Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226611	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1277	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226612	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1276	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226613	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1275	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226614	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1274	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226615	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1272	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226616	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1273	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226617	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1271	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226618	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1270	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226619	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1269	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

226620	4.9	警告	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性	CWE-362 競合状態	CVE-2013-1268	2013-02-14 17:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209301	6.5	MEDIUM Network	opms_project	opms	A cross-site request forgery (CSRF) in OPMS v1.3 and below allows attackers to arbitrarily add a user account via /user/add.	CWE-352 Origin Validation Error	CVE-2020-20595	2024-11-21 14:12	2021-12-23	Show	GitHub Exploit DB Packet Storm

209302	8.0	HIGH Network	rockoa	rockoa	A cross-site request forgery (CSRF) in Rockoa v1.9.8 allows an authenticated attacker to arbitrarily add an administrator account.	CWE-352 Origin Validation Error	CVE-2020-20593	2024-11-21 14:12	2021-12-23	Show	GitHub Exploit DB Packet Storm

209303	6.1	MEDIUM Network	s-cms	s-cms	S-CMS Government Station Building System v5.0 contains a cross-site scripting (XSS) vulnerability in /function/booksave.php.	CWE-79 Cross-site Scripting	CVE-2020-20426	2024-11-21 14:12	2021-12-23	Show	GitHub Exploit DB Packet Storm

209304	6.1	MEDIUM Network	s-cms	s-cms	S-CMS Government Station Building System v5.0 contains a cross-site scripting (XSS) vulnerability in the search function.	CWE-79 Cross-site Scripting	CVE-2020-20425	2024-11-21 14:12	2021-12-23	Show	GitHub Exploit DB Packet Storm

209305	6.1	MEDIUM Network	ruijie	rg-uac_6000-e50_firmware	Ruijie RG-UAC 6000-E50 commit 9071227 was discovered to contain a cross-site scripting (XSS) vulnerability via the rule_name parameter. This vulnerability allows attackers to execute arbitrary web sc…	CWE-79 Cross-site Scripting	CVE-2020-21639	2024-11-21 14:12	2021-11-17	Show	GitHub Exploit DB Packet Storm

209306	7.5	HIGH Network	ruijie	rg-uac_firmware	Ruijie RG-UAC commit 9071227 was discovered to contain a vulnerability in the component /current_action.php?action=reboot, which allows attackers to cause a denial of service (DoS) via unspecified ve…	NVD-CWE-noinfo	CVE-2020-21627	2024-11-21 14:12	2021-11-17	Show	GitHub Exploit DB Packet Storm

209307	8.8	HIGH Network	idreamsoft	icms	iCMS v7.0.15 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admincp.php?app=members&do=add.	CWE-352 Origin Validation Error	CVE-2020-21141	2024-11-21 14:12	2021-11-13	Show	GitHub Exploit DB Packet Storm

209308	6.5	MEDIUM Network	ec_cloud_e-commerce_system_project	ec_cloud_e-commerce_system	EC Cloud E-Commerce System v1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add admin accounts via /admin.html?do=user&act=add.	CWE-352 Origin Validation Error	CVE-2020-21139	2024-11-21 14:12	2021-11-5	Show	GitHub Exploit DB Packet Storm

209309	9.6	CRITICAL Network	wdja	wdja_cms	Cross Site Scripting (XSS) vulnerability in shadoweb wdja v1.5.1, allows attackers to execute arbitrary code and gain escalated privileges, via the backurl parameter to /php/passport/index.php.	CWE-79 Cross-site Scripting	CVE-2020-20982	2024-11-21 14:12	2021-11-4	Show	GitHub Exploit DB Packet Storm

209310	7.5	HIGH Network	c-http_project	c-http	Buffer overflow vulnerability in YotsuyaNight c-http v0.1.0, allows attackers to cause a denial of service via a long url request which is passed to the delimitedread function.	CWE-120 Classic Buffer Overflow	CVE-2020-21574	2024-11-21 14:12	2021-11-3	Show	GitHub Exploit DB Packet Storm