Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225871	4	警告	シーメンス	-	Siemens WinCC の HMI Web アプリケーションにおけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0669	2013-03-25 18:52	2013-03-15	Show	GitHub Exploit DB Packet Storm

225872	4.3	警告	シーメンス	-	Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0668	2013-03-25 18:49	2013-03-15	Show	GitHub Exploit DB Packet Storm

225873	5	警告	MailUp	-	WordPress 用 MailUp プラグインにおけるプラグインの設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2640	2013-03-25 16:43	2013-03-15	Show	GitHub Exploit DB Packet Storm

225874	5	警告	MailUp	-	WordPress 用 MailUp プラグインにおけるプラグインの設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0731	2013-03-25 16:41	2013-03-15	Show	GitHub Exploit DB Packet Storm

225875	5	警告	Piwik	-	Piwik における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2633	2013-03-25 16:35	2013-03-8	Show	GitHub Exploit DB Packet Storm

225876	4.3	警告	Piwik	-	Piwik におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1844	2013-03-25 16:34	2013-03-8	Show	GitHub Exploit DB Packet Storm

225877	7.2	危険	Canonical	-	Ubuntu で使用される pam-xdg-support における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1052	2013-03-25 16:21	2013-03-18	Show	GitHub Exploit DB Packet Storm

225878	4.3	警告	Debian Canonical	-	apt におけるパッケージを変更される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1051	2013-03-25 16:20	2013-03-14	Show	GitHub Exploit DB Packet Storm

225879	6.8	警告	Google	-	Google Chrome で使用される Google V8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2013-2632	2013-03-25 16:04	2013-03-18	Show	GitHub Exploit DB Packet Storm

225880	6.9	警告	XFree86 Project	-	XFree86 x11perf の x11perfcomp における権限を取得される脆弱性	CWE-Other その他	CVE-2011-2504	2013-03-25 16:02	2011-07-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200421	7.8	HIGH Local	symantec	endpoint_protection	Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a DLL injec…	CWE-427 Uncontrolled Search Path Element	CVE-2020-5821	2024-11-21 14:34	2020-02-12	Show	GitHub Exploit DB Packet Storm

200422	7.8	HIGH Local	symantec	endpoint_protection	Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a privilege…	NVD-CWE-noinfo	CVE-2020-5820	2024-11-21 14:34	2020-02-12	Show	GitHub Exploit DB Packet Storm

200423	8.1	HIGH Network	htmlunit debian canonical apache	htmlunit debian_linux ubuntu_linux camel	HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can execute arbitrary Java code on the application. Mo…	CWE-665 Improper Initialization	CVE-2020-5529	2024-11-21 14:34	2020-02-11	Show	GitHub Exploit DB Packet Storm

200424	5.9	MEDIUM Network	mikrotik	winbox	MikroTik WinBox before 3.21 is vulnerable to a path traversal vulnerability that allows creation of arbitrary files wherevere WinBox has write permissions. WinBox is vulnerable to this attack if it c…	CWE-22 Path Traversal	CVE-2020-5720	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200425	4.3	MEDIUM Physics	f5	big-ip_access_policy_manager big-ip_access_policy_manager_client	When the Windows Logon Integration feature is configured for all versions of BIG-IP Edge Client for Windows, unauthorized users who have physical access to an authorized user's machine can get shell …	NVD-CWE-noinfo	CVE-2020-5855	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200426	7.5	HIGH Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	On BIG-IP 15.0.0-15.0.1.1 and 14.1.0-14.1.2.2, while processing specifically crafted traffic using the default 'xnet' driver, Virtual Edition instances hosted in Amazon Web Services (AWS) may experie…	NVD-CWE-noinfo	CVE-2020-5856	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200427	5.9	MEDIUM Network	f5	enterprise_manager traffix_signaling_delivery_controller big-iq_centralized_management iworkflow big-ip_access_policy_manager big-ip_local_traffic_manager big-ip_application_acceler…	On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes under certain circumstances when using the connector profile if a speci…	NVD-CWE-noinfo	CVE-2020-5854	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200428	6.1	MEDIUM Network	sixapart	movable_type	Cross-site scripting vulnerability in Movable Type series (Movable Type 7 r.4603 and earlier (Movable Type 7), Movable Type 6.5.2 and earlier (Movable Type 6.5), Movable Type Advanced 7 r.4603 and ea…	CWE-79 Cross-site Scripting	CVE-2020-5528	2024-11-21 14:34	2020-02-6	Show	GitHub Exploit DB Packet Storm

200429	5.9	MEDIUM Network	fujixerox	apeosware_management_suite	The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS 2.0.0 to 2.0.8 does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensiti…	CWE-295 Improper Certificate Validation	CVE-2020-5526	2024-11-21 14:34	2020-01-31	Show	GitHub Exploit DB Packet Storm

200430	7.4	HIGH Network	nttdata ashikagabank sihd-bk shikokubank tohoku-bank naganobank 77bank hokkaidobank hokugin	mypallete ashigin ikeda_senshu_bank shikoku_bank tougin nagagin 77_bank dogin hokuriku_bank_portal	Android App 'MyPallete' and some of the Android banking applications based on 'MyPallete' do not verify X.509 certificates from servers, and also do not properly validate certificates with host-misma…	CWE-295 Improper Certificate Validation	CVE-2020-5523	2024-11-21 14:34	2020-01-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed