Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226071	7.5	危険	VMware	-	VMware vCenter Chargeback Manager における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3520	2013-06-18 16:11	2013-06-11	Show	GitHub Exploit DB Packet Storm

226072	10	危険	ヒューレット・パッカード	-	HP Integrated Lights-Out 3 および Integrated Lights-Out 4 における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-2338	2013-06-18 16:06	2013-06-17	Show	GitHub Exploit DB Packet Storm

226073	4.3	警告	ヒューレット・パッカード	-	HP Service Manager および ServiceCenter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2337	2013-06-18 16:05	2013-06-10	Show	GitHub Exploit DB Packet Storm

226074	5	警告	ヒューレット・パッカード	-	HP Service Manager および ServiceCenter における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-2336	2013-06-18 16:05	2013-06-10	Show	GitHub Exploit DB Packet Storm

226075	5	警告	IBM	-	IBM Data Studio の Web コンソールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-2981	2013-06-18 15:45	2013-06-14	Show	GitHub Exploit DB Packet Storm

226076	6.8	警告	IBM	-	IBM Data Studio の Web コンソールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-2980	2013-06-18 15:44	2013-06-14	Show	GitHub Exploit DB Packet Storm

226077	7.1	危険	IOServer	-	IOServer の DNP3 ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2783	2013-06-18 12:38	2013-06-10	Show	GitHub Exploit DB Packet Storm

226078	7.5	危険	シーメンス	-	SIMATIC PCS 7 で使用される Siemens WinCC の Web Navigator における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3957	2013-06-18 11:16	2013-06-14	Show	GitHub Exploit DB Packet Storm

226079	10	危険	オラクル	-	Oracle Java SE の Java Runtime Environment におけるセキュリティ・レベルを回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-1489	2013-06-17 17:01	2013-02-1	Show	GitHub Exploit DB Packet Storm

226080	5	警告	ヒューレット・パッカード	-	HP Insight Diagnostics の hpdiags/frontend2/help/pageview.php における任意の HTML ファイルをインクルードされる脆弱性	CWE-20 不適切な入力確認	CVE-2013-3575	2013-06-17 14:25	2013-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202031	7.5	HIGH Network	argoproj	argo_cd	As of v1.5.0, the Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures. Attackers can submit an unlimited number of authenti…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-8827	2024-11-21 14:39	2020-04-9	Show	GitHub Exploit DB Packet Storm

202032	7.5	HIGH Network	argoproj	argo_cd	As of v1.5.0, the Argo web interface authentication system issued immutable tokens. Authentication tokens, once issued, were usable forever without expiration—there was no refresh or forced re-authen…	CWE-384 Session Fixation	CVE-2020-8826	2024-11-21 14:39	2020-04-9	Show	GitHub Exploit DB Packet Storm

202033	5.5	MEDIUM Local	canonical netapp	ubuntu_linux cloud_backup steelstore_cloud_integrated_storage solidfire_\&_hci_management_node aff_8300_firmware aff_8700_firmware aff_a220_firmware aff_a320_firmware aff_…	The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discover…	CWE-200 Information Exposure	CVE-2020-8832	2024-11-21 14:39	2020-04-10	Show	GitHub Exploit DB Packet Storm

202034	6.5	MEDIUM Local	linux canonical opensuse	linux_kernel ubuntu_linux leap	KVM in the Linux kernel on Power8 processors has a conflicting use of HSTATE_HOST_R1 to store r1 state in kvmppc_hv_entry plus in kvmppc_{save,restore}_tm, leading to a stack corruption. Because of t…	CWE-362 Race Condition	CVE-2020-8834	2024-11-21 14:39	2020-04-10	Show	GitHub Exploit DB Packet Storm

202035	8.8	HIGH Network	testlink	testlink	An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension. This allows an a…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-8639	2024-11-21 14:39	2020-04-4	Show	GitHub Exploit DB Packet Storm

202036	9.8	CRITICAL Network	testlink	testlink	A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in planUrgency.php via the urgency parameter.	CWE-89 SQL Injection	CVE-2020-8638	2024-11-21 14:39	2020-04-4	Show	GitHub Exploit DB Packet Storm

202037	9.8	CRITICAL Network	testlink	testlink	A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arbitrary SQL commands in dragdroptreenodes.php via the node_id parameter.	CWE-89 SQL Injection	CVE-2020-8637	2024-11-21 14:39	2020-04-4	Show	GitHub Exploit DB Packet Storm

202038	8.0	HIGH Adjacent	huawei	smartax_ma5600t_firmware smartax_ma5800_firmware smartax_ea5800_firmware	There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product…	CWE-120 Classic Buffer Overflow	CVE-2020-9067	2024-11-21 14:39	2020-04-3	Show	GitHub Exploit DB Packet Storm

202039	7.8	HIGH Local	linux fedoraproject canonical netapp	linux_kernel fedora ubuntu_linux cloud_backup steelstore_cloud_integrated_storage solidfire hci_management_node a700s_firmware 8300_firmware 8700_firmware a400_firmware<…	In the Linux kernel 5.5.0 and newer, the bpf verifier (kernel/bpf/verifier.c) did not properly restrict the register bounds for 32-bit operations, leading to out-of-bounds reads and writes in kernel …	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2020-8835	2024-11-21 14:39	2020-04-3	Show	GitHub Exploit DB Packet Storm

202040	6.1	MEDIUM Network	tiki	tikiwiki_cms\/groupware	There is an Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in php webpages of Tiki-Wiki Groupware. Tiki-Wiki CMS all versions through 20.0 allows maliciou…	CWE-79 Cross-site Scripting	CVE-2020-8966	2024-11-21 14:39	2020-04-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed