Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227041 6.8 警告 IBM - IBM TRIRIGA Application Platform におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5950 2013-04-24 13:49 2013-04-8 Show GitHub Exploit DB Packet Storm
227042 4.3 警告 IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5949 2013-04-24 13:47 2013-04-8 Show GitHub Exploit DB Packet Storm
227043 4.3 警告 IBM - IBM TRIRIGA Application Platform におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5948 2013-04-24 13:46 2013-04-8 Show GitHub Exploit DB Packet Storm
227044 5.8 警告 Privoxy Developers - Privoxy におけるプロキシサービスを偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2503 2013-04-24 12:03 2013-03-11 Show GitHub Exploit DB Packet Storm
227045 7.5 危険 FFmpeg - FFmpeg の libavcodec におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2496 2013-04-24 12:02 2013-03-5 Show GitHub Exploit DB Packet Storm
227046 7.5 危険 FFmpeg - FFmpeg の libavformat におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2013-2495 2013-04-24 12:00 2013-03-5 Show GitHub Exploit DB Packet Storm
227047 6.1 警告 Wireshark - Wireshark の FCSP 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2485 2013-04-24 11:52 2013-03-6 Show GitHub Exploit DB Packet Storm
227048 3.3 注意 Wireshark - Wireshark の CIMD 解析機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2484 2013-04-24 11:50 2013-03-6 Show GitHub Exploit DB Packet Storm
227049 3.3 注意 Wireshark - Wireshark の ACN 解析機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2013-2483 2013-04-24 11:48 2013-03-6 Show GitHub Exploit DB Packet Storm
227050 6.1 警告 Wireshark - Wireshark の AMQP 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2482 2013-04-24 11:46 2013-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208451 8.8 HIGH
Network 		nagios fusion
nagios_xi 		Incorrect File Permissions in Nagios XI 5.7.5 and earlier and Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to root. Low-privileged users are able to modify files that are included … CWE-276
Incorrect Default Permissions  		CVE-2020-28906 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208452 8.8 HIGH
Network 		nagios fusion Improper Input Validation in Nagios Fusion 4.1.8 and earlier allows an authenticated attacker to execute remote code via table pagination. CWE-94
Code Injection 		CVE-2020-28905 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208453 9.8 CRITICAL
Network 		nagios fusion Execution with Unnecessary Privileges in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation as nagios via installation of a malicious component containing PHP code. CWE-269
 Improper Privilege Management 		CVE-2020-28904 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208454 6.1 MEDIUM
Network 		nagios fusion Improper input validation in Nagios Fusion 4.1.8 and earlier allows a remote attacker with control over a fused server to inject arbitrary HTML, aka XSS. CWE-79
Cross-site Scripting 		CVE-2020-28903 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208455 9.8 CRITICAL
Network 		nagios fusion Command Injection in Nagios Fusion 4.1.8 and earlier allows Privilege Escalation from apache to root in cmd_subsys.php. CWE-77
Command Injection 		CVE-2020-28902 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208456 9.8 CRITICAL
Network 		nagios fusion Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code Execution as root via vectors related to corrupt component installation in cmd_subsys.php. CWE-77
Command Injection 		CVE-2020-28901 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208457 9.8 CRITICAL
Network 		nagios fusion
nagios_xi 		Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-28900 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
208458 6.1 MEDIUM
Network 		projectworlds travel_management_system XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field CWE-79
Cross-site Scripting 		CVE-2020-29205 2024-11-21 14:23 2021-05-18 Show GitHub Exploit DB Packet Storm
208459 5.4 MEDIUM
Network 		deskpro deskpro Deskpro Cloud Platform and on-premise 2020.2.3.48207 from 2020-07-30 contains a cross-site scripting (XSS) vulnerability that can lead to an account takeover via custom email templates. CWE-79
Cross-site Scripting 		CVE-2020-28722 2024-11-21 14:23 2021-05-13 Show GitHub Exploit DB Packet Storm
208460 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.4 and earlier allows XSS via crafted content to reach an undocumented feature, such as ![](http://onerror=Function.constructor, in a Notes item. CWE-79
Cross-site Scripting 		CVE-2020-28945 2024-11-21 14:23 2021-05-4 Show GitHub Exploit DB Packet Storm