Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228261	7.5	危険	Daniel Harrington	-	Ruby 用 nori gem におけるオブジェクトインジェクション攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0285	2013-04-11 19:39	2013-01-14	Show	GitHub Exploit DB Packet Storm

228262	5	警告	New Relic	-	Ruby Agent における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-0284	2013-04-11 19:38	2013-02-13	Show	GitHub Exploit DB Packet Storm

228263	6.8	警告	Michael Bleigh and Intridea, Inc.	-	Ruby 用 omniauth-oauth2 gem におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6134	2013-04-11 19:37	2013-02-25	Show	GitHub Exploit DB Packet Storm

228264	5.8	警告	Apache Software Foundation	-	Apache Maven のデフォルト設定におけるサーバになりすまされる脆弱性	CWE-16 環境設定	CVE-2013-0253	2013-04-11 17:36	2013-04-2	Show	GitHub Exploit DB Packet Storm

228265	4.3	警告	fedorahosted.org	-	cronie におけるファイル記述子が漏えいする脆弱性	CWE-200 情報漏えい	CVE-2012-6097	2013-04-11 17:35	2013-01-9	Show	GitHub Exploit DB Packet Storm

228266	2.1	注意	Gluster, Inc. レッドハット	-	Red Hat Storage の GlusterFS 機能における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5635	2013-04-11 17:35	2013-03-28	Show	GitHub Exploit DB Packet Storm

228267	4	警告	OpenStack Canonical	-	複数の OpenStack 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1838	2013-04-11 14:57	2013-03-15	Show	GitHub Exploit DB Packet Storm

228268	4.3	警告	フェンリル株式会社	-	Sleipnir for Windows におけるアドレスバー偽装の脆弱性	CWE-noinfo 情報不足	CVE-2013-2303	2013-04-11 12:01	2013-04-11	Show	GitHub Exploit DB Packet Storm

228269	7.5	危険	アドビシステムズ	-	Adobe ColdFusion におけるユーザになりすまされる脆弱性	CWE-noinfo 情報不足	CVE-2013-1387	2013-04-11 11:57	2013-04-9	Show	GitHub Exploit DB Packet Storm

228270	7.5	危険	アドビシステムズ	-	Adobe ColdFusion における ColdFusion Administrator コンソールへアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2013-1388	2013-04-11 11:53	2013-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216661	5.4	MEDIUM Network	mm_forum_project	mm_forum	The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2020-15516	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216662	5.4	MEDIUM Network	jh_captcha_project	jh_captcha	The jh_captcha extension through 2.1.3, and 3.x through 3.0.2, for TYPO3 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-15514	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216663	5.3	MEDIUM Network	mittwald	typo3_forum	The typo3_forum extension before 1.2.1 for TYPO3 has Incorrect Access Control.	CWE-863 Incorrect Authorization	CVE-2020-15513	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216664	6.5	MEDIUM Adjacent	nordicsemi	dfu_library android_ble_library	Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-15509	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216665	5.3	MEDIUM Network	venki	supravizio_bpm	A user enumeration vulnerability flaw was found in Venki Supravizio BPM 10.1.2. This issue occurs during password recovery, where a difference in error messages could allow an attacker to determine i…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-15392	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216666	9.8	CRITICAL Network	venki	supravizio_bpm	Venki Supravizio BPM 10.1.2 does not limit the number of authentication attempts. An unauthenticated user may exploit this vulnerability to launch a brute-force authentication attack against the Logi…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-15367	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216667	7.8	HIGH Local	xen debian opensuse fedoraproject	xen debian_linux leap fedora	An issue was discovered in Xen through 4.13.x, allowing Intel guest OS users to gain privileges or cause a denial of service because of non-atomic modification of a live EPT PTE. When mapping guest E…	CWE-362 Race Condition	CVE-2020-15567	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216668	6.5	MEDIUM Local	xen debian	xen debian_linux	An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a host OS crash because of incorrect error handling in event-channel port allocation. The allocation of an event-channe…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-15566	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216669	8.8	HIGH Local	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.13.x, allowing x86 Intel HVM guest OS users to cause a host OS denial of service or possibly gain privileges because of insufficient cache write-back under VT…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-15565	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

216670	7.5	HIGH Network	mobileiron	reporting_database enterprise_connector cloud sentry core	An arbitrary file reading vulnerability in MobileIron Core versions 10.3.0.3 and earlier, 10.4.0.0, 10.4.0.1, 10.4.0.2, 10.4.0.3, 10.5.1.0, 10.5.2.0 and 10.6.0.0 that allows remote attackers to read …	NVD-CWE-noinfo	CVE-2020-15507	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm