Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0022 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226112 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0027 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226113 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0021 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226114 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0020 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226115 9.3 危険 マイクロソフト - Microsoft Internet Explorer 7 から 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0019 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226116 7.1 危険 マイクロソフト - Microsoft Windows Server の NFS サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1281 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226117 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 9 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0018 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226118 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1280 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226119 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-0015 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226120 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルにおける権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1279 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210511 6.1 MEDIUM
Network 		bestsoftinc car_rental_system An issue was discovered in the bestsoftinc Car Rental System plugin through 1.3 for WordPress. Persistent XSS can occur via any of the registration fields. CWE-79
Cross-site Scripting 		CVE-2020-15535 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210512 7.5 HIGH
Network 		wireshark
opensuse
debian 		wireshark
leap
debian_linux 		In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-15466 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210513 7.8 HIGH
Local 		valvesoftware steam_client An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILES(X86)%\Steam and/or %COMMONPROGRAM… CWE-362
Race Condition 		CVE-2020-15530 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210514 7.8 HIGH
Local 		gog galaxy An issue was discovered in GOG Galaxy Client 2.0.17. Local escalation of privileges is possible when a user installs a game or performs a verify/repair operation. The issue exists because of weak fil… CWE-667
CWE-732
 Improper Locking
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-15529 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210515 7.8 HIGH
Local 		gog galaxy An issue was discovered in GOG Galaxy Client 2.0.17. Local escalation of privileges is possible when a user starts or uninstalls a game because of weak file permissions and missing file integrity che… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-15528 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210516 7.8 HIGH
Local 		python
netapp 		python
snapcenter 		In Python 3.6 through 3.6.10, 3.7 through 3.7.8, 3.8 through 3.8.4rc1, and 3.9 through 3.9.0b4 on Windows, a Trojan horse python3.dll might be used in cases where CPython is embedded in a native appl… CWE-427
CWE-908
 Uncontrolled Search Path Element
 Use of Uninitialized Resource 		CVE-2020-15523 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210517 8.8 HIGH
Network 		veeam veeam_availability_suite
veeam_backup_\&_replication 		VeeamFSR.sys in Veeam Availability Suite before 10 and Veeam Backup & Replication before 10 has no device object DACL, which allows unprivileged users to achieve total control over filesystem I/O req… CWE-862
 Missing Authorization 		CVE-2020-15518 2024-11-21 14:05 2020-07-3 Show GitHub Exploit DB Packet Storm
210518 2.3 LOW
Local 		qemu
debian 		qemu
debian_linux 		In QEMU 4.2.0, a MemoryRegionOps object may lack read/write callback methods, leading to a NULL pointer dereference. CWE-476
 NULL Pointer Dereference 		CVE-2020-15469 2024-11-21 14:05 2020-07-3 Show GitHub Exploit DB Packet Storm
210519 7.5 HIGH
Network 		libraw
fedoraproject
debian 		libraw
fedora
debian_linux 		LibRaw before 0.20-RC1 lacks a thumbnail size range check. This affects decoders/unpack_thumb.cpp, postprocessing/mem_image.cpp, and utils/thumb_utils.cpp. For example, malloc(sizeof(libraw_processed… CWE-20
 Improper Input Validation  		CVE-2020-15503 2024-11-21 14:05 2020-07-2 Show GitHub Exploit DB Packet Storm
210520 7.5 HIGH
Network 		duckduckgo duckduckgo The DuckDuckGo application through 5.58.0 for Android, and through 7.47.1.0 for iOS, sends hostnames of visited web sites within HTTPS .ico requests to servers in the duckduckgo.com domain, which mig… CWE-200
Information Exposure 		CVE-2020-15502 2024-11-21 14:05 2020-07-2 Show GitHub Exploit DB Packet Storm