Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225771 7.5 危険 Fail2ban - Fail2ban の server/action.py における安全でない動作を誘発される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5642 2013-01-7 11:34 2012-12-6 Show GitHub Exploit DB Packet Storm
225772 4.3 警告 Polycom - Polycom HDX Video End Points におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4970 2013-01-4 16:45 2012-12-31 Show GitHub Exploit DB Packet Storm
225773 3.3 注意 Belkin International - Belkin N900 ルータの WPA2 の実装における Wi-Fi ネットワークにアクセスされる脆弱性 CWE-310
暗号の問題 		CVE-2012-6371 2013-01-4 16:44 2012-12-31 Show GitHub Exploit DB Packet Storm
225774 7.5 危険 LemonLDAP::NG - LemonLDAP::NG におけるアクセスコントロール制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6426 2013-01-4 16:39 2012-12-18 Show GitHub Exploit DB Packet Storm
225775 5.8 警告 IBM - IBM SPSS Modeler における任意のファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2012-5769 2013-01-4 16:38 2012-12-28 Show GitHub Exploit DB Packet Storm
225776 7.5 危険 i-GEN Solutions - i-GEN opLYNX の Central アプリケーションにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-4688 2013-01-4 16:31 2012-12-27 Show GitHub Exploit DB Packet Storm
225777 5.8 警告 vBulletin Solutions, Inc. - vBulletin の forum/login.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5251 2013-01-4 16:23 2011-06-2 Show GitHub Exploit DB Packet Storm
225778 4.3 警告 AgileBits - AgileBits 1Password におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6369 2013-01-4 16:20 2012-12-28 Show GitHub Exploit DB Packet Storm
225779 4.3 警告 Simple Invoices - SimpleInvoices におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4932 2013-01-4 16:16 2012-12-28 Show GitHub Exploit DB Packet Storm
225780 5 警告 ModSecurity - Apache HTTP Server 用 mod_security2 モジュールにおけるルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4528 2013-01-4 16:14 2012-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197511 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a use-after-free during processing of syscheck formatted msgs (received from auth… CWE-416
 Use After Free 		CVE-2020-8447 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197512 5.5 MEDIUM
Local 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to path traversal (with write access) via crafted syscheck messages written directly… CWE-22
Path Traversal 		CVE-2020-8446 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197513 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the OS_CleanMSG function in ossec-analysisd doesn't remove or encode terminal control characters or newlines from processed log messages. In many cases, those charact… CWE-20
 Improper Input Validation  		CVE-2020-8445 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197514 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a use-after-free during processing of ossec-alert formatted msgs (received from a… CWE-416
 Use After Free 		CVE-2020-8444 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197515 9.8 CRITICAL
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to an off-by-one heap-based buffer overflow during the cleaning of crafted syslog ms… CWE-787
CWE-193
 Out-of-bounds Write
 Off-by-one Error 		CVE-2020-8443 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197516 8.8 HIGH
Network 		ossec ossec In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec-analysisd) is vulnerable to a heap-based buffer overflow in the rootcheck decoder component via an authentica… CWE-787
 Out-of-bounds Write 		CVE-2020-8442 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197517 7.2 HIGH
Network 		arris ruckus_zoneflex_r500_firmware Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticated attacker to execute arbitrary OS commands via the hidden /forms/nslookupHandler form, as demonstrated by the nslookuptarget=|cat${IF… CWE-78
OS Command  		CVE-2020-8438 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197518 9.8 CRITICAL
Network 		denx
opensuse 		u-boot
leap 		In Das U-Boot through 2020.01, a double free has been found in the cmd/gpt.c do_rename_gpt_parts() function. Double freeing may result in a write-what-where condition, allowing an attacker to execute… CWE-787
CWE-415
 Out-of-bounds Write
 Double Free 		CVE-2020-8432 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197519 7.5 HIGH
Network 		iktm bearftp IKTeam BearFTP before 0.2.0 allows remote attackers to achieve denial of service via a large volume of connections to the PASV mode port. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-8416 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm
197520 8.8 HIGH
Network 		webargs_project webargs flaskparser.py in Webargs 5.x through 5.5.2 doesn't check that the Content-Type header is application/json when receiving JSON input. If the request body is valid JSON, it will accept it even if the … CWE-352
 Origin Validation Error 		CVE-2020-7965 2024-11-21 14:38 2020-01-30 Show GitHub Exploit DB Packet Storm