Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225231	7.2	危険	アップル	-	CUPS における root として任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5519	2013-06-7 11:50	2012-11-20	Show	GitHub Exploit DB Packet Storm

225232	7.5	危険	アップル OpenSSL Project	-	OpenSSL の crypto/buffer/buffer.c における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2012-2131	2013-06-7 11:36	2012-04-23	Show	GitHub Exploit DB Packet Storm

225233	7.5	危険	アップル VMware OpenSSL Project	-	OpenSSL の asn1_d2i_read_bio 関数におけるバッファオーバーフロー攻撃を誘発される脆弱性	CWE-119 バッファエラー	CVE-2012-2110	2013-06-7 11:33	2012-04-19	Show	GitHub Exploit DB Packet Storm

225234	5	警告	アップル VMware OpenSSL Project	-	OpenSSL の Server Gated Cryptography の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4619	2013-06-7 11:26	2012-01-4	Show	GitHub Exploit DB Packet Storm

225235	4.3	警告	アップル VMware OpenSSL Project	-	OpenSSL におけるサービス運用妨害 (表明違反) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4577	2013-06-7 11:21	2012-01-4	Show	GitHub Exploit DB Packet Storm

225236	9.3	危険	アップル VMware OpenSSL Project	-	OpenSSL におけるメモリ二重開放の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4109	2013-06-7 11:15	2012-01-4	Show	GitHub Exploit DB Packet Storm

225237	5	警告	アップル OpenSSL Project	-	OpenSSL の ephemeral ECDH ciphersuite におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3210	2013-06-7 11:07	2011-09-6	Show	GitHub Exploit DB Packet Storm

225238	5	警告	アップル OpenSSL Project レッドハット	-	OpenSSL の crypto/x509/x509_vfy.c における CRL 確認を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3207	2013-06-7 10:58	2011-09-6	Show	GitHub Exploit DB Packet Storm

225239	2.6	注意	アップル OpenSSL Project	-	OpenSSL の ECC サブシステムにおける秘密鍵を特定される脆弱性	CWE-310 暗号の問題	CVE-2011-1945	2013-06-7 10:54	2011-05-31	Show	GitHub Exploit DB Packet Storm

225240	10	危険	アドビシステムズ Google	-	Google Chrome 上で稼働する Adobe Flash Player におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-119 バッファエラー	CVE-2012-0724	2013-06-6 18:10	2012-03-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199691	6.1	MEDIUM Network	kibokolabs	chained_quiz	The chained-quiz plugin 1.1.8.1 for WordPress has reflected XSS via the wp-admin/admin-ajax.php total_questions parameter.	CWE-79 Cross-site Scripting	CVE-2020-7104	2024-11-21 14:36	2020-01-18	Show	GitHub Exploit DB Packet Storm

199692	5.3	MEDIUM Network	zte	f6x2w_firmware	V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code.	CWE-669 Incorrect Resource Transfer Between Spheres	CVE-2020-6862	2024-11-21 14:36	2020-01-18	Show	GitHub Exploit DB Packet Storm

199693	5.6	MEDIUM Network	libslirp_project debian opensuse qemu	libslirp debian_linux leap qemu	tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds a…	CWE-787 Out-of-bounds Write	CVE-2020-7039	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

199694	9.1	CRITICAL Network	webfactoryltd	wp_database_reset	The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial WordPress set-up state (deleting all site …	CWE-306 Missing Authentication for Critical Function	CVE-2020-7048	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

199695	8.8	HIGH Network	webfactoryltd	wp_database_reset	The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users …	CWE-269 Improper Privilege Management	CVE-2020-7047	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

199696	5.4	MEDIUM Network	learndash	learndash	The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field.	CWE-79 Cross-site Scripting	CVE-2020-7108	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

199697	6.1	MEDIUM Network	etoilewebdesign	ultimate_faq	The Ultimate FAQ plugin before 1.8.30 for WordPress allows XSS via Display_FAQ to Shortcodes/DisplayFAQs.php.	CWE-79 Cross-site Scripting	CVE-2020-7107	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

199698	6.1	MEDIUM Network	cacti debian opensuse suse fedoraproject	cacti debian_linux leap backports_sle package_hub fedora extra_packages_for_enterprise_linux	Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the descrip…	CWE-79 Cross-site Scripting	CVE-2020-7106	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

199699	7.5	HIGH Network	redislabs debian fedoraproject	hiredis debian_linux fedora	async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.	CWE-476 NULL Pointer Dereference	CVE-2020-7105	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

199700	6.5	MEDIUM Adjacent	wireshark debian	wireshark debian_linux	In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validating opcodes.	CWE-476 NULL Pointer Dereference	CVE-2020-7045	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm