Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227171 4.3 警告 fedorahosted.org - cronie におけるファイル記述子が漏えいする脆弱性 CWE-200
情報漏えい 		CVE-2012-6097 2013-04-11 17:35 2013-01-9 Show GitHub Exploit DB Packet Storm
227172 2.1 注意 Gluster, Inc.
レッドハット		 - Red Hat Storage の GlusterFS 機能における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5635 2013-04-11 17:35 2013-03-28 Show GitHub Exploit DB Packet Storm
227173 4 警告 OpenStack
Canonical		 - 複数の OpenStack 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1838 2013-04-11 14:57 2013-03-15 Show GitHub Exploit DB Packet Storm
227174 4.3 警告 フェンリル株式会社 - Sleipnir for Windows におけるアドレスバー偽装の脆弱性 CWE-noinfo
情報不足 		CVE-2013-2303 2013-04-11 12:01 2013-04-11 Show GitHub Exploit DB Packet Storm
227175 7.5 危険 アドビシステムズ - Adobe ColdFusion におけるユーザになりすまされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-1387 2013-04-11 11:57 2013-04-9 Show GitHub Exploit DB Packet Storm
227176 7.5 危険 アドビシステムズ - Adobe ColdFusion における ColdFusion Administrator コンソールへアクセスされる脆弱性 CWE-noinfo
情報不足 		CVE-2013-1388 2013-04-11 11:53 2013-04-9 Show GitHub Exploit DB Packet Storm
227177 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1386 2013-04-11 11:21 2013-04-9 Show GitHub Exploit DB Packet Storm
227178 10 危険 アドビシステムズ - Adobe Shockwave Player における ASLR 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1385 2013-04-11 11:20 2013-04-9 Show GitHub Exploit DB Packet Storm
227179 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1384 2013-04-11 11:20 2013-04-9 Show GitHub Exploit DB Packet Storm
227180 10 危険 アドビシステムズ - Adobe Shockwave Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-1383 2013-04-11 11:19 2013-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208431 5.4 MEDIUM
Network 		sugarcrm sugarcrm SugarCRM v6.5.18 was discovered to contain a cross-site scripting (XSS) vulnerability in the Create Employee module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a… CWE-79
Cross-site Scripting 		CVE-2020-28955 2024-11-21 14:23 2021-10-23 Show GitHub Exploit DB Packet Storm
208432 5.3 MEDIUM
Network 		fortinet fortisandbox An insufficient session expiration vulnerability in FortiSandbox versions 3.2.1 and below may allow an attacker to reuse the unexpired admin user session IDs to gain information about other users con… CWE-613
 Insufficient Session Expiration 		CVE-2020-29012 2024-11-21 14:23 2021-09-8 Show GitHub Exploit DB Packet Storm
208433 6.5 MEDIUM
Network 		seacms seacms Cross Site Request Forgery (CSRF) vulnerability exists in SeaCMS 10.7 in admin_manager.php, which could let a malicious user add an admin account. CWE-352
 Origin Validation Error 		CVE-2020-28846 2024-11-21 14:23 2021-08-18 Show GitHub Exploit DB Packet Storm
208434 8.8 HIGH
Network 		fortinet fortisandbox Instances of SQL Injection vulnerabilities in the checksum search and MTA-quarantine modules of FortiSandbox 3.2.0 through 3.2.2, and 3.1.0 through 3.1.4 may allow an authenticated attacker to execut… CWE-89
SQL Injection 		CVE-2020-29011 2024-11-21 14:23 2021-08-5 Show GitHub Exploit DB Packet Storm
208435 7.8 HIGH
Local 		raonwiz raon_k_editor An issue in RAONWIZ K Editor v2018.0.0.10 allows attackers to perform a DLL hijacking attack when the service or system is restarted. CWE-427
 Uncontrolled Search Path Element 		CVE-2020-29157 2024-11-21 14:23 2021-07-15 Show GitHub Exploit DB Packet Storm
208436 7.5 HIGH
Network 		wayang-cms_project wayang-cms A SQL injection vulnerability in wy_controlls/wy_side_visitor.php of Wayang-CMS v1.0 allows attackers to obtain sensitive database information. CWE-89
SQL Injection 		CVE-2020-29147 2024-11-21 14:23 2021-07-15 Show GitHub Exploit DB Packet Storm
208437 6.1 MEDIUM
Network 		wayang-cms_project wayang-cms A cross site scripting (XSS) vulnerability in index.php of Wayang-CMS v1.0 allows attackers to execute arbitrary web scripts or HTML via a constructed payload created by adding the X-Forwarded-For fi… CWE-79
Cross-site Scripting 		CVE-2020-29146 2024-11-21 14:23 2021-07-15 Show GitHub Exploit DB Packet Storm
208438 5.3 MEDIUM
Network 		fortinet fortisandbox A concurrent execution using shared resource with improper synchronization ('race condition') in the command shell of FortiSandbox before 3.2.2 may allow an authenticated attacker to bring the system… CWE-362
Race Condition 		CVE-2020-29014 2024-11-21 14:23 2021-07-10 Show GitHub Exploit DB Packet Storm
208439 5.4 MEDIUM
Network 		razormist employee_management_system A Cross Site Scripting in SourceCodester Employee Management System 1.0 allows the user to execute alert messages via /Employee Management System/addemp.php on admin account. CWE-79
Cross-site Scripting 		CVE-2020-29215 2024-11-21 14:23 2021-06-16 Show GitHub Exploit DB Packet Storm
208440 9.8 CRITICAL
Network 		alumni_management_system_project alumni_management_system SQL injection vulnerability in SourceCodester Alumni Management System 1.0 allows the user to inject SQL payload to bypass the authentication via admin/login.php. CWE-89
SQL Injection 		CVE-2020-29214 2024-11-21 14:23 2021-06-16 Show GitHub Exploit DB Packet Storm