Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226391 10 危険 Novell - Novell Identity Manager の Roles Based Provisioning Module における脆弱性 CWE-noinfo
情報不足 		CVE-2013-1083 2013-04-2 16:40 2013-03-12 Show GitHub Exploit DB Packet Storm
226392 7.5 危険 Novell - Novell ZENworks Mobile Management の DUSAP.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1082 2013-04-2 16:40 2013-03-29 Show GitHub Exploit DB Packet Storm
226393 5 警告 アップル - Apple iOS および Apple TV における ASLR 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-3749 2013-04-2 16:39 2012-11-3 Show GitHub Exploit DB Packet Storm
226394 5.8 警告 アップル
jabberd 2.x project		 - jabberd2 の s2s/out.c におけるドメインになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3525 2013-04-2 16:38 2012-08-25 Show GitHub Exploit DB Packet Storm
226395 5 警告 PostgreSQL.org
アップル		 - PostgreSQL のコアサーバコンポーネントにおける任意のファイルの存在を特定される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3489 2013-04-2 16:36 2012-08-17 Show GitHub Exploit DB Packet Storm
226396 6.8 警告 Novell - Novell ZENworks Configuration Management の AdminStudio におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-1079 2013-04-2 16:35 2013-02-21 Show GitHub Exploit DB Packet Storm
226397 5.8 警告 PostgreSQL.org
アップル		 - PostgreSQL の contrib/xml2 におけるデータを改ざんされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3488 2013-04-2 16:34 2012-08-17 Show GitHub Exploit DB Packet Storm
226398 3.5 注意 Novell - Novell Sentinel Log Manager におけるデータ保持ポリシーを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6534 2013-04-2 16:34 2012-09-21 Show GitHub Exploit DB Packet Storm
226399 6.8 警告 IBM - IBM Security AppScan Enterprise および IBM Rational Policy Tester におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-0532 2013-04-2 16:32 2013-03-25 Show GitHub Exploit DB Packet Storm
226400 7.2 危険 IBM - IBM Security AppScan Enterprise および Rational Policy Tester における権限を取得される脆弱性 CWE-DesignError
CVE-2013-0513 2013-04-2 15:58 2013-03-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209171 8.8 HIGH
Network 		dlink dsr-150_firmware
dsr-150n_firmware
dsr-250_firmware
dsr-250n_firmware
dsr-500_firmware
dsr-500n_firmware
dsr-500ac_firmware
dsr-1000_firmware
dsr-1000n_firmware
dsr-1000ac_… 		An issue was discovered on D-Link DSR-250 3.17 devices. Certain functionality in the Unified Services Router web interface could allow an authenticated attacker to execute arbitrary commands, due to … CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2020-25759 2024-11-21 14:18 2020-12-16 Show GitHub Exploit DB Packet Storm
209172 8.8 HIGH
Network 		dlink dsr-150_firmware
dsr-150n_firmware
dsr-250_firmware
dsr-250n_firmware
dsr-500_firmware
dsr-500n_firmware
dsr-500ac_firmware
dsr-1000_firmware
dsr-1000n_firmware
dsr-1000ac_… 		An issue was discovered on D-Link DSR-250 3.17 devices. Insufficient validation of configuration file checksums could allow a remote, authenticated attacker to inject arbitrary crontab entries into s… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-25758 2024-11-21 14:18 2020-12-16 Show GitHub Exploit DB Packet Storm
209173 8.8 HIGH
Adjacent 		dlink dsr-150_firmware
dsr-150n_firmware
dsr-250_firmware
dsr-250n_firmware
dsr-500_firmware
dsr-500n_firmware
dsr-500ac_firmware
dsr-1000_firmware
dsr-1000n_firmware
dsr-1000ac_… 		A lack of input validation and access controls in Lua CGIs on D-Link DSR VPN routers may result in arbitrary input being passed to system command APIs, resulting in arbitrary command execution with r… CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2020-25757 2024-11-21 14:18 2020-12-16 Show GitHub Exploit DB Packet Storm
209174 7.8 HIGH
Local 		x.org
redhat 		x_server
enterprise_linux 		A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data … - CVE-2020-25712 2024-11-21 14:18 2020-12-16 Show GitHub Exploit DB Packet Storm
209175 6.5 MEDIUM
Network 		microfocus filr Unauthorized disclosure of sensitive information vulnerability in Micro Focus Filr product. Affecting all 3.x and 4.x versions. The vulnerability could be exploited to disclose unauthorized sensitive… NVD-CWE-noinfo
CVE-2020-25838 2024-11-21 14:18 2020-12-11 Show GitHub Exploit DB Packet Storm
209176 8.8 HIGH
Network 		totolink a3002r_firmware
a3002ru-v1_firmware
a3002ru-v2_firmware
a702r-v2_firmware
a702r-v3_firmware
n100re-v3_firmware
n150rt_firmware
n200re-v3_firmware
n200re-v4_firmware
n210re_… 		TOTOLINK A3002RU-V2.0.0 B20190814.1034 allows authenticated remote users to modify the system's 'Run Command'. An attacker can use this functionality to execute arbitrary OS commands on the router. CWE-78
CWE-862
OS Command 
 Missing Authorization 		CVE-2020-25499 2024-11-21 14:18 2020-12-10 Show GitHub Exploit DB Packet Storm
209177 6.1 MEDIUM
Network 		moodle moodle The moodlenetprofile user profile field required extra sanitizing to prevent a stored XSS risk. This affects versions 3.9 to 3.9.1. Fixed in 3.9.2. - CVE-2020-25627 2024-11-21 14:18 2020-12-9 Show GitHub Exploit DB Packet Storm
209178 5.5 MEDIUM
Local 		imagemagick
debian 		imagemagick
debian_linux 		In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), InterpolatePixelChannels(), and InterpolatePixelInfo(), which are all functions in /MagickCore/pixel.c, there were multiple unconstra… - CVE-2020-25676 2024-11-21 14:18 2020-12-9 Show GitHub Exploit DB Packet Storm
209179 3.3 LOW
Local 		imagemagick
debian 		imagemagick
debian_linux 		In the CropImage() and CropImageToTiles() routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer over… - CVE-2020-25675 2024-11-21 14:18 2020-12-9 Show GitHub Exploit DB Packet Storm
209180 5.5 MEDIUM
Local 		imagemagick
debian 		imagemagick
debian_linux 		WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible f… - CVE-2020-25674 2024-11-21 14:18 2020-12-9 Show GitHub Exploit DB Packet Storm