Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249001	6.8	警告	Intuit	-	Intuit QuickBooks の intu-help-qb ハンドラにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2418	2012-04-27 14:49	2012-04-25	Show	GitHub Exploit DB Packet Storm

249002	4.6	警告	サイバートラスト株式会社 Net_SSLeay Canonical	-	Perl モジュール Net::SSLeay.pm の entropy ソースの扱いに関する脆弱性	-	CVE-2005-0106	2012-04-27 14:12	2005-05-3	Show	GitHub Exploit DB Packet Storm

249003	4.3	警告	osCommerce	-	osCommerce におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0312	2012-04-26 16:56	2012-01-20	Show	GitHub Exploit DB Packet Storm

249004	2.6	注意	Mozilla Foundation	-	複数の Mozilla 製品における IPv6 リテラルのアクセス制御リスト (ACL) を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0475	2012-04-26 16:00	2012-04-24	Show	GitHub Exploit DB Packet Storm

249005	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の cairo-dwrite 実装におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-119 バッファエラー	CVE-2012-0472	2012-04-26 15:51	2012-04-24	Show	GitHub Exploit DB Packet Storm

249006	4.3	警告	OSQA	-	OSQA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1245	2012-04-26 12:03	2012-04-26	Show	GitHub Exploit DB Packet Storm

249007	4	警告	株式会社NTTドコモ	-	spモードメールアプリにおける SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2012-1244	2012-04-26 12:02	2012-04-26	Show	GitHub Exploit DB Packet Storm

249008	10	危険	Bharat Mediratta	-	Gallery における暗号化の処理に関する脆弱性	CWE-310 暗号の問題	CVE-2012-2405	2012-04-24 16:30	2012-04-3	Show	GitHub Exploit DB Packet Storm

249009	4.3	警告	Cumin	-	Cumin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1575	2012-04-24 16:27	2012-04-22	Show	GitHub Exploit DB Packet Storm

249010	4.6	警告	NVIDIA	-	NVIDIA UNIX ドライバにおける任意のメモリ領域にアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0946	2012-04-24 16:23	2012-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213081	8.8	HIGH Network	dlink	dir-865l_firmware	D-Link DIR-865L Ax 1.20B01 Beta devices allow Command Injection.	CWE-78 OS Command	CVE-2020-13782	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

213082	3.5	LOW Network	projectcalico	calico	Clusters using Calico (version 3.14.0 and below), Calico Enterprise (version 2.8.2 and below), may be vulnerable to information disclosure if IPv6 is enabled but unused. A compromised pod with suffic…	CWE-200 Information Exposure	CVE-2020-13597	2024-11-21 14:01	2020-06-4	Show	GitHub Exploit DB Packet Storm

213083	9.8	CRITICAL Network	sabberworm	php_css_parser	Sabberworm PHP CSS Parser before 8.3.1 calls eval on uncontrolled data, possibly leading to remote code execution if the function allSelectors() or getSelectorsBySpecificity() is called with input fr…	CWE-94 Code Injection	CVE-2020-13756	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213084	6.1	MEDIUM Network	djangoproject fedoraproject canonical netapp debian oracle	django fedora ubuntu_linux steelstore_cloud_integrated_storage sra_plugin debian_linux zfs_storage_appliance_kit	An issue was discovered in Django 2.2 before 2.2.13 and 3.0 before 3.0.7. Query parameters generated by the Django admin ForeignKeyRawIdWidget were not properly URL encoded, leading to a possibility …	CWE-79 Cross-site Scripting	CVE-2020-13596	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213085	6.7	MEDIUM Local	systemd_project netapp fedoraproject	systemd solidfire_\&_hci_management_node active_iq_unified_manager fedora	systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits, as demonstrated by use of root privileges when privileges of the 0x0 user acc…	CWE-269 Improper Privilege Management	CVE-2020-13776	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213086	6.5	MEDIUM Network	znc fedoraproject	znc fedora	ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.	CWE-476 NULL Pointer Dereference	CVE-2020-13775	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213087	7.5	HIGH Network	rocketgenius	gravityforms	common.php in the Gravity Forms plugin before 2.4.9 for WordPress can leak hashed passwords because user_pass is not considered a special case for a $current_user->get($property) call.	CWE-200 Information Exposure	CVE-2020-13764	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213088	7.5	HIGH Network	joomla	joomla\!	In Joomla! before 3.9.19, the default settings of the global textfilter configuration do not block HTML inputs for Guest users.	CWE-281 Improper Preservation of Permissions	CVE-2020-13763	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213089	6.1	MEDIUM Network	joomla	joomla\!	In Joomla! before 3.9.19, incorrect input validation of the module tag option in com_modules allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-13762	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm

213090	6.1	MEDIUM Network	joomla	joomla\!	In Joomla! before 3.9.19, lack of input validation in the heading tag option of the "Articles - Newsflash" and "Articles - Categories" modules allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-13761	2024-11-21 14:01	2020-06-3	Show	GitHub Exploit DB Packet Storm