.0 to 7.1.0 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system. This may be at a contrib/…	CWE-79 Cross-site Scripting	CVE-2020-8091	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

201229	4.8	MEDIUM Network	a1	wlan_box_adb_vv2220_firmware	The Username field in the Storage Service settings of A1 WLAN Box ADB VV2220v2 devices allows stored XSS (after a successful Administrator login).	CWE-79 Cross-site Scripting	CVE-2020-8090	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

201230	9.8	CRITICAL Network	usebb	usebb	panel_login.php in UseBB 1.0.12 allows type juggling for login bypass because != is used instead of !== for password hashes, which mishandles hashes that begin with 0e followed by exclusively numeric…	NVD-CWE-noinfo	CVE-2020-8088	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm