Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227031 6.8 警告 The GIMP Team - GIMP の KiSS CEL ファイルフォーマットプラグインにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3403 2013-03-8 13:45 2012-08-25 Show GitHub Exploit DB Packet Storm
227032 4.3 警告 シスコシステムズ - Cisco Security Monitoring, Analysis and Response System における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1140 2013-03-7 19:17 2013-03-4 Show GitHub Exploit DB Packet Storm
227033 3.5 注意 IBM - IBM TADDM の Data Management Portal Web User Interface におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5942 2013-03-7 19:16 2013-03-1 Show GitHub Exploit DB Packet Storm
227034 3.5 注意 IBM - IBM TADDM の Data Management Portal Web User Interface におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5939 2013-03-7 19:13 2013-03-1 Show GitHub Exploit DB Packet Storm
227035 5.8 警告 IBM - IBM TADDM の SSL 設定におけるサーバを偽装される脆弱性 CWE-16
環境設定 		CVE-2012-5770 2013-03-7 19:12 2013-03-1 Show GitHub Exploit DB Packet Storm
227036 4.3 警告 IBM - IBM WebSphere Commerce におけるサービス運用妨害 (ログイン停止) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-4855 2013-03-7 19:09 2012-10-25 Show GitHub Exploit DB Packet Storm
227037 5 警告 thekelleys - Dnsmasq におけるサービス運用妨害 (トラフィック増幅) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3411 2013-03-7 19:00 2013-03-5 Show GitHub Exploit DB Packet Storm
227038 6.9 警告 GNU Project - GNU Project Debugger における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4355 2013-03-7 18:58 2013-03-5 Show GitHub Exploit DB Packet Storm
227039 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の DirectShow における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-0077 2013-03-7 17:55 2013-02-12 Show GitHub Exploit DB Packet Storm
227040 7.8 危険 マイクロソフト - 複数の Microsoft Windows 製品の TCP/IP の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-0075 2013-03-7 17:53 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
4071 8.8 HIGH
Network 		- - HS Brand Logo Slider 2.1 contains an unrestricted file upload vulnerability that allows authenticated users to bypass client-side file extension validation by uploading arbitrary files. Attackers can… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-37227 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4072 7.8 HIGH
Local 		- - Advanced System Care Service 13.0.0.157 contains an unquoted service path vulnerability in the AdvancedSystemCareService13 service binary path that allows local attackers to escalate privileges. Atta… CWE-428
 Unquoted Search Path or Element 		CVE-2020-37232 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4073 6.4 MEDIUM
Network 		- - Queue Management System 4.0.0 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts through user creation fields. Attackers can ins… CWE-79
Cross-site Scripting 		CVE-2020-37240 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4074 8.2 HIGH
Network 		- - Supsystic Ultimate Maps 1.1.12 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'sidx' GET parame… CWE-89
SQL Injection 		CVE-2020-37242 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4075 8.2 HIGH
Network 		- - Supsystic Pricing Table 1.8.7 contains an SQL injection vulnerability in the 'sidx' GET parameter that allows unauthenticated attackers to execute arbitrary SQL queries through the getListForTbl acti… CWE-89
SQL Injection 		CVE-2020-37243 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4076 8.2 HIGH
Network 		- - Supsystic Membership 1.4.7 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'search' and 'sidx' p… CWE-89
SQL Injection 		CVE-2020-37244 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4077 7.5 HIGH
Network 		- - Supsystic Digital Publications 1.6.9 contains a path traversal vulnerability in the Folder input field that allows attackers to access files outside the web root by injecting directory traversal sequ… CWE-79
Cross-site Scripting 		CVE-2020-37245 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4078 6.2 MEDIUM
Local 		- - Supsystic Backup 2.3.9 contains a local file inclusion vulnerability that allows unauthenticated attackers to read and delete arbitrary files by manipulating the download path parameter. Attackers ca… CWE-98
 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') 		CVE-2020-37246 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4079 7.8 HIGH
Local 		- - Kite 4.2.0.1 U1 contains an unquoted service path vulnerability in the KiteService Windows service that allows local attackers to escalate privileges by exploiting the service binary path. Attackers … CWE-428
 Unquoted Search Path or Element 		CVE-2020-37247 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm
4080 5.3 MEDIUM
Network 		- - MyBB Timeline Plugin 1.0 contains cross-site scripting vulnerabilities that allow attackers to inject malicious scripts through thread titles, post content, and user profile fields like Location and … CWE-79
Cross-site Scripting 		CVE-2021-47934 2026-05-19 02:32 2026-05-17 Show GitHub Exploit DB Packet Storm