Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225921	4.3	警告	TIBCO Software	-	TIBCO Spotfire Web Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2372	2013-03-21 17:24	2013-03-13	Show	GitHub Exploit DB Packet Storm

225922	7.8	危険	Foscam	-	Foscam デバイスのファームウェアにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2560	2013-03-21 17:20	2013-03-15	Show	GitHub Exploit DB Packet Storm

225923	7.6	危険	Piwigo	-	Piwigo の LocalFiles Editor プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-1468	2013-03-21 17:10	2013-02-19	Show	GitHub Exploit DB Packet Storm

225924	4	警告	Rave	-	Apache Rave の User RPC API における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-1814	2013-03-21 16:44	2013-03-14	Show	GitHub Exploit DB Packet Storm

225925	4	警告	Piwigo	-	Piwigo の install.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1469	2013-03-21 16:41	2013-02-19	Show	GitHub Exploit DB Packet Storm

225926	5	警告	Fedora Project	-	389 Directory Server におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-189 数値処理の問題	CVE-2013-0312	2013-03-21 16:39	2013-03-13	Show	GitHub Exploit DB Packet Storm

225927	4	警告	レッドハット	-	Red Hat Enterprise Virtualization Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0168	2013-03-21 16:29	2013-02-4	Show	GitHub Exploit DB Packet Storm

225928	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-6115	2013-03-21 16:28	2013-02-4	Show	GitHub Exploit DB Packet Storm

225929	6.9	警告	レッドハット	-	自動バグ報告ツール (ABRT) における権限を取得される脆弱性	CWE-264 CWE-362	CVE-2012-5660	2013-03-21 16:27	2013-01-31	Show	GitHub Exploit DB Packet Storm

225930	3.7	注意	レッドハット	-	自動バグ報告ツール (ABRT) における任意の Python モジュールをロードおよび実行される脆弱性	CWE-Other その他	CVE-2012-5659	2013-03-21 16:26	2013-01-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200621	7.8	HIGH Local	symantec	endpoint_protection	Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a DLL injec…	CWE-427 Uncontrolled Search Path Element	CVE-2020-5821	2024-11-21 14:34	2020-02-12	Show	GitHub Exploit DB Packet Storm

200622	7.8	HIGH Local	symantec	endpoint_protection	Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a privilege…	NVD-CWE-noinfo	CVE-2020-5820	2024-11-21 14:34	2020-02-12	Show	GitHub Exploit DB Packet Storm

200623	8.1	HIGH Network	htmlunit debian canonical apache	htmlunit debian_linux ubuntu_linux camel	HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. HtmlUnit initializes Rhino engine improperly, hence a malicious JavScript code can execute arbitrary Java code on the application. Mo…	CWE-665 Improper Initialization	CVE-2020-5529	2024-11-21 14:34	2020-02-11	Show	GitHub Exploit DB Packet Storm

200624	5.9	MEDIUM Network	mikrotik	winbox	MikroTik WinBox before 3.21 is vulnerable to a path traversal vulnerability that allows creation of arbitrary files wherevere WinBox has write permissions. WinBox is vulnerable to this attack if it c…	CWE-22 Path Traversal	CVE-2020-5720	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200625	4.3	MEDIUM Physics	f5	big-ip_access_policy_manager big-ip_access_policy_manager_client	When the Windows Logon Integration feature is configured for all versions of BIG-IP Edge Client for Windows, unauthorized users who have physical access to an authorized user's machine can get shell …	NVD-CWE-noinfo	CVE-2020-5855	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200626	7.5	HIGH Network	f5	big-ip_local_traffic_manager big-ip_application_acceleration_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_access_policy_manager big-ip_application_security_manager<…	On BIG-IP 15.0.0-15.0.1.1 and 14.1.0-14.1.2.2, while processing specifically crafted traffic using the default 'xnet' driver, Virtual Edition instances hosted in Amazon Web Services (AWS) may experie…	NVD-CWE-noinfo	CVE-2020-5856	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200627	5.9	MEDIUM Network	f5	enterprise_manager traffix_signaling_delivery_controller big-iq_centralized_management iworkflow big-ip_access_policy_manager big-ip_local_traffic_manager big-ip_application_acceler…	On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes under certain circumstances when using the connector profile if a speci…	NVD-CWE-noinfo	CVE-2020-5854	2024-11-21 14:34	2020-02-7	Show	GitHub Exploit DB Packet Storm

200628	6.1	MEDIUM Network	sixapart	movable_type	Cross-site scripting vulnerability in Movable Type series (Movable Type 7 r.4603 and earlier (Movable Type 7), Movable Type 6.5.2 and earlier (Movable Type 6.5), Movable Type Advanced 7 r.4603 and ea…	CWE-79 Cross-site Scripting	CVE-2020-5528	2024-11-21 14:34	2020-02-6	Show	GitHub Exploit DB Packet Storm

200629	5.9	MEDIUM Network	fujixerox	apeosware_management_suite	The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS 2.0.0 to 2.0.8 does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensiti…	CWE-295 Improper Certificate Validation	CVE-2020-5526	2024-11-21 14:34	2020-01-31	Show	GitHub Exploit DB Packet Storm

200630	7.4	HIGH Network	nttdata ashikagabank sihd-bk shikokubank tohoku-bank naganobank 77bank hokkaidobank hokugin	mypallete ashigin ikeda_senshu_bank shikoku_bank tougin nagagin 77_bank dogin hokuriku_bank_portal	Android App 'MyPallete' and some of the Android banking applications based on 'MyPallete' do not verify X.509 certificates from servers, and also do not properly validate certificates with host-misma…	CWE-295 Improper Certificate Validation	CVE-2020-5523	2024-11-21 14:34	2020-01-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed