Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253651	10	危険	Goforandroid	-	Android 用 GO Email Widget アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1394	2012-03-9 11:08	2012-03-7	Show	GitHub Exploit DB Packet Storm

253652	10	危険	Goforandroid	-	Android 用 GO SMS Pro アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1393	2012-03-9 11:06	2012-03-7	Show	GitHub Exploit DB Packet Storm

253653	10	危険	MoboTap	-	Android 用 Dolphin Browser Mini アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1404	2012-03-8 16:30	2012-03-7	Show	GitHub Exploit DB Packet Storm

253654	10	危険	MoboTap	-	Android 用 Dolphin Browser CN アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1403	2012-03-8 16:29	2012-03-7	Show	GitHub Exploit DB Packet Storm

253655	10	危険	MoboTap	-	Android 用 Dolphin Browser HD アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1392	2012-03-8 16:29	2012-03-7	Show	GitHub Exploit DB Packet Storm

253656	10	危険	Shanghai Truecolor Multimedia	-	Android 用 QianXun YingShi アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1402	2012-03-8 16:18	2011-03-7	Show	GitHub Exploit DB Packet Storm

253657	10	危険	IntSig Information	-	Android 用 CamScanner アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1401	2012-03-8 16:16	2012-03-7	Show	GitHub Exploit DB Packet Storm

253658	10	危険	uplusbox	-	Android 用 U+Box 2.0 Pad アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1400	2012-03-8 16:14	2012-03-7	Show	GitHub Exploit DB Packet Storm

253659	10	危険	uplusbox	-	Android 用 U+Box 2.0 アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1399	2012-03-8 16:13	2012-03-7	Show	GitHub Exploit DB Packet Storm

253660	10	危険	Innovation Technology	-	Android 用 mOffice - Outlook sync アプリケーションにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2012-1391	2012-03-8 16:10	2012-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218381	9.8	CRITICAL Network	numfocus	pandas	pandas through 1.0.3 can unserialize and execute commands from an untrusted file that is passed to the read_pickle() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this …	CWE-502 Deserialization of Untrusted Data	CVE-2020-13091	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218382	5.5	MEDIUM Local	yaws	yaws	yaws_config.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than…	CWE-326 Inadequate Encryption Strength	CVE-2020-12872	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218383	9.8	CRITICAL Network	misp	misp-maltego	MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case.	NVD-CWE-noinfo	CVE-2020-12889	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218384	5.3	MEDIUM Local	linux fedoraproject opensuse debian canonical netapp	linux_kernel fedora leap debian_linux ubuntu_linux cloud_backup element_software steelstore_cloud_integrated_storage solidfire hci_management_node active_iq_unified_mana…	The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-12888	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218385	7.8	HIGH Local	sun-denshi	universal_forensic_extraction_device_firmware	Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based…	CWE-269 Improper Privilege Management	CVE-2020-12798	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218386	9.8	CRITICAL Network	eq-3	homematic_ccu2_firmware ccu3_firmware	eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the we…	CWE-276 Incorrect Default Permissions	CVE-2020-12834	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218387	6.1	MEDIUM Network	redhat	interchange	XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript.	CWE-79 Cross-site Scripting	CVE-2020-12685	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

218388	5.4	MEDIUM Network	rcos	submitty	Submitty through 20.04.01 allows XSS via upload of an SVG document, as demonstrated by an attack by a Student against a Teaching Fellow.	CWE-79 Cross-site Scripting	CVE-2020-12882	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

218389	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.	CWE-306 Missing Authentication for Critical Function	CVE-2020-12877	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

218390	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.	CWE-863 Incorrect Authorization	CVE-2020-12876	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed