Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228941 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0793 2013-06-27 17:21 2013-04-2 Show GitHub Exploit DB Packet Storm
228942 9.3 危険 cairographics.org
Mozilla Foundation
Pixman		 - 複数の Mozilla 製品などで使用される Pixman における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2013-0800 2013-06-27 17:18 2013-04-2 Show GitHub Exploit DB Packet Storm
228943 10 危険 Mozilla Foundation - Linux 上で稼働する複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-0796 2013-06-27 17:15 2013-04-2 Show GitHub Exploit DB Packet Storm
228944 10 危険 Mozilla Foundation - 複数の Mozilla 製品の SOW の実装における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0795 2013-06-27 17:11 2013-04-2 Show GitHub Exploit DB Packet Storm
228945 5.8 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるフィッシング攻撃を実行される脆弱性 CWE-Other
その他 		CVE-2013-0794 2013-06-27 17:08 2013-04-2 Show GitHub Exploit DB Packet Storm
228946 4.3 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0792 2013-06-27 17:02 2013-04-2 Show GitHub Exploit DB Packet Storm
228947 10 危険 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-0789 2013-06-27 17:00 2013-04-2 Show GitHub Exploit DB Packet Storm
228948 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-0788 2013-06-27 16:57 2013-04-2 Show GitHub Exploit DB Packet Storm
228949 6.5 警告 Linux - Linux Kernel の drivers/vhost/vhost.c における ホスト OS 権限を取得される脆弱性 CWE-DesignError
CVE-2013-0311 2013-06-27 16:46 2013-02-22 Show GitHub Exploit DB Packet Storm
228950 7.5 危険 Christophe Balisky - TYPO3 用 meta_feedit エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4683 2013-06-27 16:44 2013-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
207001 7.3 HIGH
Network 		dot-prop_project dot-prop Prototype pollution vulnerability in dot-prop npm package versions before 4.2.1 and versions 5.x before 5.1.1 allows an attacker to add arbitrary properties to JavaScript language constructs such as … CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-8116 2024-11-21 14:38 2020-02-5 Show GitHub Exploit DB Packet Storm
207002 6.1 MEDIUM
Network 		revive-adserver revive_adserver A reflected XSS vulnerability has been discovered in the publicly accessible afr.php delivery script of Revive Adserver <= 5.0.3 by Jacopo Tediosi. There are currently no known exploits: the session … CWE-79
Cross-site Scripting 		CVE-2020-8115 2024-11-21 14:38 2020-02-5 Show GitHub Exploit DB Packet Storm
207003 9.8 CRITICAL
Network 		phpabook_project phpabook An issue was discovered in phpABook 0.9 Intermediate. On the login page, if one sets a userInfo cookie with the value of admin+1+en (user+perms+lang), one can login as any user without a password. CWE-287
Improper Authentication 		CVE-2020-8510 2024-11-21 14:38 2020-02-4 Show GitHub Exploit DB Packet Storm
207004 4.3 MEDIUM
Network 		prototypejs prototype Prototype 1.6.0.1 allows remote authenticated users to forge ticket creation (on behalf of other user accounts) via a modified email ID field. CWE-862
 Missing Authorization 		CVE-2020-7993 2024-11-21 14:38 2020-02-4 Show GitHub Exploit DB Packet Storm
207005 9.8 CRITICAL
Network 		norman malware_cleaner nsak64.sys in Norman Malware Cleaner 2.08.08 allows users to call arbitrary kernel functions because the passing of function pointers between user and kernel mode is mishandled. CWE-787
 Out-of-bounds Write 		CVE-2020-8508 2024-11-21 14:38 2020-02-3 Show GitHub Exploit DB Packet Storm
207006 6.1 MEDIUM
Network 		maxum rumpus An issue was discovered in Rumpus 8.2.10 on macOS. By crafting a directory name, it is possible to activate JavaScript in the context of the web application after invoking the rename folder functiona… CWE-79
Cross-site Scripting 		CVE-2020-8514 2024-11-21 14:38 2020-02-3 Show GitHub Exploit DB Packet Storm
207007 5.3 MEDIUM
Network 		torproject tor The daemon in Tor through 0.4.1.8 and 0.4.2.x through 0.4.2.6 does not verify that a rendezvous node is known before attempting to connect to it, which might make it easier for remote attackers to di… NVD-CWE-noinfo
CVE-2020-8516 2024-11-21 14:38 2020-02-2 Show GitHub Exploit DB Packet Storm
207008 9.8 CRITICAL
Network 		draytek vigor2960_firmware
vigor300b_firmware
vigor3900_firmware 		DrayTek Vigor2960 1.3.1_Beta, Vigor3900 1.4.4_Beta, and Vigor300B 1.3.3_Beta, 1.4.2.1_Beta, and 1.4.4_Beta devices allow remote code execution as root (without authentication) via shell metacharacter… CWE-78
OS Command  		CVE-2020-8515 2024-11-21 14:38 2020-02-1 Show GitHub Exploit DB Packet Storm
207009 6.1 MEDIUM
Network 		icewarp icewarp_server In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webmail/ color parameter. CWE-79
Cross-site Scripting 		CVE-2020-8512 2024-11-21 14:38 2020-02-1 Show GitHub Exploit DB Packet Storm
207010 6.5 MEDIUM
Network 		arox school_management_software_php\/mysql School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=deleteadmin CSRF to delete a user. CWE-352
 Origin Validation Error 		CVE-2020-8505 2024-11-21 14:38 2020-02-1 Show GitHub Exploit DB Packet Storm