Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228441	6	警告	SAP	-	SAP BASIS Communication Services における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-3063	2013-05-2 14:40	2013-04-16	Show	GitHub Exploit DB Packet Storm

228442	6.5	警告	SAP	-	SAP Production Planning and Control の Engineering Workbench コンポーネントにおけるトランザクションの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3062	2013-05-2 14:38	2013-04-16	Show	GitHub Exploit DB Packet Storm

228443	6.5	警告	SAP	-	SAP industry solution for healthcare および SAP ERP Central Component におけるトランザクションの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3061	2013-05-2 14:37	2013-04-16	Show	GitHub Exploit DB Packet Storm

228444	7.1	危険	Galil	-	Galil RIO-47100 Pocket PLC におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0699	2013-05-2 14:34	2013-04-26	Show	GitHub Exploit DB Packet Storm

228445	9.4	危険	MatrikonOPC	-	MatrikonOPC A&E Historian の Health Monitor サービスにおけるディレクトリトラバーサルの脆弱性	-	CVE-2013-0673	2013-05-2 14:33	2013-04-26	Show	GitHub Exploit DB Packet Storm

228446	5	警告	MatrikonOPC	-	MatrikonOPC Security Gateway の設定ユーティリティにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-0666	2013-05-2 14:31	2013-04-26	Show	GitHub Exploit DB Packet Storm

228447	4.3	警告	IBM	-	IBM Lotus Notes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0538	2013-05-2 14:20	2013-04-30	Show	GitHub Exploit DB Packet Storm

228448	5.8	警告	IBM	-	IBM Lotus Notes における Java コードの実行および X-Confirm-Reading-To 機能の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0127	2013-05-2 14:19	2013-04-30	Show	GitHub Exploit DB Packet Storm

228449	4.3	警告	Henry Schein	-	Dentrix G5 の認証情報に関する脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-4952	2013-05-2 14:15	2013-04-30	Show	GitHub Exploit DB Packet Storm

228450	5	警告	ヒューレット・パッカード	-	複数の HP 製レーザープリンタのファームウェアにおける任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2012-5221	2013-05-1 14:59	2013-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
216941	9.1	CRITICAL Network	bitdefender	update_server	Insufficient validation in the Bitdefender Update Server and BEST Relay components of Bitdefender Endpoint Security Tools versions prior to 6.6.20.294 allows an unprivileged attacker to bypass the in…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-15297	2024-11-21 14:05	2020-11-9	Show	GitHub Exploit DB Packet Storm

216942	8.8	HIGH Network	auth0	ad\/ldap_connector	ad-ldap-connector's admin panel before version 5.0.13 does not provide csrf protection, which when exploited may result in remote code execution or confidential data loss. CSRF exploits may occur if …	-	CVE-2020-15259	2024-11-21 14:05	2020-11-7	Show	GitHub Exploit DB Packet Storm

216943	8.7	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. Arbitrary JavaScript may be executed by entering a crafted nickname in blog comments. The issue affects the blog comment component…	-	CVE-2020-15276	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216944	7.2	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). Code may be executed by logging in as a system administrator and uploading an executable script file such as a PHP file. The …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-15277	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216945	8.1	HIGH Network	basercms	basercms	baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registra…	-	CVE-2020-15273	2024-11-21 14:05	2020-10-31	Show	GitHub Exploit DB Packet Storm

216946	7.5	HIGH Network	cogboard	red_discord_bot	Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in the Mod module. This exploit allows Discord users with a high privilege level within the guild to bypass hiera…	-	CVE-2020-15278	2024-11-21 14:05	2020-10-29	Show	GitHub Exploit DB Packet Storm

216947	7.0	HIGH Local	blueman_project debian fedoraproject	blueman debian_linux fedora	Blueman is a GTK+ Bluetooth Manager. In Blueman before 2.1.4, the DhcpClient method of the D-Bus interface to blueman-mechanism is prone to an argument injection vulnerability. The impact highly depe…	CWE-88 Argument Injection	CVE-2020-15238	2024-11-21 14:05	2020-10-28	Show	GitHub Exploit DB Packet Storm

216948	7.2	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An XML external entity (XXE) vulnerability in Pulse Connect Secure (PCS) before 9.1R9 and Pulse Policy Secure (PPS) before 9.1R9 allows remote authenticated admins to conduct server-side request forg…	CWE-611 XXE	CVE-2020-15352	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm

216949	5.4	MEDIUM Network	requarks	wiki.js	In Wiki.js before version 2.5.162, an XSS payload can be injected in a page title and executed via the search results. While the title is properly escaped in both the navigation links and the actual …	-	CVE-2020-15274	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm

216950	9.6	CRITICAL Network	git-tag-annotation-action_project	git-tag-annotation-action	In the git-tag-annotation-action (open source GitHub Action) before version 1.0.1, an attacker can execute arbitrary (*) shell commands if they can control the value of [the `tag` input] or manage to…	-	CVE-2020-15272	2024-11-21 14:05	2020-10-27	Show	GitHub Exploit DB Packet Storm