Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226651	4.3	警告	IBM	-	IBM WebSphere Commerce Enterprise における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0523	2013-06-25 16:11	2013-06-14	Show	GitHub Exploit DB Packet Storm

226652	4.3	警告	IBM	-	IBM Application Manager for Smart Business などの製品で使用される ITM における HTTP リクエストの不特定のリダイレクションを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2961	2013-06-25 16:10	2013-06-17	Show	GitHub Exploit DB Packet Storm

226653	5	警告	IBM	-	IBM Application Manager for Smart Business などの製品で使用される ITM におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2960	2013-06-25 16:08	2013-06-17	Show	GitHub Exploit DB Packet Storm

226654	5	警告	IBM	-	IBM Application Manager for Smart Business などの製品で使用される ITM におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0551	2013-06-25 16:08	2013-06-17	Show	GitHub Exploit DB Packet Storm

226655	4.3	警告	IBM	-	IBM Application Manager for Smart Business などの製品で使用される ITM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0548	2013-06-25 16:07	2013-06-17	Show	GitHub Exploit DB Packet Storm

226656	7.2	危険	IBM	-	IBM Notes の Multi User Profile Cleanup サービスにおける権限を取得される脆弱性(DoS)	CWE-264 認可・権限・アクセス制御	CVE-2013-0536	2013-06-25 16:05	2013-06-12	Show	GitHub Exploit DB Packet Storm

226657	7.1	危険	IBM	-	IBM AIX および VIOS の inet サブシステムの IPv6 の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3035	2013-06-25 15:57	2013-06-4	Show	GitHub Exploit DB Packet Storm

226658	1.9	注意	IBM	-	Lotus Notes クライアントおよび単独で使用される IBM Sametime の Connect クライアントにおける重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-0534	2013-06-25 15:56	2013-05-31	Show	GitHub Exploit DB Packet Storm

226659	5	警告	IBM	-	IBM Sterling Connect:Direct のブラウザにおける Cookie をキャプチャされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0529	2013-06-25 15:48	2013-06-11	Show	GitHub Exploit DB Packet Storm

226660	1.9	注意	IBM	-	IBM Sterling Connect:Direct のブラウザにおける管理者コンソールの重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0527	2013-06-25 15:48	2013-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202631	9.8	CRITICAL Network	phpzag	phpzag	SQL injection with start and length parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8521	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

202632	9.8	CRITICAL Network	phpzag	phpzag	SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8520	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

202633	9.8	CRITICAL Network	phpzag	phpzag	SQL injection with the search parameter in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8519	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

202634	8.8	HIGH Network	ui	unifi_protect_firmware	We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Pr…	CWE-78 OS Command	CVE-2020-8188	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202635	6.5	MEDIUM Network	rubyonrails fedoraproject	rails fedora	A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8185	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202636	4.1	MEDIUM Network	nextcloud	deck	Improper access control in Nextcloud Deck 1.0.0 allowed an attacker to inject tasks into other users decks.	CWE-269 Improper Privilege Management	CVE-2020-8179	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202637	6.1	MEDIUM Network	shopify	koa-shopify-auth	A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.61-v3.1.62 that allows an attacker to inject JS payloads into the `shop` parameter on the `/shopify/auth/enable_cookies` endpoint.	CWE-79 Cross-site Scripting	CVE-2020-8176	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202638	4.3	MEDIUM Network	rubyonrails debian	rails debian_linux	A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an attacker to, given a global CSRF token such as the one present in the authenticity_token meta tag, fo…	CWE-352 Origin Validation Error	CVE-2020-8166	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202639	8.8	HIGH Network	rubyonrails debian	rails debian_linux	The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.	CWE-94 Code Injection	CVE-2020-8163	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

202640	8.6	HIGH Network	rack_project debian canonical	rack debian_linux ubuntu_linux	A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in…	CWE-22 Path Traversal	CVE-2020-8161	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm