Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226681	7.5	危険	Novell	-	Novell ZENworks Mobile Management の DUSAP.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1082	2013-04-2 16:40	2013-03-29	Show	GitHub Exploit DB Packet Storm

226682	5	警告	アップル	-	Apple iOS および Apple TV における ASLR 保護メカニズムを回避される脆弱性	CWE-200 情報漏えい	CVE-2012-3749	2013-04-2 16:39	2012-11-3	Show	GitHub Exploit DB Packet Storm

226683	5.8	警告	アップル jabberd 2.x project	-	jabberd2 の s2s/out.c におけるドメインになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-3525	2013-04-2 16:38	2012-08-25	Show	GitHub Exploit DB Packet Storm

226684	5	警告	PostgreSQL.org アップル	-	PostgreSQL のコアサーバコンポーネントにおける任意のファイルの存在を特定される脆弱性	CWE-20 不適切な入力確認	CVE-2012-3489	2013-04-2 16:36	2012-08-17	Show	GitHub Exploit DB Packet Storm

226685	6.8	警告	Novell	-	Novell ZENworks Configuration Management の AdminStudio におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-1079	2013-04-2 16:35	2013-02-21	Show	GitHub Exploit DB Packet Storm

226686	5.8	警告	PostgreSQL.org アップル	-	PostgreSQL の contrib/xml2 におけるデータを改ざんされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3488	2013-04-2 16:34	2012-08-17	Show	GitHub Exploit DB Packet Storm

226687	3.5	注意	Novell	-	Novell Sentinel Log Manager におけるデータ保持ポリシーを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6534	2013-04-2 16:34	2012-09-21	Show	GitHub Exploit DB Packet Storm

226688	6.8	警告	IBM	-	IBM Security AppScan Enterprise および IBM Rational Policy Tester におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0532	2013-04-2 16:32	2013-03-25	Show	GitHub Exploit DB Packet Storm

226689	7.2	危険	IBM	-	IBM Security AppScan Enterprise および Rational Policy Tester における権限を取得される脆弱性	CWE-DesignError	CVE-2013-0513	2013-04-2 15:58	2013-03-25	Show	GitHub Exploit DB Packet Storm

226690	4.3	警告	IBM	-	IBM Security AppScan Enterprise および IBM Rational Policy Tester におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0512	2013-04-2 15:16	2013-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224941	8.8	HIGH Network	cpanel	cpanel	cPanel before 82.0.18 allows authentication bypass because webmail usernames are processed inconsistently (SEC-499).	NVD-CWE-noinfo	CVE-2019-20490	2024-11-21 13:38	2020-03-18	Show	GitHub Exploit DB Packet Storm

224942	8.8	HIGH Network	pydio	pydio	A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basi…	CWE-502 Deserialization of Untrusted Data	CVE-2019-20453	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224943	8.8	HIGH Network	pydio	pydio	A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/core.access/src/RecycleBinManager.php. An authenticated user wi…	CWE-502 Deserialization of Untrusted Data	CVE-2019-20452	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224944	4.3	MEDIUM Network	atlassian	jira_server jira_data_center	The ConfigureBambooRelease resource in Jira Software and Jira Software Data Center before version 8.6.1 allows authenticated remote attackers to view release version information in projects that they…	CWE-862 Missing Authorization	CVE-2019-20407	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224945	4.9	MEDIUM Network	atlassian	application_links	The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 …	CWE-306 Missing Authentication for Critical Function	CVE-2019-20105	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224946	7.8	HIGH Local	gnome linuxmint debian	gthumb pix debian_linux	A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers…	CWE-787 Out-of-bounds Write	CVE-2019-20326	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224947	7.5	HIGH Network	sync	oxygen_xml_editor oxygen_xml_author oxygen_xml_developer	Oxygen XML Editor 21.1.1 allows XXE to read any file.	CWE-611 XXE	CVE-2019-20191	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224948	5.4	MEDIUM Network	cpanel	cpanel	cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508).	NVD-CWE-noinfo	CVE-2019-20491	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

224949	9.8	CRITICAL Network	quest	kace_systems_management	service/krashrpt.php in Quest KACE K1000 Systems Management Appliance before 6.4 SP3 (6.4.120822) allows a remote attacker to execute code via shell metacharacters in the kuid parameter.	CWE-78 OS Command	CVE-2019-20504	2024-11-21 13:38	2020-03-9	Show	GitHub Exploit DB Packet Storm

224950	6.5	MEDIUM Network	usrsctp_project debian canonical	usrsctp debian_linux ubuntu_linux	usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.	CWE-125 Out-of-bounds Read	CVE-2019-20503	2024-11-21 13:38	2020-03-7	Show	GitHub Exploit DB Packet Storm