Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226191	3.5	注意	pd-admin	-	pd-admin にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0129	2013-04-23 11:09	2013-04-16	Show	GitHub Exploit DB Packet Storm

226192	7.8	危険	Arecont Vision	-	AV1355DN にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0139	2013-04-22 16:55	2013-04-15	Show	GitHub Exploit DB Packet Storm

226193	4.9	警告	シスコシステムズ	-	Cisco ASA 上で稼働するクライアントレス SSL VPN におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2013-1199	2013-04-22 16:49	2013-04-17	Show	GitHub Exploit DB Packet Storm

226194	7.5	危険	Joomla!	-	Joomla! における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2013-1453	2013-04-22 16:48	2013-02-4	Show	GitHub Exploit DB Packet Storm

226195	5	警告	シスコシステムズ	-	Cisco ASA デバイスの ISAKMP の実装におけるグループを列挙される脆弱性	CWE-200 情報漏えい	CVE-2013-1194	2013-04-22 16:46	2013-04-17	Show	GitHub Exploit DB Packet Storm

226196	7.5	危険	シスコシステムズ	-	Cisco Network Admission Control Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-1177	2013-04-22 16:39	2013-04-17	Show	GitHub Exploit DB Packet Storm

226197	7.1	危険	シスコシステムズ	-	Cisco TelePresence MCU デバイスおよび TelePresence Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1176	2013-04-22 16:38	2013-04-17	Show	GitHub Exploit DB Packet Storm

226198	4.3	警告	chatelao	-	PHP Address Book の edit.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1749	2013-04-22 16:32	2013-04-18	Show	GitHub Exploit DB Packet Storm

226199	7.5	危険	chatelao	-	PHP Address Book における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-1748	2013-04-22 16:17	2013-04-18	Show	GitHub Exploit DB Packet Storm

226200	10	危険	Rockwell Automation	-	Rockwell Automation RSLinx Enterprise の LogReceiver.exe におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-4715	2013-04-22 16:02	2013-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214171	7.5	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices have Cleartext Storage of Sensitive Information.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-13783	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

214172	8.8	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.	CWE-78 OS Command	CVE-2020-13782	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

214173	3.5	LOW Network	projectcalico	calico	Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with suffic…	CWE-200 Information Exposure	CVE-2020-13597	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

214174	9.8	CRITICAL Network	sabberworm	php_css_parser	Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input fr…	CWE-94 Code Injection	CVE-2020-13756	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214175	6.1	MEDIUM Network	djangoproject fedoraproject canonical netapp debian oracle	django fedora ubuntu_linux steelstore_cloud_integrated_storage sra_plugin debian_linux zfs_storage_appliance_kit	An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility …	CWE-79 Cross-site Scripting	CVE-2020-13596	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214176	6.7	MEDIUM Local	systemd_project netapp fedoraproject	systemd solidfire_\&_hci_management_node active_iq_unified_manager fedora	systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user acc…	CWE-269 Improper Privilege Management	CVE-2020-13776	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214177	6.5	MEDIUM Network	znc fedoraproject	znc fedora	ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.	CWE-476 NULL Pointer Dereference	CVE-2020-13775	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214178	7.5	HIGH Network	rocketgenius	gravityforms	common.php in the Gravity Forms plugin before 2.4.9 for WordPress can leak hashed passwords because user_pass is not considered a special case for a $current_user->get($property) call.	CWE-200 Information Exposure	CVE-2020-13764	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214179	7.5	HIGH Network	joomla	joomla\!	In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users.	CWE-281 Improper Preservation of Permissions	CVE-2020-13763	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

214180	6.1	MEDIUM Network	joomla	joomla\!	In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-13762	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm