Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225961 7.5 危険 Web-Dorado - Drupal 用 Web Dorado Spider Video Player プラグインの settings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3532 2013-05-14 15:49 2013-05-10 Show GitHub Exploit DB Packet Storm
225962 7.5 危険 RadioCMS - RadioCMS の meneger.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3531 2013-05-14 15:48 2013-05-10 Show GitHub Exploit DB Packet Storm
225963 7.5 危険 Fabricio Zuardi - WordPress 用 Spiffy XSPF Player プラグインの playlist.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3530 2013-05-14 15:47 2013-05-10 Show GitHub Exploit DB Packet Storm
225964 4.3 警告 Smarty Pants Plugins - WordPress 用 WP FuneralPress プラグインの user/obits.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3529 2013-05-14 15:46 2013-05-10 Show GitHub Exploit DB Packet Storm
225965 7.5 危険 Vanilla Forums - Vanilla Forums の更新チェックにおける脆弱性 CWE-noinfo
情報不足 		CVE-2013-3528 2013-05-14 15:44 2013-04-5 Show GitHub Exploit DB Packet Storm
225966 7.5 危険 Vanilla Forums - Vanilla Forums における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3527 2013-05-14 15:37 2013-04-5 Show GitHub Exploit DB Packet Storm
225967 4.3 警告 georgemathewk - WordPress 用 Traffic Analyzer プラグインの js/ta_loaded.js.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3526 2013-05-14 15:37 2013-05-10 Show GitHub Exploit DB Packet Storm
225968 7.5 危険 David Clark - phpVMS 用 Pop Up News モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3524 2013-05-14 15:36 2013-05-10 Show GitHub Exploit DB Packet Storm
225969 7.5 危険 greg jennings - This HTML Is Simple における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3523 2013-05-14 15:35 2013-04-1 Show GitHub Exploit DB Packet Storm
225970 6.5 警告 vBulletin Solutions, Inc. - vBulletin の index.php/ajax/api/reputation/vote における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3522 2013-05-14 15:34 2013-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201431 8.8 HIGH
Network 		siemens siport_mp A vulnerability has been identified in SIPORT MP (All versions < 3.2.1). Vulnerable versions of the device could allow an authenticated attacker to impersonate other users of the system and perform (… - CVE-2020-7591 2024-11-21 14:37 2020-10-16 Show GitHub Exploit DB Packet Storm
201432 4.7 MEDIUM
Network 		mintegral mintegraladsdk This affects all versions of package com.mintegral.msdk:alphab. The Android SDK distributed by the company contains malicious functionality in this module that tracks: 1. Downloads from Google urls e… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-7744 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201433 6.7 MEDIUM
Local 		mcafee mvision_endpoint_detection_and_response Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client (MVEDR) prior to 3.2.0 may allow local administrators to execute malicious code via stopping a core Wind… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-7327 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201434 6.7 MEDIUM
Local 		mcafee active_response Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core t… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-7326 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201435 8.2 HIGH
Local 		mcafee application_and_change_control Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via… CWE-269
 Improper Privilege Management 		CVE-2020-7334 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201436 8.1 HIGH
Network 		rapid7 nexpose A SQL Injection issue in Rapid7 Nexpose version prior to 6.6.49 that may have allowed an authenticated user with a low permission level to access resources & make changes they should not have been ab… CWE-89
SQL Injection 		CVE-2020-7383 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201437 4.3 MEDIUM
Adjacent 		mcafee epolicy_orchestrator Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via multiple parameters where the adminis… CWE-79
Cross-site Scripting 		CVE-2020-7318 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201438 4.3 MEDIUM
Adjacent 		mcafee epolicy_orchestrator Cross-Site Scripting vulnerability in McAfee ePolicy Orchistrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via parameter values for "syncPointList" … CWE-79
Cross-site Scripting 		CVE-2020-7317 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
201439 8.8 HIGH
Local 		mcafee total_protection Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via… CWE-269
 Improper Privilege Management 		CVE-2020-7330 2024-11-21 14:37 2020-10-14 Show GitHub Exploit DB Packet Storm
201440 6.8 MEDIUM
Physics 		siemens dca_vantage_analyzer_firmware A vulnerability has been identified in DCA Vantage Analyzer (All versions < V4.5 are affected by CVE-2020-7590. In addition, serial numbers < 40000 running software V4.4.0 are also affected by CVE-20… - CVE-2020-7590 2024-11-21 14:37 2020-10-14 Show GitHub Exploit DB Packet Storm