Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228171	2.6	注意	ヒューレット・パッカード	-	HP ProCurve 1700 シリーズのスイッチにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-5216	2013-06-3 12:01	2013-06-3	Show	GitHub Exploit DB Packet Storm

228172	7.5	危険	psychostats	-	PsychoStats の awards.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3721	2013-06-3 11:27	2013-05-31	Show	GitHub Exploit DB Packet Storm

228173	4.3	警告	Feedweb Research	-	WordPress 用 Feedweb プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3720	2013-06-3 11:26	2013-03-31	Show	GitHub Exploit DB Packet Storm

228174	4.3	警告	algisinfo	-	Joomla! 用の aiContactSafe コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3719	2013-06-3 11:25	2013-04-16	Show	GitHub Exploit DB Packet Storm

228175	5	警告	シスコシステムズ	-	Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1213	2013-05-31 14:32	2013-02-13	Show	GitHub Exploit DB Packet Storm

228176	5	警告	シスコシステムズ	-	Cisco Nexus 1000V 上で稼働する Cisco NX-OS における VEM にアクセスされる脆弱性	CWE-287 不適切な認証	CVE-2013-1211	2013-05-31 14:19	2013-05-28	Show	GitHub Exploit DB Packet Storm

228177	5.4	警告	シスコシステムズ	-	Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-1210	2013-05-31 14:17	2013-05-28	Show	GitHub Exploit DB Packet Storm

228178	5	警告	シスコシステムズ	-	Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるパケットレベルの暗号化および完全性保護を無効にされる脆弱性	CWE-287 不適切な認証	CVE-2013-1209	2013-05-31 14:14	2013-05-28	Show	GitHub Exploit DB Packet Storm

228179	5.8	警告	シスコシステムズ	-	Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるネットワークトラフィックを傍受または変更される脆弱性	CWE-310 暗号の問題	CVE-2013-1208	2013-05-31 14:13	2013-05-28	Show	GitHub Exploit DB Packet Storm

228180	2.6	注意	アドビシステムズ	-	Adobe Reader X における Sandbox 機能が回避される脆弱性	CWE-Other その他	-	2013-05-31 12:04	2013-05-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216941	9.1	CRITICAL Network	bitdefender	update_server	Insufficient validation in the Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools versions prior to 6.6.20.294 allows an unprivileged attacker to bypass the in…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-15297	2024-11-21 14:05	2020-11-9	Show	GitHub Exploit DB Packet Storm

216942	8.8	HIGH Network	auth0	ad\/ldap_connector	ad-ldap-connector's admin panel before version 5.0.13 does not provide csrf protection, which when exploited may result in remote code execution or confidential data loss. CSRF exploits may occur if …	-	CVE-2020-15259	2024-11-21 14:05	2020-11-7	Show	GitHub Exploit DB Packet Storm

216943	8.7	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. Arbitrary JavaScript may be executed by entering a crafted nickname in blog comments. The issue affects the blog comment component…	-	CVE-2020-15276	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216944	7.2	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). Code may be executed by logging in as a system administrator and uploading an executable script file such as a PHP file. The …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-15277	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216945	8.1	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registra…	-	CVE-2020-15273	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216946	7.5	HIGH Network	cogboard	red_discord_bot	Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. This exploit allows Discord users with a high privilege level within the guild to bypass hiera…	-	CVE-2020-15278	2024-11-21 14:05	2020-10-29	Show	GitHub Exploit DB Packet Storm

216947	7.0	HIGH Local	blueman_project debian fedoraproject	blueman debian_linux fedora	Blueman is a GTK+ Bluetooth Manager. In Blueman before 2.1.4, the DhcpClient method of the D-Bus interface to blueman-mechanism is prone to an argument injection vulnerability. The impact highly depe…	CWE-88 Argument Injection	CVE-2020-15238	2024-11-21 14:05	2020-10-28	Show	GitHub Exploit DB Packet Storm

216948	7.2	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.1R9 allows remote authenticated admins to conduct server-side request forg…	CWE-611 XXE	CVE-2020-15352	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm

216949	5.4	MEDIUM Network	requarks	wiki.js	In Wiki.js before version 2.5.162, an XSS payload can be injected in a page title and executed via the search results. While the title is properly escaped in both the navigation links and the actual …	-	CVE-2020-15274	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm

216950	9.6	CRITICAL Network	git-tag-annotation-action_project	git-tag-annotation-action	In the git-tag-annotation-action (open source GitHub Action) before version 1.0.1, an attacker can execute arbitrary (*) shell commands if they can control the value of [the `tag` input] or manage to…	-	CVE-2020-15272	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm