Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226291 4.7 警告 ジュニパーネットワークス - Junos Space JA1500 アプライアンスなどで使用される Juniper Junos Space におけるパスワードを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-3497 2013-05-10 14:51 2013-05-8 Show GitHub Exploit DB Packet Storm
226292 3.5 注意 シマンテック - Symantec Brightmail Gateway におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1611 2013-05-10 14:07 2013-05-8 Show GitHub Exploit DB Packet Storm
226293 4.3 警告 Invensys - Invensys Wonderware Information Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0688 2013-05-10 14:07 2013-05-7 Show GitHub Exploit DB Packet Storm
226294 9.3 危険 Invensys - Invensys Wonderware Information Server における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0686 2013-05-10 14:06 2013-05-7 Show GitHub Exploit DB Packet Storm
226295 9.3 危険 Invensys - Invensys Wonderware Information Server における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0685 2013-05-10 14:06 2013-05-7 Show GitHub Exploit DB Packet Storm
226296 7.5 危険 Invensys - Invensys Wonderware Information Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0684 2013-05-10 14:05 2013-05-7 Show GitHub Exploit DB Packet Storm
226297 9.3 危険 IBM - IBM WebSphere DataPower XC10 アプライアンスデバイスにおける認証を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0600 2013-05-10 14:04 2013-05-3 Show GitHub Exploit DB Packet Storm
226298 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1876 2013-05-9 19:47 2012-06-12 Show GitHub Exploit DB Packet Storm
226299 6.8 警告 GroundWork - GroundWork Monitor Enterprise におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3513 2013-05-9 16:33 2013-03-7 Show GitHub Exploit DB Packet Storm
226300 6.5 警告 GroundWork - GroundWork Monitor Enterprise の Cacti コンポーネントにおける構成の設定を読まれるの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3512 2013-05-9 16:33 2013-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201961 4.3 MEDIUM
Network 		raiseitsolutions rits_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-7371 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201962 4.3 MEDIUM
Network 		boltbrowser bolt_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented … CWE-306
Missing Authentication for Critical Function 		CVE-2020-7370 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201963 4.3 MEDIUM
Network 		yandex yandex_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-306
Missing Authentication for Critical Function 		CVE-2020-7369 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201964 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-Other
CVE-2020-7364 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201965 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-noinfo
CVE-2020-7363 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
201966 7.6 HIGH
Network 		osm-static-maps_project osm-static-maps This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to injec… CWE-79
CWE-74
Cross-site Scripting
Injection 		CVE-2020-7749 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201967 8.1 HIGH
Network 		ts.ed_project ts.ed This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attac… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7748 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201968 6.3 MEDIUM
Network 		lightning-viz lightning This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller. CWE-79
Cross-site Scripting 		CVE-2020-7747 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
201969 7.1 HIGH
Network 		mintegral mintegraladsdk This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can rem… CWE-94
Code Injection 		CVE-2020-7745 2024-11-21 14:37 2020-10-19 Show GitHub Exploit DB Packet Storm
201970 8.8 HIGH
Network 		siemens siport_mp A vulnerability has been identified in SIPORT MP (All versions < 3.2.1). Vulnerable versions of the device could allow an authenticated attacker to impersonate other users of the system and perform (… - CVE-2020-7591 2024-11-21 14:37 2020-10-16 Show GitHub Exploit DB Packet Storm