Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226081	7.8	危険	ヒューレット・パッカード	-	HP Insight Diagnostics の hpdiags/frontend2/commands/saveCompareConfig.php における絶対パストラバーサルの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3574	2013-06-17 14:23	2013-06-10	Show	GitHub Exploit DB Packet Storm

226082	10	危険	ヒューレット・パッカード	-	HP Insight Diagnostics における不特定のインジェクション攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-3573	2013-06-17 14:22	2013-06-10	Show	GitHub Exploit DB Packet Storm

226083	4.3	警告	シスコシステムズ	-	Cisco Video Surveillance Operations Manager におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-3376	2013-06-17 14:22	2013-06-14	Show	GitHub Exploit DB Packet Storm

226084	4.3	警告	シスコシステムズ	-	Cisco Prime Central for Hosted Collaboration Solution におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3375	2013-06-17 14:21	2013-06-14	Show	GitHub Exploit DB Packet Storm

226085	4.3	警告	Orchard Project	-	Orchard におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3645	2013-06-17 11:59	2013-06-13	Show	GitHub Exploit DB Packet Storm

226086	10	危険	オラクル	-	Oracle Java SE の Java Runtime Environment および JavaFX における 2D の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-0437	2013-06-14 19:15	2013-02-1	Show	GitHub Exploit DB Packet Storm

226087	10	危険	オラクル	-	Oracle Java SE の JavaFX における脆弱性	CWE-noinfo 情報不足	CVE-2013-0436	2013-06-14 19:11	2013-02-1	Show	GitHub Exploit DB Packet Storm

226088	4.3	警告	ジュニパーネットワークス	-	Juniper Junos Pulse Secure Access Service および Junos Pulse Access Control Service における SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2013-3970	2013-06-14 16:27	2013-06-12	Show	GitHub Exploit DB Packet Storm

226089	6.9	警告	サン・マイクロシステムズオラクル	-	Oracle Java SE の Java Runtime Environment におけるクライアントのインストールプロセスの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-0430	2013-06-14 10:18	2013-02-1	Show	GitHub Exploit DB Packet Storm

226090	10	危険	オラクル	-	Oracle Java SE の JavaFX における脆弱性	CWE-noinfo 情報不足	CVE-2013-1483	2013-06-13 18:14	2013-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209231	5.5	MEDIUM Local	uclouvain fedoraproject oracle debian	openjpeg fedora outside_in_technology debian_linux	A flaw was found in OpenJPEG in versions prior to 2.4.0. This flaw allows an attacker to provide specially crafted input to the conversion or encoding functionality, causing an out-of-bounds read. Th…	CWE-125 Out-of-bounds Read	CVE-2020-27843	2024-11-21 14:21	2021-01-6	Show	GitHub Exploit DB Packet Storm

209232	5.5	MEDIUM Local	uclouvain fedoraproject debian redhat oracle	openjpeg fedora extra_packages_for_enterprise_linux debian_linux enterprise_linux enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems codeready_linux_buil…	There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest im…	-	CVE-2020-27842	2024-11-21 14:21	2021-01-6	Show	GitHub Exploit DB Packet Storm

209233	5.5	MEDIUM Local	uclouvain fedoraproject debian oracle	openjpeg fedora debian_linux outside_in_technology	There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bo…	-	CVE-2020-27841	2024-11-21 14:21	2021-01-6	Show	GitHub Exploit DB Packet Storm

209234	5.3	MEDIUM Network	docker	docker	util/binfmt_misc/check.go in Builder in Docker Engine before 19.03.9 calls os.OpenFile with a potentially unsafe qemu-check temporary pathname, constructed with an empty first argument in an ioutil.T…	CWE-22 Path Traversal	CVE-2020-27534	2024-11-21 14:21	2020-12-31	Show	GitHub Exploit DB Packet Storm

209235	8.8	HIGH Network	dotcms	dotcms	dotCMS before 20.10.1 allows SQL injection, as demonstrated by the /api/v1/containers orderby parameter. The PaginatorOrdered classes that are used to paginate results of a REST endpoints do not sani…	CWE-89 SQL Injection	CVE-2020-27848	2024-11-21 14:21	2020-12-31	Show	GitHub Exploit DB Packet Storm

209236	8.8	HIGH Network	1e	client	The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users and …	CWE-428 Unquoted Search Path or Element	CVE-2020-27645	2024-11-21 14:21	2020-12-30	Show	GitHub Exploit DB Packet Storm

209237	8.8	HIGH Network	1e	client	The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing %PROGRAMFILES%\1E\Client\Tachyon.Performance.Metrics.exe. This may allow remote authenticated users and …	CWE-428 Unquoted Search Path or Element	CVE-2020-27644	2024-11-21 14:21	2020-12-30	Show	GitHub Exploit DB Packet Storm

209238	6.5	MEDIUM Network	1e	client	The %PROGRAMDATA%\1E\Client directory in 1E Client 5.0.0.745 and 4.1.0.267 allows remote authenticated users and local users to create and modify files in protected directories (where they would not …	CWE-59 Link Following	CVE-2020-27643	2024-11-21 14:21	2020-12-30	Show	GitHub Exploit DB Packet Storm

209239	6.4	MEDIUM Physics	gnome	gnome_display_manager	A flaw was found in GDM in versions prior to 3.38.2.1. A race condition in the handling of session shutdown makes it possible to bypass the lock screen for a user that has autologin enabled, accessin…	-	CVE-2020-27837	2024-11-21 14:21	2020-12-29	Show	GitHub Exploit DB Packet Storm

209240	6.1	MEDIUM Network	techkshetrainfo	savsoft_quiz	A Cross Site Scripting (XSS) vulnerability in Savsoft Quiz v5.0 allows remote attackers to inject arbitrary web script or HTML via the Skype ID field.	CWE-79 Cross-site Scripting	CVE-2020-27515	2024-11-21 14:21	2020-12-26	Show	GitHub Exploit DB Packet Storm