Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227131 3.5 注意 マイクロソフト - Microsoft SharePoint Server 2013 におけるリスト項目の読み取り制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1290 2013-04-16 16:52 2013-04-9 Show GitHub Exploit DB Packet Storm
227132 9.3 危険 マイクロソフト - Microsoft リモートデスクトップ接続クライアントにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-1296 2013-04-16 16:49 2013-04-9 Show GitHub Exploit DB Packet Storm
227133 5 警告 レッドハット - JBoss Enterprise Portal Platform における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0315 2013-04-16 16:28 2013-03-7 Show GitHub Exploit DB Packet Storm
227134 7.5 危険 レッドハット - JBoss Enterprise Portal Platform におけるサイトコンテンツを変更される脆弱性 CWE-287
不適切な認証 		CVE-2013-0314 2013-04-16 16:27 2013-03-7 Show GitHub Exploit DB Packet Storm
227135 6.8 警告 レッドハット - JBoss Enterprise Portal Platform の GateIn Portal コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-3532 2013-04-16 16:20 2012-08-23 Show GitHub Exploit DB Packet Storm
227136 9.3 危険 IBM - IBM Cognos Disclosure Management およびその他の製品における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0501 2013-04-16 16:15 2013-04-5 Show GitHub Exploit DB Packet Storm
227137 9.3 危険 IBM - 複数の IBM 製品における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5937 2013-04-16 15:56 2013-04-10 Show GitHub Exploit DB Packet Storm
227138 5 警告 OpenStack - 複数の OpenStack コンポーネントにおけるアクセスの制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-0282 2013-04-16 15:52 2013-02-20 Show GitHub Exploit DB Packet Storm
227139 5 警告 OpenStack - OpenStack Keystone の Grizzly および Folsom におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-0270 2013-04-16 15:47 2013-04-4 Show GitHub Exploit DB Packet Storm
227140 7.5 危険 ZAPms - ZAPms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-3050 2013-04-16 15:40 2013-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202751 9.8 CRITICAL
Network 		ts-process-promises_project ts-process-promises This affects all versions of package ts-process-promises. The injection point is located in line 45 in main entry of package in lib/process-promises.js. The vulnerability is demonstrated with the fol… CWE-78
OS Command  		CVE-2020-7784 2024-11-21 14:37 2021-01-8 Show GitHub Exploit DB Packet Storm
202752 6.5 MEDIUM
Network 		mcafee network_security_management Cross Site Request Forgery vulnerability in McAfee Network Security Management (NSM) prior to 10.1.7.35 and NSM 9.x prior to 9.2.9.55 may allow an attacker to change the configuration of the Network … CWE-352
 Origin Validation Error 		CVE-2020-7336 2024-11-21 14:37 2021-01-6 Show GitHub Exploit DB Packet Storm
202753 9.8 CRITICAL
Network 		asciitable.js_project asciitable.js The package asciitable.js before 1.0.3 are vulnerable to Prototype Pollution via the main function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7771 2024-11-21 14:37 2021-01-4 Show GitHub Exploit DB Packet Storm
202754 9.8 CRITICAL
Network 		jiransecurity spamsniper Spamsniper 5.0 ~ 5.2.7 contain a stack-based buffer overflow vulnerability caused by improper boundary checks when parsing MAIL FROM command. It leads remote attacker to execute arbitrary code via cr… CWE-787
 Out-of-bounds Write 		CVE-2020-7845 2024-11-21 14:37 2020-12-27 Show GitHub Exploit DB Packet Storm
202755 8.8 HIGH
Network 		onstove stove A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. T… CWE-20
 Improper Input Validation  		CVE-2020-7838 2024-11-21 14:37 2020-12-18 Show GitHub Exploit DB Packet Storm
202756 9.8 CRITICAL
Network 		connection-tester_project connection-tester This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability: CWE-78
OS Command  		CVE-2020-7781 2024-11-21 14:37 2020-12-17 Show GitHub Exploit DB Packet Storm
202757 8.8 HIGH
Network 		polarisoffice polaris_ml_report An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strin… CWE-787
 Out-of-bounds Write 		CVE-2020-7837 2024-11-21 14:37 2020-12-17 Show GitHub Exploit DB Packet Storm
202758 7.5 HIGH
Network 		i18n_project i18n This affects the package i18n before 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs. NVD-CWE-noinfo
CVE-2020-7791 2024-11-21 14:37 2020-12-12 Show GitHub Exploit DB Packet Storm
202759 7.5 HIGH
Network 		ua-parser-js_project
siemens 		ua-parser-js
sinec_ins 		The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info). NVD-CWE-Other
CVE-2020-7793 2024-11-21 14:37 2020-12-11 Show GitHub Exploit DB Packet Storm
202760 7.5 HIGH
Network 		moutjs mout This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn 'mixes objects into the target object, recursively mixing … CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7792 2024-11-21 14:37 2020-12-11 Show GitHub Exploit DB Packet Storm