Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227461	2.9	注意	Wireshark	-	Wireshark の NTLMSSP 解析機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-1590	2013-04-9 16:33	2013-01-29	Show	GitHub Exploit DB Packet Storm

227462	2.9	注意	Wireshark	-	Wireshark の R3 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1575	2013-04-9 16:18	2013-01-29	Show	GitHub Exploit DB Packet Storm

227463	5.8	警告	Novell	-	Mac OS X 上で稼働する Novell OES 用 Novell Kanaka コンポーネントにおけるサーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2013-2770	2013-04-9 16:09	2013-03-15	Show	GitHub Exploit DB Packet Storm

227464	2.9	注意	Wireshark	-	Wireshark の Bluetooth HCI 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1574	2013-04-9 16:09	2013-01-29	Show	GitHub Exploit DB Packet Storm

227465	3.5	注意	IBM	-	IBM Scale Out Network Attached Storage における重要なサーバ情報を取得される脆弱性	CWE-255 CWE-264	CVE-2012-0706	2013-04-9 16:08	2013-03-28	Show	GitHub Exploit DB Packet Storm

227466	7.2	危険	Linux	-	Linux Kernel の clone システムコールの実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1858	2013-04-9 16:07	2013-03-14	Show	GitHub Exploit DB Packet Storm

227467	7.1	危険	Cogent Real-Time Systems Inc.	-	複数の Cogent Real-Time Systems 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-16 環境設定	CVE-2013-0683	2013-04-9 16:05	2013-04-5	Show	GitHub Exploit DB Packet Storm

227468	7.5	危険	Cogent Real-Time Systems Inc.	-	複数の Cogent Real-Time Systems 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-0682	2013-04-9 16:03	2013-04-5	Show	GitHub Exploit DB Packet Storm

227469	5	警告	Cogent Real-Time Systems Inc.	-	複数の Cogent DataHub 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0681	2013-04-9 16:02	2013-04-5	Show	GitHub Exploit DB Packet Storm

227470	2.9	注意	Wireshark	-	Wireshark の CSN.1 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1573	2013-04-9 15:59	2013-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209411	5.4	MEDIUM Network	online_examination_system_project	online_examination_system	Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php.	CWE-79 Cross-site Scripting	CVE-2020-29259	2024-11-21 14:23	2020-12-10	Show	GitHub Exploit DB Packet Storm

209412	6.1	MEDIUM Network	online_examination_system_project	online_examination_system	Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php.	CWE-79 Cross-site Scripting	CVE-2020-29258	2024-11-21 14:23	2020-12-10	Show	GitHub Exploit DB Packet Storm

209413	6.1	MEDIUM Network	online_examination_system_project	online_examination_system	Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php.	CWE-79 Cross-site Scripting	CVE-2020-29257	2024-11-21 14:23	2020-12-10	Show	GitHub Exploit DB Packet Storm

209414	7.5	HIGH Network	plummac	ik-401_firmware	An improper webserver configuration on Plum IK-401 devices with firmware before 1.02 allows an attacker (with network access to the device) to obtain the configuration file, including hashed credenti…	CWE-306 Missing Authentication for Critical Function	CVE-2020-28946	2024-11-21 14:23	2020-12-9	Show	GitHub Exploit DB Packet Storm

209415	5.5	MEDIUM Local	nlnetlabs debian	unbound name_server_daemon debian_linux	NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs NSD, up to and including version 4.3.3, contain a local vulnerability that would allow for a local symlink attack. When writing …	CWE-59 Link Following	CVE-2020-28935	2024-11-21 14:23	2020-12-8	Show	GitHub Exploit DB Packet Storm

209416	6.1	MEDIUM Network	seeddms	seeddms	Cross-site scripting (XSS) exists in SeedDMS 6.0.13 via the folderid parameter to views/bootstrap/class.DropFolderChooser.php.	CWE-79 Cross-site Scripting	CVE-2020-28727	2024-11-21 14:23	2020-12-7	Show	GitHub Exploit DB Packet Storm

209417	7.8	HIGH Local	kaspersky	anti-ransomware_tool	The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges during installation process.	CWE-427 Uncontrolled Search Path Element	CVE-2020-28950	2024-11-21 14:23	2020-12-5	Show	GitHub Exploit DB Packet Storm

209418	5.5	MEDIUM Local	qemu debian	qemu debian_linux	hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer address.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-28916	2024-11-21 14:23	2020-12-4	Show	GitHub Exploit DB Packet Storm

209419	2.7	LOW Network	lightbend	play_framework	An issue was discovered in Play Framework 2.8.0 through 2.8.4. Carefully crafted JSON payloads sent as a form field lead to Data Amplification. This affects users migrating from a Play version prior …	NVD-CWE-Other	CVE-2020-28923	2024-11-21 14:23	2020-12-4	Show	GitHub Exploit DB Packet Storm

209420	7.2	HIGH Network	openclinic_project	openclinic	OpenClinic version 0.8.2 is affected by a medical/test_new.php insecure file upload vulnerability. This vulnerability allows authenticated users (with substantial privileges) to upload malicious file…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28939	2024-11-21 14:23	2020-12-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed