Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225771	7.5	危険	Fail2ban	-	Fail2ban の server/action.py における安全でない動作を誘発される脆弱性	CWE-noinfo 情報不足	CVE-2012-5642	2013-01-7 11:34	2012-12-6	Show	GitHub Exploit DB Packet Storm

225772	4.3	警告	Polycom	-	Polycom HDX Video End Points におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4970	2013-01-4 16:45	2012-12-31	Show	GitHub Exploit DB Packet Storm

225773	3.3	注意	Belkin International	-	Belkin N900 ルータの WPA2 の実装における Wi-Fi ネットワークにアクセスされる脆弱性	CWE-310 暗号の問題	CVE-2012-6371	2013-01-4 16:44	2012-12-31	Show	GitHub Exploit DB Packet Storm

225774	7.5	危険	LemonLDAP::NG	-	LemonLDAP::NG におけるアクセスコントロール制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6426	2013-01-4 16:39	2012-12-18	Show	GitHub Exploit DB Packet Storm

225775	5.8	警告	IBM	-	IBM SPSS Modeler における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2012-5769	2013-01-4 16:38	2012-12-28	Show	GitHub Exploit DB Packet Storm

225776	7.5	危険	i-GEN Solutions	-	i-GEN opLYNX の Central アプリケーションにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2012-4688	2013-01-4 16:31	2012-12-27	Show	GitHub Exploit DB Packet Storm

225777	5.8	警告	vBulletin Solutions, Inc.	-	vBulletin の forum/login.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-5251	2013-01-4 16:23	2011-06-2	Show	GitHub Exploit DB Packet Storm

225778	4.3	警告	AgileBits	-	AgileBits 1Password におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6369	2013-01-4 16:20	2012-12-28	Show	GitHub Exploit DB Packet Storm

225779	4.3	警告	Simple Invoices	-	SimpleInvoices におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4932	2013-01-4 16:16	2012-12-28	Show	GitHub Exploit DB Packet Storm

225780	5	警告	ModSecurity	-	Apache HTTP Server 用 mod_security2 モジュールにおけるルールを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4528	2013-01-4 16:14	2012-10-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211221	6.5	MEDIUM Network	dolibarr	dolibarr	Dolibarr CRM before 11.0.5 allows privilege escalation. This could allow remote authenticated attackers to upload arbitrary files via societe/document.php in which "disabled" is changed to "enabled" …	NVD-CWE-noinfo	CVE-2020-14201	2024-11-21 14:02	2020-08-22	Show	GitHub Exploit DB Packet Storm

211222	7.5	HIGH Network	zulip	zulip_server	Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.	CWE-269 Improper Privilege Management	CVE-2020-14215	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm

211223	5.4	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link.	CWE-269 Improper Privilege Management	CVE-2020-14194	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm

211224	7.5	HIGH Network	apache debian	shiro debian_linux	Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass.	NVD-CWE-noinfo	CVE-2020-13933	2024-11-21 14:02	2020-08-18	Show	GitHub Exploit DB Packet Storm

211225	8.8	HIGH Network	apache	solr	Reported in SOLR-14515 (private) and fixed in SOLR-14561 (public), released in Solr version 8.6.0. The Replication handler (https://lucene.apache.org/solr/guide/8_6/index-replication.html#http-api-co…	CWE-20 Improper Input Validation	CVE-2020-13941	2024-11-21 14:02	2020-08-17	Show	GitHub Exploit DB Packet Storm

211226	4.3	MEDIUM Network	redhat	quay	An information disclosure vulnerability was found in Red Hat Quay in versions before 3.3.1. This flaw allows an attacker who can create a build trigger in a repository, to disclose the names of robot…	NVD-CWE-noinfo	CVE-2020-14313	2024-11-21 14:02	2020-08-11	Show	GitHub Exploit DB Packet Storm

211227	7.1	HIGH Network	redhat	cloudforms_management_engine	Red Hat CloudForms 4.7 and 5 was vulnerable to Server-Side Request Forgery (SSRF) flaw. With the access to add Ansible Tower provider, an attacker could scan and attack systems from the internal netw…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-14296	2024-11-21 14:02	2020-08-11	Show	GitHub Exploit DB Packet Storm

211228	9.8	CRITICAL Network	apache	skywalking	Resolved Only when using H2/MySQL/TiDB as Apache SkyWalking storage, there is a SQL injection vulnerability in the wildcard query cases.	CWE-89 SQL Injection	CVE-2020-13921	2024-11-21 14:02	2020-08-5	Show	GitHub Exploit DB Packet Storm

211229	6.0	MEDIUM Local	gnu redhat opensuse canonical	grub2 enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus leap ubuntu_linux	There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow lead…	-	CVE-2020-14311	2024-11-21 14:02	2020-08-1	Show	GitHub Exploit DB Packet Storm

211230	6.0	MEDIUM Local	gnu redhat opensuse canonical	grub2 enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus leap ubuntu_linux	There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with bu…	CWE-190 Integer Overflow or Wraparound	CVE-2020-14310	2024-11-21 14:02	2020-08-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed