Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226191	4.3	警告	Novell	-	Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1086	2013-04-23 12:14	2013-04-16	Show	GitHub Exploit DB Packet Storm

226192	9.3	危険	Bitberry Software	-	BitZipper にメモリ破壊の脆弱性	CWE-Other その他	CVE-2013-0138	2013-04-23 11:40	2013-04-19	Show	GitHub Exploit DB Packet Storm

226193	1.9	注意	AVAST Software s.r.o.	-	avast! Mobile Security にサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0122	2013-04-23 11:25	2013-04-10	Show	GitHub Exploit DB Packet Storm

226194	3.5	注意	pd-admin	-	pd-admin にクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0129	2013-04-23 11:09	2013-04-16	Show	GitHub Exploit DB Packet Storm

226195	7.8	危険	Arecont Vision	-	AV1355DN にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0139	2013-04-22 16:55	2013-04-15	Show	GitHub Exploit DB Packet Storm

226196	4.9	警告	シスコシステムズ	-	Cisco ASA 上で稼働するクライアントレス SSL VPN におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2013-1199	2013-04-22 16:49	2013-04-17	Show	GitHub Exploit DB Packet Storm

226197	7.5	危険	Joomla!	-	Joomla! における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2013-1453	2013-04-22 16:48	2013-02-4	Show	GitHub Exploit DB Packet Storm

226198	5	警告	シスコシステムズ	-	Cisco ASA デバイスの ISAKMP の実装におけるグループを列挙される脆弱性	CWE-200 情報漏えい	CVE-2013-1194	2013-04-22 16:46	2013-04-17	Show	GitHub Exploit DB Packet Storm

226199	7.5	危険	シスコシステムズ	-	Cisco Network Admission Control Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-1177	2013-04-22 16:39	2013-04-17	Show	GitHub Exploit DB Packet Storm

226200	7.1	危険	シスコシステムズ	-	Cisco TelePresence MCU デバイスおよび TelePresence Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1176	2013-04-22 16:38	2013-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214341	6.5	MEDIUM Network	hcltechsw	onetest_performance	HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.	CWE-613 Insufficient Session Expiration	CVE-2020-14247	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

214342	7.5	HIGH Network	hcltechsw	onetest_performance	HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-14246	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

214343	9.8	CRITICAL Network	hcltechsw	onetest_performance	HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources.	CWE-306 Missing Authentication for Critical Function	CVE-2020-14245	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

214344	7.5	HIGH Network	hcltech	digital_experience	HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests. These affect containers only. These do not affect traditio…	NVD-CWE-noinfo	CVE-2020-14255	2024-11-21 14:02	2021-02-3	Show	GitHub Exploit DB Packet Storm

214345	4.9	MEDIUM Network	hcltech	digital_experience	HCL Digital Experience 8.5, 9.0, and 9.5 exposes information about the server to unauthorized users.	NVD-CWE-noinfo	CVE-2020-14221	2024-11-21 14:02	2021-02-3	Show	GitHub Exploit DB Packet Storm

214346	4.3	MEDIUM Network	atlassian	crucible fisheye	Affected versions of Atlassian Fisheye and Crucible allow remote attackers to view a product's SEN via an Information Disclosure vulnerability in the x-asen response header from Atlassian Analytics. …	CWE-200 Information Exposure	CVE-2020-14192	2024-11-21 14:02	2021-02-2	Show	GitHub Exploit DB Packet Storm

214347	7.5	HIGH Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. The one-time password algorithm for the undocumented system account mofidev generates a predictable six-digit password.	CWE-330 Use of Insufficiently Random Values	CVE-2020-13860	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

214348	9.8	CRITICAL Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. A format error in /etc/shadow, coupled with a logic bug in the LuCI - OpenWrt Configuration Interface framework, allows the…	CWE-287 CWE-755 Improper Authentication Improper Handling of Exceptional Conditions	CVE-2020-13859	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

214349	9.8	CRITICAL Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They contain two undocumented administrator accounts. The sftp and mofidev accounts are defined in /etc/passw…	CWE-798 Use of Hard-coded Credentials	CVE-2020-13858	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

214350	7.5	HIGH Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an unauthenticated poof.cgi HTTP GET request.	NVD-CWE-noinfo	CVE-2020-13857	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed