Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
231521 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-0010 2013-01-11 14:04 2013-01-8 Show GitHub Exploit DB Packet Storm
231522 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-0009 2013-01-11 14:02 2013-01-8 Show GitHub Exploit DB Packet Storm
231523 10 危険 マイクロソフト - Microsoft XML コアサービスにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-0007 2013-01-11 13:48 2013-01-8 Show GitHub Exploit DB Packet Storm
231524 6.8 警告 Maxtom - Atomymaxsite の index.php における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2012-6498 2013-01-9 11:59 2012-10-17 Show GitHub Exploit DB Packet Storm
231525 6.4 警告 レッドハット - JBoss Enterprise Application Platform における EJB へアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4550 2013-01-8 16:39 2012-12-18 Show GitHub Exploit DB Packet Storm
231526 5.8 警告 レッドハット - JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-4549 2013-01-8 16:38 2012-12-18 Show GitHub Exploit DB Packet Storm
231527 5 警告 Apache Software Foundation - Apache CXF における子ポリシーを回避される脆弱性 CWE-200
情報漏えい
CVE-2012-2378 2013-01-8 16:37 2012-12-18 Show GitHub Exploit DB Packet Storm
231528 10 危険 FFmpeg
Libav
- FFmpeg および Libav の H.263 コーデックにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3937 2013-01-8 16:37 2012-03-15 Show GitHub Exploit DB Packet Storm
231529 2.1 注意 レッドハット - Red Hat CloudForms における Grinder のキャッシュファイルを変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-5605 2013-01-8 16:33 2012-12-4 Show GitHub Exploit DB Packet Storm
231530 2.1 注意 レッドハット - Red Hat Enterprise Virtualization Manager における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2012-5516 2013-01-8 16:21 2012-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210071 9.8 CRITICAL
Network
nethack nethack In NetHack before 3.6.5, an extremely long value for the MENUCOLOR configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulne… CWE-120
Classic Buffer Overflow
CVE-2020-5212 2024-11-21 14:33 2020-01-29 Show GitHub Exploit DB Packet Storm
210072 7.8 HIGH
Local
nethack nethack In NetHack before 3.6.5, an invalid argument to the -w command line option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects s… CWE-120
Classic Buffer Overflow
CVE-2020-5210 2024-11-21 14:33 2020-01-29 Show GitHub Exploit DB Packet Storm
210073 7.8 HIGH
Local
nethack nethack In NetHack before 3.6.5, unknown options starting with -de and -i can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems th… CWE-120
Classic Buffer Overflow
CVE-2020-5209 2024-11-21 14:33 2020-01-29 Show GitHub Exploit DB Packet Storm
210074 7.5 HIGH
Network
jetbrains ktor In Ktor before 1.3.0, request smuggling is possible when running behind a proxy that doesn't handle Content-Length and Transfer-Encoding properly or doesn't handle \n as a headers separator. CWE-444
HTTP Request Smuggling
CVE-2020-5207 2024-11-21 14:33 2020-01-28 Show GitHub Exploit DB Packet Storm
210075 5.3 MEDIUM
Network
sylius syliusresourcebundle Sylius ResourceBundle accepts and uses any serialisation groups to be passed via a HTTP header. This might lead to data exposure by using an unintended serialisation group - for example it could make… CWE-200
Information Exposure
CVE-2020-5220 2024-11-21 14:33 2020-01-28 Show GitHub Exploit DB Packet Storm
210076 4.3 MEDIUM
Network
sylius sylius Affected versions of Sylius give attackers the ability to switch channels via the _channel_code GET parameter in production environments. This was meant to be enabled only when kernel.debug is set to… CWE-444
HTTP Request Smuggling
CVE-2020-5218 2024-11-21 14:33 2020-01-28 Show GitHub Exploit DB Packet Storm
210077 5.4 MEDIUM
Network
simplesamlphp simplesamlphp Cross-site scripting in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script allows error reports to be submitted and sent to the system administrator. Starting with SimpleSAMLphp 1.18.… CWE-79
Cross-site Scripting
CVE-2020-5226 2024-11-21 14:33 2020-01-25 Show GitHub Exploit DB Packet Storm
210078 5.4 MEDIUM
Network
simplesamlphp simplesamlphp Log injection in SimpleSAMLphp before version 1.18.4. The www/erroreport.php script, which receives error reports and sends them via email to the system administrator, did not properly sanitize the r… CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2020-5225 2024-11-21 14:33 2020-01-25 Show GitHub Exploit DB Packet Storm
210079 8.8 HIGH
Network
django-user-sessions_project django-user-sessions In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rend… CWE-326
Inadequate Encryption Strength
CVE-2020-5224 2024-11-21 14:33 2020-01-25 Show GitHub Exploit DB Packet Storm
210080 8.8 HIGH
Network
peerigon angular-expressions Angular Expressions before version 1.0.1 has a remote code execution vulnerability if you call expressions.compile(userControlledInput) where userControlledInput is text that comes from user input. I… CWE-74
Injection
CVE-2020-5219 2024-11-21 14:33 2020-01-25 Show GitHub Exploit DB Packet Storm