Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226221	4	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0679	2013-03-25 19:07	2013-03-15	Show	GitHub Exploit DB Packet Storm

226222	4	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-0678	2013-03-25 19:05	2013-03-15	Show	GitHub Exploit DB Packet Storm

226223	5.8	警告	シーメンス	-	SIMATIC PCS7 およびその他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0677	2013-03-25 19:04	2013-03-15	Show	GitHub Exploit DB Packet Storm

226224	4	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0676	2013-03-25 19:03	2011-04-29	Show	GitHub Exploit DB Packet Storm

226225	6.1	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0675	2013-03-25 19:01	2013-03-15	Show	GitHub Exploit DB Packet Storm

226226	6.8	警告	シーメンス	-	SIMATIC PCS7 および他の製品で使用される Siemens WinCC におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0674	2013-03-25 19:00	2013-03-15	Show	GitHub Exploit DB Packet Storm

226227	3.5	注意	シーメンス	-	Siemens WinCC の HMI Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0672	2013-03-25 18:58	2013-03-15	Show	GitHub Exploit DB Packet Storm

226228	4	警告	シーメンス	-	Siemens WinCC におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0671	2013-03-25 18:54	2013-03-15	Show	GitHub Exploit DB Packet Storm

226229	4.3	警告	シーメンス	-	Siemens WinCC の HMI Web アプリケーションにおける CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2013-0670	2013-03-25 18:52	2013-03-15	Show	GitHub Exploit DB Packet Storm

226230	4	警告	シーメンス	-	Siemens WinCC の HMI Web アプリケーションにおけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0669	2013-03-25 18:52	2013-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214151	7.5	HIGH Network	wireshark debian opensuse fedoraproject	wireshark debian_linux leap fedora	In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a c…	CWE-674 Uncontrolled Recursion	CVE-2020-13164	2024-11-21 14:00	2020-05-20	Show	GitHub Exploit DB Packet Storm

214152	7.4	HIGH Network	em-imap_project	em-imap	em-imap 0.5 uses the library eventmachine in an insecure way that allows an attacker to perform a man-in-the-middle attack against users of the library. The hostname in a TLS server certificate is no…	CWE-295 Improper Certificate Validation	CVE-2020-13163	2024-11-21 14:00	2020-05-20	Show	GitHub Exploit DB Packet Storm

214153	9.8	CRITICAL Network	netsweeper	netsweeper	Netsweeper through 6.4.3 allows unauthenticated remote code execution because webadmin/tools/unixlogin.php (with certain Referer headers) launches a command line with client-supplied parameters, and …	CWE-78 OS Command	CVE-2020-13167	2024-11-21 14:00	2020-05-20	Show	GitHub Exploit DB Packet Storm

214154	9.8	CRITICAL Network	mylittletools	mylittleadmin	The management tool in MyLittleAdmin 3.8 allows remote attackers to execute arbitrary code because machineKey is hardcoded (the same for all customers' installations) in web.config, and can be used t…	CWE-798 Use of Hard-coded Credentials	CVE-2020-13166	2024-11-21 14:00	2020-05-20	Show	GitHub Exploit DB Packet Storm

214155	7.5	HIGH Network	nlnetlabs debian opensuse canonical fedoraproject	unbound debian_linux leap ubuntu_linux fedora	Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-12663	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

214156	7.5	HIGH Network	nlnetlabs debian opensuse canonical fedoraproject	unbound debian_linux leap ubuntu_linux fedora	Unbound before 1.10.1 has Insufficient Control of Network Message Volume, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12662	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

214157	7.5	HIGH Network	nic	knot_resolver	Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME i…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12667	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

214158	6.5	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	Zoho ManageEngine Service Plus before 11.1 build 11112 allows low-privilege authenticated users to discover the File Protection password via a getFileProtectionSettings call to AjaxServlet.	CWE-862 Missing Authorization	CVE-2020-13154	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

214159	6.1	MEDIUM Network	misp	misp	app/View/Events/resolved_attributes.ctp in MISP before 2.4.126 has XSS in the resolved attributes view.	CWE-79 Cross-site Scripting	CVE-2020-13153	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

214160	5.4	MEDIUM Network	dolibarr	dolibarr	Dolibarr before 11.0.4 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-13094	2024-11-21 14:00	2020-05-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed