Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228361	5	警告	ヒューレット・パッカードアドビシステムズ日立	-	複数の Adobe 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2093	2013-03-26 16:38	2011-06-14	Show	GitHub Exploit DB Packet Storm

228362	4.3	警告	CloudBees	-	CloudBees Jenkins におけるクロスサイトスクリプティングの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-0328	2013-03-26 16:35	2013-02-16	Show	GitHub Exploit DB Packet Storm

228363	10	危険	ヒューレット・パッカードアドビシステムズ日立	-	複数の Adobe 製品における詳細不明な脆弱性	CWE-20 不適切な入力確認	CVE-2011-2092	2013-03-26 15:24	2011-06-14	Show	GitHub Exploit DB Packet Storm

228364	5	警告	サン・マイクロシステムズ日立ヒューレット・パッカード	-	Oracle Java SE の Java Runtime Environment (JRE) コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0872	2013-03-26 15:21	2011-06-7	Show	GitHub Exploit DB Packet Storm

228365	6.8	警告	サン・マイクロシステムズヒューレット・パッカード	-	Java Web Start における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0866	2013-03-26 15:12	2011-06-10	Show	GitHub Exploit DB Packet Storm

228366	10	危険	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware 日立レッドハット	-	Oracle Java SE の Java Runtime Environment (JRE) コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0864	2013-03-26 15:10	2011-06-7	Show	GitHub Exploit DB Packet Storm

228367	10	危険	サン・マイクロシステムズヒューレット・パッカード	-	Windows 上で稼働する複数の Oracle Java SE の Java Runtime Environment コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0817	2013-03-26 15:06	2011-06-7	Show	GitHub Exploit DB Packet Storm

228368	6.8	警告	サン・マイクロシステムズヒューレット・パッカード	-	Java Web Start におけるポリシーファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0788	2013-03-26 15:04	2011-06-10	Show	GitHub Exploit DB Packet Storm

228369	6.9	警告	Linux	-	Linux Kernel の net/sctp/socket.c における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1828	2013-03-26 15:04	2013-03-20	Show	GitHub Exploit DB Packet Storm

228370	6.8	警告	サン・マイクロシステムズヒューレット・パッカード	-	Java Web Start における設定ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0786	2013-03-26 14:44	2011-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
203411	7.2	HIGH Network	soplanning	soplanning	SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads to command execution via the users parameter, as demonstrated by export_ical.php.	CWE-89 SQL Injection	CVE-2020-9269	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203412	7.5	HIGH Network	soplanning	soplanning	SoPlanning 1.45 is vulnerable to SQL Injection in the OrderBy clause, as demonstrated by the projets.php?order=nom_createur&by= substring.	CWE-89 SQL Injection	CVE-2020-9268	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203413	6.5	MEDIUM Network	soplanning	soplanning	SOPlanning 1.45 is vulnerable to a CSRF attack that allows for arbitrary user creation via process/xajax_server.php.	CWE-352 Origin Validation Error	CVE-2020-9267	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203414	6.5	MEDIUM Network	soplanning	soplanning	SOPlanning 1.45 is vulnerable to a CSRF attack that allows for arbitrary changing of the admin password via process/xajax_server.php.	CWE-352 Origin Validation Error	CVE-2020-9266	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203415	8.2	HIGH Network	ciprianmp	phpmychat-plus	phpMyChat-Plus 1.98 is vulnerable to multiple SQL injections against the deluser.php Delete User functionality, as demonstrated by pmc_username.	CWE-89 SQL Injection	CVE-2020-9265	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203416	5.5	MEDIUM Local	eset	nod32_antivirus internet_security smart_security mobile_security smart_tv_security cyber_security	ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. This affects versions before 1294 of Smart Security Premium, Intern…	CWE-436 Interpretation Conflict	CVE-2020-9264	2024-11-21 14:40	2020-02-19	Show	GitHub Exploit DB Packet Storm

203417	4.3	MEDIUM Network	google	site_kit	The Site Kit by Google plugin for WordPress is vulnerable to Sensitive Information Disclosure in versions up to, and including, 1.8.0 This is due to the lack of capability checks on the admin_enqueue…	CWE-252 Unchecked Return Value	CVE-2020-8934	2024-11-21 14:39	2023-07-7	Show	GitHub Exploit DB Packet Storm

203418	3.7	LOW Network	shipstation	shipstation	The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database (via action=shipnotify) because access to this endpoint is completely …	CWE-862 Missing Authorization	CVE-2020-9009	2024-11-21 14:39	2023-04-12	Show	GitHub Exploit DB Packet Storm

203419	7.5	HIGH Network	shipstation	shipstation	The ShipStation.com plugin 1.0 for CS-Cart allows remote attackers to obtain sensitive information (via action=export) because a typo results in a successful comparison of a blank password and NULL.	NVD-CWE-noinfo	CVE-2020-8889	2024-11-21 14:39	2023-03-29	Show	GitHub Exploit DB Packet Storm

203420	8.8	HIGH Network	zigor	zgr_tps200_ng_firmware	The integrated server of the ZGR TPS200 NG on its 2.00 firmware version and 1.01 hardware version, allows a remote attacker to perform actions with the permissions of a victim user. For this to happe…	CWE-352 Origin Validation Error	CVE-2020-8976	2024-11-21 14:39	2022-10-18	Show	GitHub Exploit DB Packet Storm