Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228471 7.2 危険 ヒューレット・パッカード - HP Storage Data Protector における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5220 2013-04-30 18:24 2013-04-24 Show GitHub Exploit DB Packet Storm
228472 4 警告 The phpMyAdmin Project - phpMyAdmin の export.php における値を挿入される脆弱性 CWE-noinfo
情報不足 		CVE-2013-3241 2013-04-30 18:23 2013-04-24 Show GitHub Exploit DB Packet Storm
228473 6.5 警告 The phpMyAdmin Project - phpMyAdmin のエクスポート機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3240 2013-04-30 18:21 2013-04-24 Show GitHub Exploit DB Packet Storm
228474 6.8 警告 Crunchify - WordPress 用 FourSquare Checkins プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2709 2013-04-30 17:54 2013-04-22 Show GitHub Exploit DB Packet Storm
228475 6.8 警告 Crunchify - WordPress 用 All in One Webmaster プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2696 2013-04-30 17:52 2013-04-22 Show GitHub Exploit DB Packet Storm
228476 5 警告 Blink Web Effects - WordPress 用 Social Media Widget プラグインにおける任意のファイルのアップロードを強制される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1949 2013-04-30 17:51 2013-04-9 Show GitHub Exploit DB Packet Storm
228477 10 危険 Rob Westgeest - Ruby 用 md2pdf gem の converter.rb における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1948 2013-04-30 17:51 2013-04-10 Show GitHub Exploit DB Packet Storm
228478 9.3 危険 Kelly D. Redding - Ruby 用 kelredd-pruview gem における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-1947 2013-04-30 17:50 2013-04-4 Show GitHub Exploit DB Packet Storm
228479 9.3 危険 karteek-docsplit - Ruby 用 Karteek Docsplit gem における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-1933 2013-04-30 17:49 2013-04-1 Show GitHub Exploit DB Packet Storm
228480 6.8 警告 Novell
plataformatec		 - Ruby 用 Devise gem における不正な結果が返される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0233 2013-04-30 17:48 2013-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
206981 9.8 CRITICAL
Network 		apache rust_sgx_sdk Baidu Rust SGX SDK through 1.0.8 has an enclave ID race. There are non-deterministic results in which, sometimes, two global IDs are the same. NVD-CWE-noinfo
CVE-2020-5499 2024-11-21 14:34 2020-01-4 Show GitHub Exploit DB Packet Storm
206982 6.1 MEDIUM
Network 		mitreid connect The OpenID Connect reference implementation for MITREid Connect through 1.3.3 allows XSS due to userInfoJson being included in the page unsanitized. This is related to header.tag. The issue can be ex… CWE-79
Cross-site Scripting 		CVE-2020-5497 2024-11-21 14:34 2020-01-4 Show GitHub Exploit DB Packet Storm
206983 8.8 HIGH
Network 		fontforge
opensuse 		fontforge
leap 		FontForge 20190801 has a heap-based buffer overflow in the Type2NotDefSplines() function in splinesave.c. CWE-787
 Out-of-bounds Write 		CVE-2020-5496 2024-11-21 14:34 2020-01-4 Show GitHub Exploit DB Packet Storm
206984 8.8 HIGH
Network 		fontforge
fedoraproject
opensuse 		fontforge
fedora
leap 		FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd.c. CWE-416
 Use After Free 		CVE-2020-5395 2024-11-21 14:34 2020-01-4 Show GitHub Exploit DB Packet Storm
206985 5.3 MEDIUM
Network 		ibm safer_payments IBM Counter Fraud Management for Safer Payments 5.7.0.00 through 5.7.0.10, 6.0.0.00 through 6.0.0.07, 6.1.0.00 through 6.1.0.05, and 6.2.0.00 through 6.2.1.00 could allow an authenticated attacker un… NVD-CWE-noinfo
CVE-2020-4729 2024-11-21 14:33 2023-04-28 Show GitHub Exploit DB Packet Storm
206986 8.2 HIGH
Network 		ibm spectrum_scale A vulnerability in the Spectrum Scale 5.0.5.0 through 5.1.6.1 core component could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. IBM X-Force ID… NVD-CWE-noinfo
CVE-2020-4927 2024-11-21 14:33 2023-03-16 Show GitHub Exploit DB Packet Storm
206987 - - - IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 190837. - CVE-2020-4874 2024-11-21 14:33 2024-05-4 Show GitHub Exploit DB Packet Storm
206988 - - - Minerbabe through V4.16 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io. - CVE-2020-5200 2024-11-21 14:33 2024-05-1 Show GitHub Exploit DB Packet Storm
206989 5.3 MEDIUM
Network 		ibm tririga_application_platform IBM TRIRIGA 3.0, 4.0, and 4.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in furt… CWE-209
Information Exposure Through an Error Message 		CVE-2020-4868 2024-11-21 14:33 2023-07-31 Show GitHub Exploit DB Packet Storm
206990 5.5 MEDIUM
Local 		ibm cloud_pak_system IBM Cloud Pak System Suite 2.3.3.0 through 2.3.3.5 does not invalidate session after logout which could allow a local user to impersonate another user on the system. IBM X-Force ID: 191290. - CVE-2020-4914 2024-11-21 14:33 2023-05-6 Show GitHub Exploit DB Packet Storm