Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226351 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1309 2013-05-21 16:29 2013-05-14 Show GitHub Exploit DB Packet Storm
226352 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 および 7 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1310 2013-05-21 16:28 2013-05-14 Show GitHub Exploit DB Packet Storm
226353 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1311 2013-05-21 16:27 2013-05-14 Show GitHub Exploit DB Packet Storm
226354 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1312 2013-05-21 16:26 2013-05-14 Show GitHub Exploit DB Packet Storm
226355 5 警告 マイクロソフト - 複数の Microsoft Windows 製品の HTTP.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1305 2013-05-21 16:25 2013-05-14 Show GitHub Exploit DB Packet Storm
226356 6.8 警告 DELL EMC (旧 EMC Corporation) - EMC VNX Control Station および Celerra Control Station における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3270 2013-05-21 16:22 2013-05-20 Show GitHub Exploit DB Packet Storm
226357 7.2 危険 マイクロソフト - 複数の Microsoft Windows 製品のカーネルモードドライバの win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2013-1334 2013-05-21 16:21 2013-05-14 Show GitHub Exploit DB Packet Storm
226358 6.8 警告 Firebird Project - Windows 上で稼働する Firebird におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2492 2013-05-21 16:09 2013-03-6 Show GitHub Exploit DB Packet Storm
226359 5 警告 マイクロソフト - Microsoft .NET Framework の Common Language Runtime における署名された XML ドキュメントを変更される弱性 CWE-20
不適切な入力確認 		CVE-2013-1336 2013-05-21 15:07 2013-05-14 Show GitHub Exploit DB Packet Storm
226360 9.3 危険 マイクロソフト - Microsoft Windows XP の OLE オートメーションにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1313 2013-05-21 14:57 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208961 6.1 MEDIUM
Network 		icewarp mail_server IceWarp 11.4.5.0 allows XSS via the language parameter. CWE-79
Cross-site Scripting 		CVE-2020-27982 2024-11-21 14:22 2020-11-3 Show GitHub Exploit DB Packet Storm
208962 9.8 CRITICAL
Network 		fast-report fastreport An issue was discovered in FastReport before 2020.4.0. It lacks a ScriptSecurity feature and therefore may mishandle (for example) GetType, typeof, TypeOf, DllImport, LoadLibrary, and GetProcAddress. CWE-862
 Missing Authorization 		CVE-2020-27998 2024-11-21 14:22 2020-10-30 Show GitHub Exploit DB Packet Storm
208963 8.8 HIGH
Network 		smartstore smartstorenet An issue was discovered in SmartStoreNET before 4.0.1. It does not properly consider the need for a CustomModelPartAttribute decoration in certain ModelBase.CustomProperties situations. NVD-CWE-noinfo
CVE-2020-27996 2024-11-21 14:22 2020-10-30 Show GitHub Exploit DB Packet Storm
208964 9.8 CRITICAL
Network 		zohocorp manageengine_applications_manager SQL Injection in Zoho ManageEngine Applications Manager 14 before 14560 allows an attacker to execute commands on the server via the MyPage.do template_resid parameter. CWE-89
SQL Injection 		CVE-2020-27995 2024-11-21 14:22 2020-10-30 Show GitHub Exploit DB Packet Storm
208965 5.3 MEDIUM
Network 		hrsale hrsale Hrsale 2.0.0 allows download?type=files&filename=../ directory traversal to read arbitrary files. CWE-22
Path Traversal 		CVE-2020-27993 2024-11-21 14:22 2020-10-30 Show GitHub Exploit DB Packet Storm
208966 7.5 HIGH
Network 		sonarsource sonarqube SonarQube 8.4.2.36762 allows remote attackers to discover cleartext SMTP, SVN, and GitLab credentials via the api/settings/values URI. NOTE: reportedly, the vendor's position for SMTP and SVN is "it … CWE-306
CWE-312
Missing Authentication for Critical Function
 Cleartext Storage of Sensitive Information 		CVE-2020-27986 2024-11-21 14:22 2020-10-29 Show GitHub Exploit DB Packet Storm
208967 5.4 MEDIUM
Network 		genexis platinum-4410_firmware Genexis Platinum-4410 P4410-V2-1.28 devices allow stored XSS in the WLAN SSID parameter. This could allow an attacker to perform malicious actions in which the XSS popup will affect all privileged us… CWE-79
Cross-site Scripting 		CVE-2020-27980 2024-11-21 14:22 2020-10-29 Show GitHub Exploit DB Packet Storm
208968 7.5 HIGH
Network 		shibboleth identity_provider Shibboleth Identify Provider 3.x before 3.4.6 has a denial of service flaw. A remote unauthenticated attacker can cause a login flow to trigger Java heap exhaustion due to the creation of objects in … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-27978 2024-11-21 14:22 2020-10-29 Show GitHub Exploit DB Packet Storm
208969 9.8 CRITICAL
Network 		oscommerce oscommerce osCommerce Phoenix CE before 1.0.5.4 allows OS command injection remotely. Within admin/mail.php, a from POST parameter can be passed to the application. This affects the PHP mail function, and the s… CWE-78
OS Command  		CVE-2020-27976 2024-11-21 14:22 2020-10-29 Show GitHub Exploit DB Packet Storm
208970 8.8 HIGH
Network 		oscommerce oscommerce osCommerce Phoenix CE before 1.0.5.4 allows admin/define_language.php CSRF. CWE-352
 Origin Validation Error 		CVE-2020-27975 2024-11-21 14:22 2020-10-29 Show GitHub Exploit DB Packet Storm