Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
226301 7.5 危険 Sonatype Inc. - Sonatype Nexus における任意のオブジェクトを作成される脆弱性 CWE-94
コード・インジェクション
CVE-2014-0792 2014-01-22 11:04 2014-01-7 Show GitHub Exploit DB Packet Storm
226302 4.3 警告 The GetSimple Team - GetSimple CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-7243 2014-01-21 17:06 2013-12-31 Show GitHub Exploit DB Packet Storm
226303 6.8 警告 Conceptronic - Conceptronic CIPCAMPTIWL Camera のファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-7204 2014-01-21 17:06 2013-12-23 Show GitHub Exploit DB Packet Storm
226304 4.3 警告 Rick Mead - WordPress 用 Media Library Categories プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6630 2014-01-21 17:04 2012-05-15 Show GitHub Exploit DB Packet Storm
226305 6.8 警告 XYZScripts - WordPress 用 Newsletter Manager プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-6629 2014-01-21 17:03 2012-05-15 Show GitHub Exploit DB Packet Storm
226306 4.3 警告 XYZScripts - WordPress 用 Newsletter Manager プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6628 2014-01-21 17:03 2012-04-20 Show GitHub Exploit DB Packet Storm
226307 4.3 警告 XYZScripts - WordPress 用 Newsletter Manager プラグインの admin/test_mail.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6627 2014-01-21 17:02 2012-05-15 Show GitHub Exploit DB Packet Storm
226308 4.3 警告 VastHTML - WordPress 用 ForumPress WP Forum Server プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6623 2014-01-21 17:01 2012-07-14 Show GitHub Exploit DB Packet Storm
226309 4.3 警告 VastHTML - WordPress 用 ForumPress WP Forum Server プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-6622 2014-01-21 17:01 2012-04-18 Show GitHub Exploit DB Packet Storm
226310 7.5 危険 VastHTML - WordPress 用 ForumPress WP Forum Server プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-6625 2014-01-21 16:09 2012-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208901 7.8 HIGH
Local
google
fedoraproject
opensuse
chrome
fedora
leap
backports_sle
Inappropriate implementation in installer in Google Chrome on OS X prior to 83.0.4103.61 allowed a local attacker to perform privilege escalation via a crafted file. CWE-59
Link Following
CVE-2020-6477 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208902 6.5 MEDIUM
Network
google
opensuse
fedoraproject
debian
chrome
leap
backports_sle
fedora
debian_linux
Insufficient policy enforcement in tab strip in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a c… CWE-276
Incorrect Default Permissions 
CVE-2020-6476 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208903 6.5 MEDIUM
Network
google
opensuse
fedoraproject
debian
chrome
leap
backports_sle
fedora
debian_linux
Incorrect implementation in full screen in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted HTML page. NVD-CWE-noinfo
CVE-2020-6475 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208904 8.8 HIGH
Network
google
opensuse
fedoraproject
debian
chrome
leap
backports_sle
fedora
debian_linux
Use after free in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free
CVE-2020-6474 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208905 6.5 MEDIUM
Network
google
fedoraproject
opensuse
debian
chrome
fedora
leap
backports_sle
debian_linux
Insufficient policy enforcement in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. CWE-203
 Information Exposure Through Discrepancy
CVE-2020-6473 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208906 6.5 MEDIUM
Network
google
fedoraproject
opensuse
debian
chrome
fedora
leap
backports_sle
debian_linux
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive inf… NVD-CWE-noinfo
CVE-2020-6472 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208907 9.6 CRITICAL
Network
google
fedoraproject
opensuse
debian
chrome
fedora
leap
backports_sle
debian_linux
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox es… CWE-276
Incorrect Default Permissions 
CVE-2020-6471 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208908 6.1 MEDIUM
Network
google
fedoraproject
opensuse
debian
chrome
fedora
leap
backports_sle
debian_linux
Insufficient validation of untrusted input in clipboard in Google Chrome prior to 83.0.4103.61 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via crafted clipboard contents. CWE-79
Cross-site Scripting
CVE-2020-6470 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208909 9.6 CRITICAL
Network
google
debian
opensuse
fedoraproject
chrome
debian_linux
leap
fedora
backports_sle
Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox es… CWE-276
Incorrect Default Permissions 
CVE-2020-6469 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
208910 8.8 HIGH
Network
google
fedoraproject
debian
opensuse
chrome
fedora
debian_linux
leap
backports_sle
Type confusion in V8 in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-843
 Out-of-bounds Write
Type Confusion
CVE-2020-6468 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm