Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226321	7.8	危険	Bitcoin Project	-	bitcoind および Bitcoin-Qt のアラート機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4684	2013-03-19 19:13	2013-03-1	Show	GitHub Exploit DB Packet Storm

226322	7.5	危険	Novell	-	Novell ZENworks Mobile Management の MDM.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1081	2013-03-19 19:12	2013-03-11	Show	GitHub Exploit DB Packet Storm

226323	6.1	警告	エマソン	-	複数の Emerson DeltaV 製品におけるサービス運用妨害 (デバイス再起動) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4703	2013-03-19 19:08	2013-03-6	Show	GitHub Exploit DB Packet Storm

226324	7.8	危険	Schneider Electric アドバンテック株式会社	-	Indusoft Studio および Advantech Studio における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1627	2013-03-19 19:03	2013-03-8	Show	GitHub Exploit DB Packet Storm

226325	10	危険	360 Systems	-	360 Systems の Maxx および Image Server における任意のコードを実行される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-4702	2013-03-19 19:00	2013-03-8	Show	GitHub Exploit DB Packet Storm

226326	7.2	危険	GNOME Project	-	gnome-screensaver のデフォルト設定におけるスクリーンロックが回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1050	2013-03-19 18:57	2013-03-8	Show	GitHub Exploit DB Packet Storm

226327	2.1	注意	OpenStack	-	OpenStack PackStack の puppetlabs-cinder における OpenStack の管理者パスワードを読み取られる脆弱性	CWE-362 競合状態	CVE-2013-0266	2013-03-19 18:49	2013-03-5	Show	GitHub Exploit DB Packet Storm

226328	3.5	注意	ヒューレット・パッカード	-	HP Intelligent Management Center および Intelligent Management Center for Automated Network Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5200	2013-03-19 18:48	2013-03-7	Show	GitHub Exploit DB Packet Storm

226329	10	危険	ヒューレット・パッカード	-	HP Intelligent Management Center および Intelligent Management Center for Automated Network Manager における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-5201	2013-03-19 18:47	2013-03-7	Show	GitHub Exploit DB Packet Storm

226330	7.5	危険	ヒューレット・パッカード	-	HP Intelligent Management Center および Intelligent Management Center for Automated Network Manager における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-5202	2013-03-19 18:45	2013-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222291	7.5	HIGH Network	python opensuse debian fedoraproject canonical netapp oracle	python leap debian_linux fedora ubuntu_linux active_iq_unified_manager cloud_volumes_ontap_mediator zfs_storage_appliance_kit	In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-20907	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222292	6.1	MEDIUM Network	atlassian	jira jira_server	The login.jsp resource in Jira before version 8.5.2, and from version 8.6.0 before version 8.6.1 allows remote attackers to redirect users to a different website which they may use as part of perform…	CWE-601 Open Redirect	CVE-2019-20901	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222293	4.8	MEDIUM Network	atlassian	jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the Add Field module. The af…	CWE-79 Cross-site Scripting	CVE-2019-20900	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222294	5.3	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The Gadget API in Atlassian Jira Server and Data Center in affected versions allows remote attackers to make Jira unresponsive via repeated requests to a certain endpoint in the Gadget API. The affec…	NVD-CWE-noinfo	CVE-2019-20899	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222295	7.5	HIGH Network	atlassian	jira_software_data_center jira	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to access sensitive information without being authenticated in the Global permissions screen. The affected versions a…	NVD-CWE-noinfo	CVE-2019-20898	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222296	6.5	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The avatar upload feature in affected versions of Atlassian Jira Server and Data Center allows remote attackers to achieve Denial of Service via a crafted PNG file. The affected versions are before v…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-20897	2024-11-21 13:39	2020-07-13	Show	GitHub Exploit DB Packet Storm

222297	9.8	CRITICAL Network	webchess_project	webchess	WebChess 1.0 allows SQL injection via the messageFrom, gameID, opponent, messageID, or to parameter.	CWE-89 SQL Injection	CVE-2019-20896	2024-11-21 13:39	2020-07-8	Show	GitHub Exploit DB Packet Storm

222298	7.5	HIGH Network	traefik	traefik	Traefik 2.x, in certain configurations, allows HTTPS sessions to proceed without mutual TLS verification in a situation where ERR_BAD_SSL_CLIENT_AUTH_CERT should have occurred.	CWE-295 Improper Certificate Validation	CVE-2019-20894	2024-11-21 13:39	2020-07-3	Show	GitHub Exploit DB Packet Storm

222299	9.8	CRITICAL Network	activision	call_of_duty_modern_warfare_2	An issue was discovered in Activision Infinity Ward Call of Duty Modern Warfare 2 through 2019-12-11. PartyHost_HandleJoinPartyRequest has a buffer overflow vulnerability and can be exploited by usin…	CWE-120 Classic Buffer Overflow	CVE-2019-20893	2024-11-21 13:39	2020-06-30	Show	GitHub Exploit DB Packet Storm

222300	6.5	MEDIUM Network	net-snmp oracle	net-snmp zfs_storage_appliance_kit	net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStateReference in snmplib/snmpusm.c via an SNMPv3 GetBulk request. NOTE: this affects net-snmp packages shipped to end users by multiple Li…	CWE-415 Double Free	CVE-2019-20892	2024-11-21 13:39	2020-06-25	Show	GitHub Exploit DB Packet Storm