Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227061	7.6	危険	Foxit Software Inc	-	Foxit Advanced PDF Editor にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0107	2013-02-5 17:34	2013-01-28	Show	GitHub Exploit DB Packet Storm

227062	6.8	警告	サン・マイクロシステムズ日本電気オラクル	-	Oracle Java 7 に脆弱性	CWE-noinfo 情報不足	CVE-2012-4681	2013-02-4 17:51	2012-08-28	Show	GitHub Exploit DB Packet Storm

227063	7.8	危険	MiniUPnP Project	-	MiniUPnP MiniUPnPd の HTTP サービスにおける整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2013-1462	2013-02-4 16:38	2013-01-31	Show	GitHub Exploit DB Packet Storm

227064	7.8	危険	MiniUPnP Project	-	MiniUPnP MiniUPnPd の HTTP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1461	2013-02-4 16:37	2013-01-31	Show	GitHub Exploit DB Packet Storm

227065	10	危険	MiniUPnP Project	-	MiniUPnP MiniUPnPd の HTTP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0230	2013-02-4 16:37	2013-01-31	Show	GitHub Exploit DB Packet Storm

227066	7.8	危険	MiniUPnP Project	-	MiniUPnP MiniUPnPd の SSDP ハンドラにおけるサービス運用妨害 (サービスクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0229	2013-02-4 16:36	2013-01-31	Show	GitHub Exploit DB Packet Storm

227067	7.6	危険	DELL EMC (旧 EMC Corporation)	-	EMC AlphaStor の Drive Control Program におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0930	2013-02-4 16:26	2013-01-31	Show	GitHub Exploit DB Packet Storm

227068	9.3	危険	オラクル	-	Oracle Java SE 7 Update 11 における Java セキュリティサンドボックスを回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-1490	2013-02-4 16:25	2013-01-31	Show	GitHub Exploit DB Packet Storm

227069	4.3	警告	シスコシステムズ	-	Cisco Unified Communications Domain Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1113	2013-02-1 16:13	2013-01-25	Show	GitHub Exploit DB Packet Storm

227070	5	警告	シスコシステムズ	-	Cisco Carrier Routing System におけるサービス運用妨害 (パケットロス) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1112	2013-02-1 16:13	2013-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208761	6.1	MEDIUM Network	dlink	dir-803_firmware dir-816l_firmware dir-645_firmware dir-815_firmware dir-860l_firmware dir-865l_firmware	webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows XSS via the HTTP Referer header. NOTE: This vulnerability only affects products that are no longer supported by…	CWE-79 Cross-site Scripting	CVE-2020-25786	2024-11-21 14:18	2020-09-20	Show	GitHub Exploit DB Packet Storm

208762	5.3	MEDIUM Network	redhat quarkus	resteasy quarkus	A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicatio…	CWE-209 Information Exposure Through an Error Message	CVE-2020-25633	2024-11-21 14:18	2020-09-19	Show	GitHub Exploit DB Packet Storm

208763	7.5	HIGH Network	misp	misp	An issue was discovered in MISP before 2.4.132. It can perform an unwanted action because of a POST operation on a form that is not linked to the login page.	NVD-CWE-noinfo	CVE-2020-25766	2024-11-21 14:18	2020-09-19	Show	GitHub Exploit DB Packet Storm

208764	9.8	CRITICAL Network	cesanta	mongoose	A buffer overflow vulnerability exists in the mg_get_http_header function in Cesanta Mongoose 6.18 due to a lack of bounds checking. A crafted HTTP header can exploit this bug. NOTE: a committer has …	CWE-120 Classic Buffer Overflow	CVE-2020-25756	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208765	8.8	HIGH Network	corephp	pago_commerce	The paGO Commerce plugin 2.5.9.0 for Joomla! allows SQL Injection via the administrator/index.php?option=com_pago&view=comments filter_published parameter.	CWE-89 SQL Injection	CVE-2020-25751	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208766	7.5	HIGH Network	dotplant	dotplant2	An issue was discovered in DotPlant2 before 2020-09-14. In class Pay2PayPayment in payment/Pay2PayPayment.php, there is an XXE vulnerability in the checkResult function. The user input ($_POST['xml']…	CWE-611 XXE	CVE-2020-25750	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208767	8.1	HIGH Network	safervpn	safervpn	SaferVPN before 5.0.3.3 on Windows could allow low-privileged users to create or overwrite arbitrary files, which could cause a denial of service (DoS) condition, because a symlink from %LOCALAPPDATA…	CWE-59 Link Following	CVE-2020-25744	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208768	6.1	MEDIUM Network	webtareas_project	webtareas	webTareas through 2.1 allows XSS in clients/editclient.php, extensions/addextension.php, administration/add_announcement.php, administration/departments.php, administration/locations.php, expenses/cl…	CWE-79 Cross-site Scripting	CVE-2020-25735	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208769	5.3	MEDIUM Network	webtareas_project	webtareas	webTareas through 2.1 allows files/Default/ Directory Listing.	CWE-22 Path Traversal	CVE-2020-25734	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

208770	7.5	HIGH Network	webtareas_project	webtareas	webTareas through 2.1 allows upload of the dangerous .exe and .shtml file types.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-25733	2024-11-21 14:18	2020-09-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed