Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226011 5 警告 オラクル - Oracle Secure Backup の Oracle Secure Backup コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3981 2013-06-21 14:36 2009-01-13 Show GitHub Exploit DB Packet Storm
226012 7.5 危険 kamads - Bloginator の articleCall.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-1049 2013-06-21 14:34 2009-03-20 Show GitHub Exploit DB Packet Storm
226013 3.5 注意 Ivan Jaros - Drupal 用モジュールの Feed Block におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1738 2013-06-21 14:33 2009-05-4 Show GitHub Exploit DB Packet Storm
226014 7.5 危険 Google - Google Chrome の PDF 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2864 2013-06-20 17:26 2013-06-4 Show GitHub Exploit DB Packet Storm
226015 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3142 2013-06-20 17:19 2013-06-11 Show GitHub Exploit DB Packet Storm
226016 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 および 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3141 2013-06-20 17:17 2013-06-11 Show GitHub Exploit DB Packet Storm
226017 9 危険 マイクロソフト - 複数の Microsoft Windows 製品の印刷スプーラーにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1339 2013-06-20 17:16 2013-06-11 Show GitHub Exploit DB Packet Storm
226018 7.1 危険 マイクロソフト - 複数の Microsoft Windows 製品の TCP/IP カーネルモードドライバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-3138 2013-06-20 17:13 2013-06-11 Show GitHub Exploit DB Packet Storm
226019 4.4 警告 マイクロソフト - 複数の Microsoft Windows 製品のカーネルにおける重要な情報を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-3136 2013-06-20 17:12 2013-06-11 Show GitHub Exploit DB Packet Storm
226020 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3126 2013-06-20 17:12 2013-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202091 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via an uploaded document, when the attacker has write access to a project. CWE-79
Cross-site Scripting 		CVE-2020-8778 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
202092 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document. CWE-79
Cross-site Scripting 		CVE-2020-8777 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
202093 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via the URL property of a file. CWE-79
Cross-site Scripting 		CVE-2020-8776 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
202094 6.1 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the logout.jsp timeOut parameter. CWE-79
Cross-site Scripting 		CVE-2020-8952 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
202095 5.4 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the Source or Destination field of the Configuration Manager (Configuration Parameter Translation) page. CWE-79
Cross-site Scripting 		CVE-2020-8951 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
202096 8.1 HIGH
Network 		gurux device_language_message_specification_director An issue was discovered in Gurux GXDLMS Director through 8.5.1905.1301. When downloading OBIS codes, it does not verify that the downloaded files are actual OBIS codes and doesn't check for path trav… CWE-22
Path Traversal 		CVE-2020-8810 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202097 8.1 HIGH
Network 		gurux device_language_message_specification_director Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. A man-in-the-middle attacker can prompt the user to download updates by mo… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-8809 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202098 6.1 MEDIUM
Network 		wpjobboard wpjobboard The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description. CWE-79
Cross-site Scripting 		CVE-2020-9019 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202099 5.3 MEDIUM
Network 		litecart litecart LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user. CWE-352
 Origin Validation Error 		CVE-2020-9018 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202100 5.4 MEDIUM
Network 		blackboard blackboard_learn Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor. CWE-79
Cross-site Scripting 		CVE-2020-9008 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm