Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225971 4.6 警告 シスコシステムズ - Cisco Aggregation Services Router Route Processor 上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) 状態にされる脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1136 2013-05-14 14:52 2013-05-13 Show GitHub Exploit DB Packet Storm
225972 10 危険 phpvms.net - phpVMS の admin/action.php における脆弱性 CWE-noinfo
情報不足 		CVE-2012-6552 2013-05-14 12:00 2012-08-24 Show GitHub Exploit DB Packet Storm
225973 9.3 危険 サムスン - MarkAny ContentSAFER MASetupCaller の ActiveX コントロールに脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2990 2013-05-13 17:59 2012-08-24 Show GitHub Exploit DB Packet Storm
225974 4.3 警告 WPPA Opa Jaap - WordPress 用 WP Photo Album Plus プラグインの wp-admin/admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3254 2013-05-13 17:32 2013-05-6 Show GitHub Exploit DB Packet Storm
225975 6.8 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2707 2013-05-13 17:31 2013-05-6 Show GitHub Exploit DB Packet Storm
225976 5 警告 シスコシステムズ - Cisco Unified Presence のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1242 2013-05-13 17:30 2013-05-7 Show GitHub Exploit DB Packet Storm
225977 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC AlphaStor の Library Control Program におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0946 2013-05-13 16:14 2013-05-9 Show GitHub Exploit DB Packet Storm
225978 5.8 警告 DELL EMC (旧 EMC Corporation) - 複数の EMC Documentum 製品における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0939 2013-05-13 16:12 2013-05-9 Show GitHub Exploit DB Packet Storm
225979 4.3 警告 DELL EMC (旧 EMC Corporation) - 複数の EMC Documentum 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0938 2013-05-13 15:54 2013-05-9 Show GitHub Exploit DB Packet Storm
225980 5.8 警告 DELL EMC (旧 EMC Corporation) - 複数の EMC Documentum 製品における Web セッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2013-0937 2013-05-13 15:53 2013-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201421 9.6 CRITICAL
Network 		mit scratch-svg-renderer This affects the package scratch-svg-renderer before 0.2.0-prerelease.20201019174008. The loadString function does not escape SVG properly, which can be used to inject arbitrary elements into the DOM… CWE-79
Cross-site Scripting 		CVE-2020-7750 2024-11-21 14:37 2020-10-22 Show GitHub Exploit DB Packet Storm
201422 4.3 MEDIUM
Network 		raiseitsolutions rits_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-7371 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201423 4.3 MEDIUM
Network 		boltbrowser bolt_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented … CWE-306
Missing Authentication for Critical Function 		CVE-2020-7370 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201424 4.3 MEDIUM
Network 		yandex yandex_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-306
Missing Authentication for Critical Function 		CVE-2020-7369 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201425 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-Other
CVE-2020-7364 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201426 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-noinfo
CVE-2020-7363 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201427 7.6 HIGH
Network 		osm-static-maps_project osm-static-maps This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to injec… CWE-79
CWE-74
Cross-site Scripting
Injection 		CVE-2020-7749 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201428 8.1 HIGH
Network 		ts.ed_project ts.ed This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attac… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7748 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201429 6.3 MEDIUM
Network 		lightning-viz lightning This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller. CWE-79
Cross-site Scripting 		CVE-2020-7747 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201430 7.1 HIGH
Network 		mintegral mintegraladsdk This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can rem… CWE-94
Code Injection 		CVE-2020-7745 2024-11-21 14:37 2020-10-19 Show GitHub Exploit DB Packet Storm