Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226621	4	警告	Rave	-	Apache Rave の User RPC API における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-1814	2013-03-21 16:44	2013-03-14	Show	GitHub Exploit DB Packet Storm

226622	4	警告	Piwigo	-	Piwigo の install.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1469	2013-03-21 16:41	2013-02-19	Show	GitHub Exploit DB Packet Storm

226623	5	警告	Fedora Project	-	389 Directory Server におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-189 数値処理の問題	CVE-2013-0312	2013-03-21 16:39	2013-03-13	Show	GitHub Exploit DB Packet Storm

226624	4	警告	レッドハット	-	Red Hat Enterprise Virtualization Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0168	2013-03-21 16:29	2013-02-4	Show	GitHub Exploit DB Packet Storm

226625	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-6115	2013-03-21 16:28	2013-02-4	Show	GitHub Exploit DB Packet Storm

226626	6.9	警告	レッドハット	-	自動バグ報告ツール (ABRT) における権限を取得される脆弱性	CWE-264 CWE-362	CVE-2012-5660	2013-03-21 16:27	2013-01-31	Show	GitHub Exploit DB Packet Storm

226627	3.7	注意	レッドハット	-	自動バグ報告ツール (ABRT) における任意の Python モジュールをロードおよび実行される脆弱性	CWE-Other その他	CVE-2012-5659	2013-03-21 16:26	2013-01-31	Show	GitHub Exploit DB Packet Storm

226628	6.8	警告	Apache Software Foundation	-	Apache Qpid のデフォルト設定における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2012-4446	2013-03-21 15:42	2013-03-6	Show	GitHub Exploit DB Packet Storm

226629	5	警告	Apache Software Foundation	-	Apache Qpid の AMQP タイプデコーダにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2012-4458	2013-03-21 15:41	2013-03-5	Show	GitHub Exploit DB Packet Storm

226630	5	警告	Apache Software Foundation	-	Apache Qpid の qpid::framing::Buffer::checkAvailable 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-4459	2013-03-21 15:39	2013-03-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209141	7.5	HIGH Network	jetbrains	toolbox	JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler.	NVD-CWE-noinfo	CVE-2020-25013	2024-11-21 14:16	2020-11-17	Show	GitHub Exploit DB Packet Storm

209142	8.8	HIGH Network	fruitywifi_project	fruitywifi	A remote code execution vulnerability is identified in FruityWifi through 2.4. Due to improperly escaped shell metacharacters obtained from the POST request at the page_config_adv.php page, it is pos…	CWE-78 OS Command	CVE-2020-24849	2024-11-21 14:16	2020-11-6	Show	GitHub Exploit DB Packet Storm

209143	9.8	CRITICAL Network	osticket	osticket	SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-24881	2024-11-21 14:16	2020-11-3	Show	GitHub Exploit DB Packet Storm

209144	7.5	HIGH Network	qsc	q-sys_core_manager	An issue was discovered in QSC Q-SYS Core Manager 8.2.1. By utilizing the TFTP service running on UDP port 69, a remote attacker can perform a directory traversal and obtain operating system files vi…	CWE-22 Path Traversal	CVE-2020-24990	2024-11-21 14:16	2020-10-29	Show	GitHub Exploit DB Packet Storm

209145	6.5	MEDIUM Network	fireeye	email_malware_protection_system	eMPS prior to eMPS 9.0 FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the sort, sort_by, search{URL], or search[attachment] parameter to the email sear…	CWE-89 SQL Injection	CVE-2020-25034	2024-11-21 14:16	2020-10-27	Show	GitHub Exploit DB Packet Storm

209146	7.8	HIGH Local	fruitywifi_project	fruitywifi	FruityWifi through 2.4 has an unsafe Sudo configuration [(ALL : ALL) NOPASSWD: ALL]. This allows an attacker to perform a system-level (root) local privilege escalation, allowing an attacker to gain …	CWE-287 CWE-269 Improper Authentication Improper Privilege Management	CVE-2020-24848	2024-11-21 14:16	2020-10-24	Show	GitHub Exploit DB Packet Storm

209147	4.3	MEDIUM Network	fruitywifi_project	fruitywifi	A Cross-Site Request Forgery (CSRF) vulnerability is identified in FruityWifi through 2.4. Due to a lack of CSRF protection in page_config_adv.php, an unauthenticated attacker can lure the victim to …	CWE-352 Origin Validation Error	CVE-2020-24847	2024-11-21 14:16	2020-10-24	Show	GitHub Exploit DB Packet Storm

209148	7.5	HIGH Network	mind	imind_server	InterMind iMind Server through 3.13.65 allows remote unauthenticated attackers to read the self-diagnostic archive via a direct api/rs/monitoring/rs/api/system/dump-diagnostic-info?server=127.0.0.1 r…	CWE-425 Direct Request ('Forced Browsing')	CVE-2020-24765	2024-11-21 14:16	2020-10-21	Show	GitHub Exploit DB Packet Storm

209149	7.8	HIGH Local	socket.io-file_project	socket.io-file	The socket.io-file package through 2.0.31 for Node.js relies on client-side validation of file types, which allows remote attackers to execute arbitrary code by uploading an executable file via a mod…	CWE-20 Improper Input Validation	CVE-2020-24807	2024-11-21 14:16	2020-10-7	Show	GitHub Exploit DB Packet Storm

209150	7.5	HIGH Network	envoyproxy	envoy	Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization.	NVD-CWE-noinfo	CVE-2020-25018	2024-11-21 14:16	2020-10-2	Show	GitHub Exploit DB Packet Storm