Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226761	7.5	危険	Google	-	Google Chrome の FrameLoader 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0902	2013-03-7 16:04	2013-03-4	Show	GitHub Exploit DB Packet Storm

226762	4.6	警告	Debian	-	Debian GNU/Linux 上で稼働する apache2 パッケージの apache2ctl スクリプトにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1048	2013-03-7 12:45	2013-03-4	Show	GitHub Exploit DB Packet Storm

226763	6.1	警告	シスコシステムズ	-	Cisco Aironet アクセスポイントの HTTP Profiler におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-6026	2013-03-6 14:56	2013-02-28	Show	GitHub Exploit DB Packet Storm

226764	9.3	危険	IBM	-	IBM Cognos Business Intelligence における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-4858	2013-03-6 14:55	2013-02-27	Show	GitHub Exploit DB Packet Storm

226765	5	警告	IBM	-	IBM Cognos Business Intelligence における XPath インジェクション攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4840	2013-03-6 14:50	2013-02-27	Show	GitHub Exploit DB Packet Storm

226766	4	警告	IBM	-	IBM Cognos Business Intelligence における XPath インジェクション攻撃を実行される脆弱性	CWE-200 情報漏えい	CVE-2012-4837	2013-03-6 14:48	2013-02-27	Show	GitHub Exploit DB Packet Storm

226767	3.5	注意	IBM	-	IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4836	2013-03-6 14:41	2013-02-27	Show	GitHub Exploit DB Packet Storm

226768	4.3	警告	IBM	-	IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4835	2013-03-6 14:40	2013-02-27	Show	GitHub Exploit DB Packet Storm

226769	4.3	警告	IBM	-	IBM Cognos Business Intelligence の Query Studio におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2193	2013-03-6 14:37	2013-02-27	Show	GitHub Exploit DB Packet Storm

226770	4.3	警告	IBM	-	IBM Cognos Business Intelligence におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2177	2013-03-6 14:36	2013-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214791	6.1	MEDIUM Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Cross Site Scripting (XSS) vulnerability was found in Codiad v1.7.8 and later. The vulnerability occurs because of improper sanitization of the folder's na…	CWE-79 Cross-site Scripting	CVE-2020-14042	2024-11-21 14:02	2020-08-26	Show	GitHub Exploit DB Packet Storm

214792	7.2	HIGH Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Server-Side Request Forgery (SSRF) vulnerability was found in Codiad v1.7.8 and later. A user with admin privileges could use the plugin install feature to…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-14044	2024-11-21 14:02	2020-08-25	Show	GitHub Exploit DB Packet Storm

214793	8.8	HIGH Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Cross Side Request Forgery (CSRF) vulnerability was found in Codiad v1.7.8 and later. The request to download a plugin from the marketplace is only availab…	CWE-352 Origin Validation Error	CVE-2020-14043	2024-11-21 14:02	2020-08-25	Show	GitHub Exploit DB Packet Storm

214794	6.5	MEDIUM Network	dolibarr	dolibarr	Dolibarr CRM before 11.0.5 allows privilege escalation. This could allow remote authenticated attackers to upload arbitrary files via societe/document.php in which "disabled" is changed to "enabled" …	NVD-CWE-noinfo	CVE-2020-14201	2024-11-21 14:02	2020-08-22	Show	GitHub Exploit DB Packet Storm

214795	7.5	HIGH Network	zulip	zulip_server	Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.	CWE-269 Improper Privilege Management	CVE-2020-14215	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm

214796	5.4	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link.	CWE-269 Improper Privilege Management	CVE-2020-14194	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm

214797	7.5	HIGH Network	apache debian	shiro debian_linux	Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass.	NVD-CWE-noinfo	CVE-2020-13933	2024-11-21 14:02	2020-08-18	Show	GitHub Exploit DB Packet Storm

214798	8.8	HIGH Network	apache	solr	Reported in SOLR-14515 (private) and fixed in SOLR-14561 (public), released in Solr version 8.6.0. The Replication handler (https://lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-co…	CWE-20 Improper Input Validation	CVE-2020-13941	2024-11-21 14:02	2020-08-17	Show	GitHub Exploit DB Packet Storm

214799	4.3	MEDIUM Network	redhat	quay	An information disclosure vulnerability was found in Red Hat Quay in versions before 3.3.1. This flaw allows an attacker who can create a build trigger in a repository, to disclose the names of robot…	NVD-CWE-noinfo	CVE-2020-14313	2024-11-21 14:02	2020-08-11	Show	GitHub Exploit DB Packet Storm

214800	7.1	HIGH Network	redhat	cloudforms_management_engine	Red Hat CloudForms 4.7 and 5 was vulnerable to Server-Side Request Forgery (SSRF) flaw. With the access to add Ansible Tower provider, an attacker could scan and attack systems from the internal netw…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-14296	2024-11-21 14:02	2020-08-11	Show	GitHub Exploit DB Packet Storm