Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	9.3	危険	Schneider Electric	-	Schneider Electric Software Update Utility のクライアントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0655	2013-01-23 16:24	2013-01-9	Show	GitHub Exploit DB Packet Storm

228082	5	警告	サン・マイクロシステムズ	-	Oracle Java SE の Java Runtime Environment における JMX の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-5070	2013-01-23 16:13	2012-10-16	Show	GitHub Exploit DB Packet Storm

228083	7.5	危険	VMware	-	VMware SpringSource Spring Framework における重要な情報を取得される脆弱性	CWE-16 環境設定	CVE-2011-2730	2013-01-23 14:03	2011-09-9	Show	GitHub Exploit DB Packet Storm

228084	5	警告	サン・マイクロシステムズ	-	Oracle Java SE の Java Runtime Environment における Deployment の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2012-5067	2013-01-22 17:36	2012-10-16	Show	GitHub Exploit DB Packet Storm

228085	3.7	注意	libvirt.org	-	libvirt における異なるデバイスを関連づける脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2693	2013-01-22 17:19	2012-06-17	Show	GitHub Exploit DB Packet Storm

228086	5	警告	GNOME Project	-	gdk-pixbuf の io-xbm.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2370	2013-01-22 17:15	2012-04-14	Show	GitHub Exploit DB Packet Storm

228087	7.5	危険	IBM	-	IBM Rational Automation Framework におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4816	2013-01-22 17:12	2012-12-14	Show	GitHub Exploit DB Packet Storm

228088	2.1	注意	Linux	-	Linux Kernel と一緒に配布される hypervkvpd における Netlink 通信を偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2669	2013-01-22 17:11	2012-07-16	Show	GitHub Exploit DB Packet Storm

228089	3.6	注意	X.Org Foundation XFree86 Project	-	X.Org および XFree86 用 xfs フォントサーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2012-1699	2013-01-22 16:45	2012-07-24	Show	GitHub Exploit DB Packet Storm

228090	5	警告	The PHP Group	-	PHP の ext/openssl/openssl.c におけるプロセスメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6113	2013-01-22 16:06	2012-03-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216411	7.2	HIGH Network	quickbox	quickbox	In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user has sudo privileges to execute grep as root without a password, which allows an attacker to obtain s…	CWE-306 CWE-269 Missing Authentication for Critical Function Improper Privilege Management	CVE-2020-13695	2024-11-21 14:01	2020-06-2	Show	GitHub Exploit DB Packet Storm

216412	8.8	HIGH Network	quickbox	quickbox	In QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8, the local www-data user can execute sudo mysql without a password, which means that the www-data user can execute arbitrary …	CWE-78 OS Command	CVE-2020-13694	2024-11-21 14:01	2020-06-2	Show	GitHub Exploit DB Packet Storm

216413	8.8	HIGH Network	quickbox	quickbox	QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8 allows an authenticated remote attacker to execute code on the server via command injection in the servicestart parameter.	CWE-78 OS Command	CVE-2020-13448	2024-11-21 14:01	2020-06-2	Show	GitHub Exploit DB Packet Storm

216414	7.8	HIGH Local	youhua	windows_master	In Windows Master (aka Windows Optimization Master) 7.99.13.604, the driver file (WoptiHWDetect.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact b…	CWE-20 Improper Input Validation	CVE-2020-13634	2024-11-21 14:01	2020-05-30	Show	GitHub Exploit DB Packet Storm

216415	9.8	CRITICAL Network	bbpress	bbpress	An unauthenticated privilege-escalation issue exists in the bbPress plugin before 2.6.5 for WordPress when New User Registration is enabled.	NVD-CWE-noinfo	CVE-2020-13693	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

216416	4.8	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple through 2.2.14 allows XSS via a crafted File Picker profile name.	CWE-79 Cross-site Scripting	CVE-2020-13660	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

216417	7.5	HIGH Network	jerryscript	jerryscript	parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during certain out-of-memory conditions, as demonstrated by a scanner_reverse_info_list NULL pointer dereference and a scanner_scan_all a…	CWE-754 CWE-476 CWE-617 Improper Check for Unusual or Exceptional Conditions NULL Pointer Dereference Reachable Assertion	CVE-2020-13649	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

216418	3.2	LOW Local	qemu debian opensuse canonical	qemu debian_linux leap ubuntu_linux	In QEMU 5.0.0 and earlier, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user.	CWE-125 Out-of-bounds Read	CVE-2020-13362	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

216419	3.9	LOW Local	qemu debian opensuse canonical	qemu debian_linux leap ubuntu_linux	In QEMU 5.0.0 and earlier, es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370_write…	CWE-787 Out-of-bounds Write	CVE-2020-13361	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

216420	6.5	MEDIUM Network	gnome canonical fedoraproject netapp broadcom	balsa glib-networking ubuntu_linux fedora cloud_backup fabric_operating_system	In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server…	CWE-295 Improper Certificate Validation	CVE-2020-13645	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed