Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226291 10 危険 アドビシステムズ - Adobe Shockwave Player における ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1385 2013-04-11 11:20 2013-04-9 Show GitHub Exploit DB Packet Storm
226292 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1384 2013-04-11 11:20 2013-04-9 Show GitHub Exploit DB Packet Storm
226293 10 危険 アドビシステムズ - Adobe Shockwave Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1383 2013-04-11 11:19 2013-04-9 Show GitHub Exploit DB Packet Storm
226294 7.1 危険 シスコシステムズ - Cisco Prime Central for HCS Assurance におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1135 2013-04-10 16:47 2012-02-27 Show GitHub Exploit DB Packet Storm
226295 4.3 警告 SAND STUDIO - AirDroid にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0134 2013-04-10 16:33 2013-04-9 Show GitHub Exploit DB Packet Storm
226296 6.8 警告 NVIDIA - Windows 上で稼働する NVIDIA ドライバにおける権限を取得される脆弱性 CWE-DesignError
CVE-2013-0111 2013-04-10 14:32 2013-02-15 Show GitHub Exploit DB Packet Storm
226297 6.8 警告 NVIDIA - Windows 上で稼働する NVIDIA ドライバにおける権限を取得される脆弱性 CWE-DesignError
CVE-2013-0110 2013-04-10 14:32 2013-02-15 Show GitHub Exploit DB Packet Storm
226298 7.2 危険 NVIDIA - NVIDIA ディスプレイドライバサービスの NVIDIA ドライバにおける権限を取得される脆弱性 CWE-119
バッファエラー 		CVE-2013-0109 2013-04-10 14:26 2013-02-15 Show GitHub Exploit DB Packet Storm
226299 7.5 危険 chatelao - PHP Address Book におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2778 2013-04-10 14:20 2013-04-5 Show GitHub Exploit DB Packet Storm
226300 7.5 危険 chatelao - PHP Address Book に SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-0135 2013-04-10 12:40 2013-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214221 9.8 CRITICAL
Network 		dext5 dext5 A Remote code execution vulnerability exists in DEXT5Upload in DEXT5 through 2.7.1402870. An attacker can upload a PHP file via dext5handler.jsp handler because the uploaded file is stored under dext… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-13442 2024-11-21 14:01 2020-05-26 Show GitHub Exploit DB Packet Storm
214222 6.5 MEDIUM
Network 		rockcarry ffjpeg ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c. CWE-787
 Out-of-bounds Write 		CVE-2020-13440 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214223 6.5 MEDIUM
Network 		rockcarry ffjpeg ffjpeg through 2020-02-24 has a heap-based buffer over-read in jfif_decode in jfif.c. CWE-125
Out-of-bounds Read 		CVE-2020-13439 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214224 6.5 MEDIUM
Network 		rockcarry ffjpeg ffjpeg through 2020-02-24 has an invalid read in jfif_encode in jfif.c. CWE-125
Out-of-bounds Read 		CVE-2020-13438 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214225 5.5 MEDIUM
Local 		sqlite
fedoraproject 		sqlite
fedora 		SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c. CWE-476
 NULL Pointer Dereference 		CVE-2020-13435 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214226 5.5 MEDIUM
Local 		sqlite
debian
fedoraproject
canonical
freebsd
oracle
apple 		sqlite
debian_linux
fedora
ubuntu_linux
freebsd
outside_in_technology
communications_network_charging_and_control
communications_cloud_native_core_policy
iphone_os
watchos<… 		SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c. CWE-190
 Integer Overflow or Wraparound 		CVE-2020-13434 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214227 9.8 CRITICAL
Network 		adminpanel_project adminpanel Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter. CWE-89
SQL Injection 		CVE-2020-13433 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214228 6.1 MEDIUM
Network 		grafana grafana Grafana before 7.0.0 allows tag value XSS via the OpenTSDB datasource. CWE-79
Cross-site Scripting 		CVE-2020-13430 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214229 5.4 MEDIUM
Network 		grafana piechart-panel legend.ts in the piechart-panel (aka Pie Chart Panel) plugin before 1.5.0 for Grafana allows XSS via the Values Header (aka legend header) option. CWE-79
Cross-site Scripting 		CVE-2020-13429 2024-11-21 14:01 2020-05-25 Show GitHub Exploit DB Packet Storm
214230 7.1 HIGH
Adjacent 		thetrackr trackr_firmware TrackR devices through 2020-05-06 allow attackers to trigger the Beep (aka alarm) feature, which will eventually cause a denial of service when battery capacity is exhausted. CWE-862
 Missing Authorization 		CVE-2020-13425 2024-11-21 14:01 2020-05-24 Show GitHub Exploit DB Packet Storm