Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225541	6.4	警告	Zend Technologies Ltd.	-	Zend Framework における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2012-6531	2013-02-18 11:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

225542	6.5	警告	OpenStack Canonical	-	OpenStack Compute Folsom および Essex における他のユーザのボリュームからブートされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0208	2013-02-18 11:32	2013-01-29	Show	GitHub Exploit DB Packet Storm

225543	6.4	警告	シスコシステムズ	-	Cisco Small Business ワイヤレスアクセスポイントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-1131	2013-02-15 19:48	2013-02-13	Show	GitHub Exploit DB Packet Storm

225544	5	警告	シスコシステムズ	-	Cisco Nexus 7000 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1122	2013-02-15 19:47	2013-02-6	Show	GitHub Exploit DB Packet Storm

225545	4.3	警告	シスコシステムズ	-	Cisco Unity Express におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-1114	2013-02-15 19:46	2013-02-1	Show	GitHub Exploit DB Packet Storm

225546	9	危険	シスコシステムズ	-	Cisco ATA 187 Analog Telephone Adaptor におけるオペレーティングシステムのコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1111	2013-02-15 19:46	2013-02-6	Show	GitHub Exploit DB Packet Storm

225547	5.4	警告	シスコシステムズ	-	Cisco Catalyst スイッチ上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-1100	2013-02-15 19:45	2013-01-30	Show	GitHub Exploit DB Packet Storm

225548	4.3	警告	Featurific For WordPress Project	-	WordPress 用 Featurific For WordPress プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5265	2013-02-15 19:11	2013-02-12	Show	GitHub Exploit DB Packet Storm

225549	4.3	警告	Marcel Brinkkemper	-	WordPress 用 Lazyest Backup プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5264	2013-02-15 19:10	2013-02-12	Show	GitHub Exploit DB Packet Storm

225550	4.3	警告	SAP	-	SAP NetWeaver におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5263	2013-02-15 19:09	2013-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199851	8.1	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, a race condition exists where mcpd and other processes may make unencrypted connection attempts to a…	CWE-362 CWE-319 Race Condition Cleartext Transmission of Sensitive Information	CVE-2020-5876	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199852	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 15.0.0-15.0.1 and 14.1.0-14.1.2.3, under certain conditions, the Traffic Management Microkernel (TMM) may generate a core file and restart while processing SSL traffic with an HTTP/2 full p…	NVD-CWE-noinfo	CVE-2020-5875	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199853	7.2	HIGH Network	f5	big-ip_access_policy_manager big-iq_centralized_management big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager…	On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.1-11.6.5 and BIG-IQ 5.2.0-7.1.0, a user associated with the Resource Administrator role who has access to the secure…	NVD-CWE-noinfo	CVE-2020-5873	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199854	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 14.1.0-14.1.2.3, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12.1.4.1, when processing TLS traffic with hardware cryptographic acceleration enabled on platforms with Intel QAT hardware, the …	NVD-CWE-noinfo	CVE-2020-5872	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199855	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP 14.1.0-14.1.2.3, undisclosed requests can lead to a denial of service (DoS) when sent to BIG-IP HTTP/2 virtual servers. The problem can occur when ciphers, which have been blacklisted by th…	NVD-CWE-noinfo	CVE-2020-5871	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199856	8.8	HIGH Network	thimpress	learnpress	LearnPress Wordpress plugin version prior and including 3.2.6.7 is vulnerable to SQL Injection	CWE-89 SQL Injection	CVE-2020-6010	2024-11-21 14:34	2020-05-1	Show	GitHub Exploit DB Packet Storm

199857	5.4	MEDIUM Network	ni-consul	sales_force_assistant	Cross-site scripting vulnerability in Sales Force Assistant version 11.2.48 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5570	2024-11-21 14:34	2020-04-28	Show	GitHub Exploit DB Packet Storm

199858	6.1	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 5.0.0 allows remote attackers to inject arbitrary web script or HTML via the applications 'Messages' and 'Bulletin Board'.	CWE-79 Cross-site Scripting	CVE-2020-5568	2024-11-21 14:34	2020-04-28	Show	GitHub Exploit DB Packet Storm

199859	7.5	HIGH Network	cybozu	garoon	Improper authentication vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote attackers to obtain data in Application Menu.	CWE-287 Improper Authentication	CVE-2020-5567	2024-11-21 14:34	2020-04-28	Show	GitHub Exploit DB Packet Storm

199860	4.3	MEDIUM Network	cybozu	garoon	Improper authorization vulnerability in Cybozu Garoon 4.0.0 to 4.10.3 allows remote authenticated attackers to alter the application's data via the applications 'E-mail' and 'Messages'.	NVD-CWE-noinfo	CVE-2020-5566	2024-11-21 14:34	2020-04-28	Show	GitHub Exploit DB Packet Storm