Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225721	4.3	警告	MICROSYS	-	MICROSYS PROMOTIC の ActiveX コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4520	2013-05-27 16:02	2011-11-28	Show	GitHub Exploit DB Packet Storm

225722	5	警告	Wireshark	-	Wireshark の SCTP 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2012-6056	2013-05-27 16:02	2012-11-28	Show	GitHub Exploit DB Packet Storm

225723	4.3	警告	MICROSYS	-	MICROSYS PROMOTIC の ActiveX コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4519	2013-05-27 16:01	2011-11-28	Show	GitHub Exploit DB Packet Storm

225724	5	警告	Wireshark	-	Wireshark の 3GPP2 A1 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2012-6055	2013-05-27 15:59	2012-11-28	Show	GitHub Exploit DB Packet Storm

225725	5	警告	MICROSYS	-	MICROSYS PROMOTIC の Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4518	2013-05-27 15:59	2011-11-28	Show	GitHub Exploit DB Packet Storm

225726	4.3	警告	Elgg	-	Elgg の engine/lib/access.php における、個人のエンティティを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6563	2013-05-27 15:58	2012-05-19	Show	GitHub Exploit DB Packet Storm

225727	5	警告	Wireshark	-	Wireshark の sFlow 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2012-6054	2013-05-27 15:57	2012-11-28	Show	GitHub Exploit DB Packet Storm

225728	6.8	警告	Elgg	-	Elgg の engine/lib/users.php における任意のアカウントを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6562	2013-05-27 15:57	2012-05-19	Show	GitHub Exploit DB Packet Storm

225729	4.3	警告	Elgg	-	Elgg の engine/lib/views.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6561	2013-05-27 15:55	2012-05-19	Show	GitHub Exploit DB Packet Storm

225730	5	警告	Wireshark	-	Wireshark の USB 解析機能におけるサービス運用妨害 (無限ループ) の脆弱性	CWE-189 数値処理の問題	CVE-2012-6053	2013-05-27 15:55	2012-11-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210571	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	<p>A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrar…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-1167	2024-11-21 14:09	2020-10-17	Show	GitHub Exploit DB Packet Storm

210572	8.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could …	NVD-CWE-noinfo	CVE-2020-1080	2024-11-21 14:09	2020-10-17	Show	GitHub Exploit DB Packet Storm

210573	7.8	HIGH Local	microsoft	windows_10 windows_server_2019 windows_server_2016	<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could …	NVD-CWE-noinfo	CVE-2020-1047	2024-11-21 14:09	2020-10-17	Show	GitHub Exploit DB Packet Storm

210574	5.3	MEDIUM Network	alibaba	nacos	Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service lis…	NVD-CWE-noinfo	CVE-2020-19676	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

210575	9.8	CRITICAL Network	niushop	niushop	Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-19672	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

210576	4.9	MEDIUM Network	niushop	niushop	In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords.	CWE-306 Missing Authentication for Critical Function	CVE-2020-19670	2024-11-21 14:09	2020-10-1	Show	GitHub Exploit DB Packet Storm

210577	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter.	CWE-89 SQL Injection	CVE-2020-19455	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

210578	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter.	CWE-89 SQL Injection	CVE-2020-19451	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

210579	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter.	CWE-89 SQL Injection	CVE-2020-19450	2024-11-21 14:09	2020-09-26	Show	GitHub Exploit DB Packet Storm

210580	7.5	HIGH Network	jdownloads	jdownloads	SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter.	CWE-89 SQL Injection	CVE-2020-19447	2024-11-21 14:09	2020-09-25	Show	GitHub Exploit DB Packet Storm