Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225971 8 危険 シーメンス - Siemens Scalance X200 IRT スイッチの Web インタフェースにおける任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3633 2013-06-25 16:19 2013-05-24 Show GitHub Exploit DB Packet Storm
225972 5 警告 キヤノン - 複数の Canon プリンタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4615 2013-06-25 16:12 2013-06-18 Show GitHub Exploit DB Packet Storm
225973 2.1 注意 キヤノン - 複数の Canon プリンタにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-4614 2013-06-25 16:12 2013-06-18 Show GitHub Exploit DB Packet Storm
225974 7.5 危険 キヤノン - 複数の Canon プリンタの管理インターフェースにおける設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4613 2013-06-25 16:11 2013-06-18 Show GitHub Exploit DB Packet Storm
225975 4.3 警告 IBM - IBM WebSphere Commerce Enterprise における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0523 2013-06-25 16:11 2013-06-14 Show GitHub Exploit DB Packet Storm
225976 4.3 警告 IBM - IBM Application Manager for Smart Business などの製品で使用される ITM における HTTP リクエストの不特定のリダイレクションを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2961 2013-06-25 16:10 2013-06-17 Show GitHub Exploit DB Packet Storm
225977 5 警告 IBM - IBM Application Manager for Smart Business などの製品で使用される ITM におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2960 2013-06-25 16:08 2013-06-17 Show GitHub Exploit DB Packet Storm
225978 5 警告 IBM - IBM Application Manager for Smart Business などの製品で使用される ITM におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0551 2013-06-25 16:08 2013-06-17 Show GitHub Exploit DB Packet Storm
225979 4.3 警告 IBM - IBM Application Manager for Smart Business などの製品で使用される ITM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0548 2013-06-25 16:07 2013-06-17 Show GitHub Exploit DB Packet Storm
225980 7.2 危険 IBM - IBM Notes の Multi User Profile Cleanup サービスにおける権限を取得される脆弱性(DoS) CWE-264
認可・権限・アクセス制御 		CVE-2013-0536 2013-06-25 16:05 2013-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202001 5.4 MEDIUM
Network 		blackboard blackboard_learn Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor. CWE-79
Cross-site Scripting 		CVE-2020-9008 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202002 8.0 HIGH
Network 		litecart litecart LiteCart through 2.2.1 allows CSV injection via a customer's profile. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-9017 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202003 9.8 CRITICAL
Network 		opensmtpd
canonical
fedoraproject
debian 		opensmtpd
ubuntu_linux
fedora
debian_linux 		OpenSMTPD before 6.6.4 allows remote code execution because of an out-of-bounds read in mta_io in mta_session.c for multi-line replies. Although this vulnerability affects the client side of OpenSMTP… CWE-125
Out-of-bounds Read 		CVE-2020-8794 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202004 4.7 MEDIUM
Local 		opensmtpd
fedoraproject
canonical 		opensmtpd
fedora
ubuntu_linux 		OpenSMTPD before 6.6.4 allows local users to read arbitrary files (e.g., on some Linux distributions) because of a combination of an untrusted search path in makemap.c and race conditions in the offl… CWE-426
CWE-367
 Untrusted Search Path
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-8793 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202005 8.1 HIGH
Network 		cardgate cardgate_payments An issue was discovered in the CardGate Payments plugin through 3.1.15 for WooCommerce. Lack of origin authentication in the IPN callback processing function in cardgate/cardgate.php allows an attack… CWE-346
 Origin Validation Error 		CVE-2020-8819 2024-11-21 14:39 2020-02-25 Show GitHub Exploit DB Packet Storm
202006 8.1 HIGH
Network 		cardgate
adobe 		cardgate_payments
magento 		An issue was discovered in the CardGate Payments plugin through 2.0.30 for Magento 2. Lack of origin authentication in the IPN callback processing function in Controller/Payment/Callback.php allows a… CWE-346
 Origin Validation Error 		CVE-2020-8818 2024-11-21 14:39 2020-02-25 Show GitHub Exploit DB Packet Storm
202007 9.8 CRITICAL
Network 		couchbase couchbase_server Couchbase Server 4.0.0, 4.1.0, 4.1.1, 4.5.0, 4.5.1, 4.6.0 through 4.6.5, 5.0.0, 5.1.1, 5.5.0 and 5.5.1 have Insecure Permissions for the projector and indexer REST endpoints (they allow unauthenticat… CWE-276
Incorrect Default Permissions  		CVE-2020-9039 2024-11-21 14:39 2020-02-22 Show GitHub Exploit DB Packet Storm
202008 8.8 HIGH
Network 		cacti
fedoraproject
opmantek
opensuse
debian 		cacti
fedora
open-audit
suse_package_hub
debian_linux 		graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege. CWE-78
OS Command  		CVE-2020-8813 2024-11-21 14:39 2020-02-22 Show GitHub Exploit DB Packet Storm
202009 8.8 HIGH
Adjacent 		dlink dap-2610_firmware This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-2610 Firmware v2.01RC067 routers. Authentication is not required to exploit this … CWE-287
Improper Authentication 		CVE-2020-8862 2024-11-21 14:39 2020-02-22 Show GitHub Exploit DB Packet Storm
202010 8.8 HIGH
Adjacent 		dlink dap-1330_firmware This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DAP-1330 1.10B01 BETA Wi-Fi range extenders. Authentication is not required to exploi… CWE-287
Improper Authentication 		CVE-2020-8861 2024-11-21 14:39 2020-02-22 Show GitHub Exploit DB Packet Storm