Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226741	2.1	注意	Boxes project	-	Drupal 用 Boxes モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0259	2013-04-1 14:11	2013-01-23	Show	GitHub Exploit DB Packet Storm

226742	6.8	警告	Attiks	-	Drupal 用 Google Authenticator login モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-0258	2013-04-1 14:08	2013-01-29	Show	GitHub Exploit DB Packet Storm

226743	5	警告	David Alkire	-	Drupal 用 email2image モジュールにおけるユーザの電子メール情報のイメージ画像を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0257	2013-04-1 14:06	2013-01-30	Show	GitHub Exploit DB Packet Storm

226744	5	警告	Bart Feenstra	-	Drupal 用 Payment モジュールにおける任意の決済情報を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0182	2013-04-1 14:03	2013-01-9	Show	GitHub Exploit DB Packet Storm

226745	2.6	注意	Thomas Seidl	-	Drupal 用 Search API モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0181	2013-04-1 13:46	2013-01-9	Show	GitHub Exploit DB Packet Storm

226746	9.3	危険	DELL EMC (旧 EMC Corporation)	-	EMC Smarts Network Configuration Manager における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2013-0935	2013-03-29 16:11	2013-03-28	Show	GitHub Exploit DB Packet Storm

226747	7.5	危険	Google	-	Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0925	2013-03-29 16:10	2013-03-26	Show	GitHub Exploit DB Packet Storm

226748	7.5	危険	Google	-	Google Chrome の拡張機能における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0924	2013-03-29 16:08	2013-03-26	Show	GitHub Exploit DB Packet Storm

226749	5	警告	Google	-	Google Chrome の USB Apps API におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-119 バッファエラー	CVE-2013-0923	2013-03-29 16:05	2013-03-26	Show	GitHub Exploit DB Packet Storm

226750	7.5	危険	Google	-	Google Chrome における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0922	2013-03-29 16:04	2013-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202611	5.3	MEDIUM Network	php fedoraproject debian opensuse canonical netapp tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with pref…	CWE-565 Reliance on Cookies without Validation and Integrity Checking	CVE-2020-7070	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

202612	6.5	MEDIUM Network	php fedoraproject debian opensuse canonical netapp oracle tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap communications_diameter_signaling_router tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when AES-CCM mode is used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV is actually use…	CWE-326 Inadequate Encryption Strength	CVE-2020-7069	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

202613	7.8	HIGH Local	eaton	9000x_programming_and_configuration_software	A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLL…	CWE-427 CWE-426 Uncontrolled Search Path Element Untrusted Search Path	CVE-2020-6654	2024-11-21 14:36	2020-10-1	Show	GitHub Exploit DB Packet Storm

202614	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7122	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

202615	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7121	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

202616	7.4	HIGH Network	bosch	smart_home	Improper certificate validation for certain connections in the Bosch Smart Home System App for iOS prior to version 9.17.1 potentially allows to intercept video contents by performing a man-in-the-mi…	CWE-295 Improper Certificate Validation	CVE-2020-6781	2024-11-21 14:36	2020-09-17	Show	GitHub Exploit DB Packet Storm

202617	4.3	MEDIUM Network	mcafee	email_gateway	Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricte…	CWE-22 Path Traversal	CVE-2020-7268	2024-11-21 14:36	2020-09-16	Show	GitHub Exploit DB Packet Storm

202618	3.6	LOW Local	php debian tenable	php debian_linux tenable.sc	In PHP versions 7.2.x below 7.2.33, 7.3.x below 7.3.21 and 7.4.x below 7.4.9, while processing PHAR files using phar extension, phar_parse_zipfile could be tricked into accessing freed memory, which …	CWE-416 Use After Free	CVE-2020-7068	2024-11-21 14:36	2020-09-10	Show	GitHub Exploit DB Packet Storm

202619	4.9	MEDIUM Network	arubanetworks	analytics_and_location_engine	A vulnerability exists in the Aruba Analytics and Location Engine (ALE) web management interface 2.1.0.2 and earlier firmware that allows an already authenticated administrative user to arbitrarily m…	NVD-CWE-noinfo	CVE-2020-7119	2024-11-21 14:36	2020-09-4	Show	GitHub Exploit DB Packet Storm

202620	9.1	CRITICAL Network	zte	zxiptv_firmware	A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration…	CWE-327 CWE-522 Use of a Broken or Risky Cryptographic Algorithm Insufficiently Protected Credentials	CVE-2020-6874	2024-11-21 14:36	2020-09-2	Show	GitHub Exploit DB Packet Storm