Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225841	7.5	危険	FreeNAC	-	FreeNAC の deviceadd.php における SQL インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2012-6560	2013-05-27 15:54	2013-05-23	Show	GitHub Exploit DB Packet Storm

225842	5	警告	Wireshark	-	Wireshark における重要なホスト名の情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6052	2013-05-27 15:54	2012-11-28	Show	GitHub Exploit DB Packet Storm

225843	4.3	警告	FreeNAC	-	FreeNAC におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6559	2013-05-27 15:52	2013-05-23	Show	GitHub Exploit DB Packet Storm

225844	6.8	警告	Heaventools Software	-	HeavenTools PE Explorer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6558	2013-05-27 15:46	2012-05-18	Show	GitHub Exploit DB Packet Storm

225845	4.4	警告	GNU Project	-	GNU Grep おける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-5667	2013-05-27 15:46	2012-12-21	Show	GitHub Exploit DB Packet Storm

225846	4.3	警告	zodiacdm	-	Vanilla Forums 用の AboutMe プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6557	2013-05-27 15:43	2013-05-23	Show	GitHub Exploit DB Packet Storm

225847	4.3	警告	jspautsch	-	Vanilla Forums 用の FirstLastNames プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6556	2013-05-27 15:41	2013-05-23	Show	GitHub Exploit DB Packet Storm

225848	4.3	警告	sahotataran	-	Vanilla Forums 用の LatestComment プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6555	2013-05-27 15:40	2013-05-23	Show	GitHub Exploit DB Packet Storm

225849	6.5	警告	activeCollab	-	activeCollab 用の Chat モジュールにおける任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6554	2013-05-27 15:36	2012-05-16	Show	GitHub Exploit DB Packet Storm

225850	9.3	危険	アップル	-	Apple QuickTime におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1021	2013-05-27 15:27	2013-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210481	9.8	CRITICAL Network	caret	caret	A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22.	NVD-CWE-noinfo	CVE-2020-20269	2024-11-21 14:11	2021-01-27	Show	GitHub Exploit DB Packet Storm

210482	6.5	MEDIUM Adjacent	huawei	cloudengine_12800_firmware cloudengine_5800_firmware cloudengine_6800_firmware cloudengine_7800_firmware	There is an out-of-bounds read vulnerability in Huawei CloudEngine products. The software reads data past the end of the intended buffer when parsing certain PIM message, an adjacent attacker could s…	CWE-125 Out-of-bounds Read	CVE-2020-1865	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

210483	6.5	MEDIUM Adjacent	huawei	nip6800_firmware s12700_firmware s2700_firmware s5700_firmware s6700_firmware s7700_firmware s9700_firmware secospace_usg6600_firmware usg9500_firmware	There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could caus…	CWE-125 Out-of-bounds Read	CVE-2020-1866	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

210484	5.5	MEDIUM Local	huawei	jackman-al00d_firmware	There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1). Local attackers construct malicious application files, causing system applications to run abnormally.	NVD-CWE-noinfo	CVE-2020-1848	2024-11-21 14:11	2020-12-30	Show	GitHub Exploit DB Packet Storm

210485	5.4	MEDIUM Network	zzcms	zzcms	There is a XSS in the user login page in zzcms 2019. Users can inject js code by the referer header via user/login.php	CWE-79 Cross-site Scripting	CVE-2020-20285	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210486	9.8	CRITICAL Network	troglobit	uftpd	There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's…	CWE-22 Path Traversal	CVE-2020-20277	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210487	9.8	CRITICAL Network	troglobit	uftpd	An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be abused to cause a crash and could potentially lead to remot…	CWE-787 Out-of-bounds Write	CVE-2020-20276	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210488	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20142	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

210489	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20141	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

210490	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20140	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed