Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226791 7.5 危険 Cogent Real-Time Systems Inc. - 複数の Cogent Real-Time Systems 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-0682 2013-04-9 16:03 2013-04-5 Show GitHub Exploit DB Packet Storm
226792 5 警告 Cogent Real-Time Systems Inc. - 複数の Cogent DataHub 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0681 2013-04-9 16:02 2013-04-5 Show GitHub Exploit DB Packet Storm
226793 2.9 注意 Wireshark - Wireshark の CSN.1 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1573 2013-04-9 15:59 2013-01-29 Show GitHub Exploit DB Packet Storm
226794 7.5 危険 Cogent Real-Time Systems Inc. - 複数の Cogent DataHub 製品の Web サーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-0680 2013-04-9 15:59 2013-04-5 Show GitHub Exploit DB Packet Storm
226795 2.9 注意 Wireshark - Wireshark の IEEE 802.3 Slow Protocols 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1572 2013-04-9 15:15 2013-01-29 Show GitHub Exploit DB Packet Storm
226796 4.9 警告 Linux - Linux Kernel 用 Xen におけるサービス運用妨害 (ゲストクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0190 2013-04-8 17:56 2013-01-16 Show GitHub Exploit DB Packet Storm
226797 6.8 警告 アップル
Google		 - 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3971 2013-04-8 16:28 2012-02-8 Show GitHub Exploit DB Packet Storm
226798 7.5 危険 アップル
Google		 - 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3968 2013-04-8 16:26 2012-02-8 Show GitHub Exploit DB Packet Storm
226799 7.5 危険 アップル
Google		 - 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3105 2013-04-8 16:16 2012-05-23 Show GitHub Exploit DB Packet Storm
226800 5 警告 シスコシステムズ - Cisco Hosted Collaboration Solution におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1174 2013-04-8 14:28 2013-04-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208721 7.5 HIGH
Network 		bigbluebutton bigbluebutton The installation procedure in BigBlueButton before 2.2.28 (or earlier) exposes certain network services to external interfaces, and does not automatically set up a firewall configuration to block ext… NVD-CWE-noinfo
CVE-2020-27610 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208722 5.3 MEDIUM
Network 		bigbluebutton bigbluebutton BigBlueButton through 2.2.28 records a video meeting despite the deactivation of video recording in the user interface. This may result in data storage beyond what is authorized for a specific meetin… CWE-863
 Incorrect Authorization 		CVE-2020-27609 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208723 6.1 MEDIUM
Network 		bigbluebutton bigbluebutton In BigBlueButton before 2.2.28 (or earlier), uploaded presentations are sent to clients without a Content-Type header, which allows XSS, as demonstrated by a .png file extension for an HTML document. CWE-79
Cross-site Scripting 		CVE-2020-27608 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208724 6.5 MEDIUM
Network 		bigbluebutton bigbluebutton In BigBlueButton before 2.2.28 (or earlier), the client-side Mute button only signifies that the server should stop accepting audio data from the client. It does not directly configure the client to … NVD-CWE-noinfo
CVE-2020-27607 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208725 5.3 MEDIUM
Network 		bigbluebutton bigbluebutton BigBlueButton before 2.2.28 (or earlier) does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its… NVD-CWE-Other
CVE-2020-27606 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208726 9.8 CRITICAL
Network 		bigbluebutton bigbluebutton BigBlueButton through 2.2.28 uses Ghostscript for processing of uploaded EPS documents, and consequently may be subject to attacks related to a "schwache Sandbox." NVD-CWE-Other
CVE-2020-27605 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208727 6.5 MEDIUM
Network 		bigbluebutton bigbluebutton BigBlueButton before 2.3 does not implement LibreOffice sandboxing. This might make it easier for remote authenticated users to read the API shared secret in the bigbluebutton.properties file. With t… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2020-27604 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208728 7.5 HIGH
Network 		bigbluebutton bigbluebutton BigBlueButton before 2.2.27 has an unsafe JODConverter setting in which LibreOffice document conversions can access external files. NVD-CWE-noinfo
CVE-2020-27603 2024-11-21 14:21 2020-10-22 Show GitHub Exploit DB Packet Storm
208729 7.5 HIGH
Network 		easy-parse_project easy-parse easy-parse v0.1.1 was discovered to contain a XML External Entity Injection (XXE) vulnerability which allows attackers to execute arbitrary code via a crafted XML file. CWE-611
XXE 		CVE-2020-26710 2024-11-21 14:20 2023-06-30 Show GitHub Exploit DB Packet Storm
208730 4.9 MEDIUM
Network 		phpgurukul hospital_management_system A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a special payload in the 'Doctor Specialization… CWE-89
SQL Injection 		CVE-2020-26630 2024-11-21 14:20 2024-01-10 Show GitHub Exploit DB Packet Storm