Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226051	6.8	警告	PHP工房	-	Phpkobo Free Real Estate Contact Form の codelib/sys/common.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1062	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226052	6.8	警告	PHP工房	-	Phpkobo Short URL におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1061	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226053	6.8	警告	PHP工房	-	Phpkobo Short URL の staff/app/common.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1060	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226054	6.8	警告	PHP工房	-	Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1059	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226055	6.8	警告	PHP工房	-	Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1058	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226056	6.8	警告	PHP工房	-	Phpkobo AdFreely におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1057	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226057	6.8	警告	rockettheme	-	Joomla! 用の Rokdownloads コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1056	2012-12-20 19:29	2010-03-16	Show	GitHub Exploit DB Packet Storm

226058	5.1	警告	tufat	-	osDate における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1055	2012-12-20 19:29	2010-03-23	Show	GitHub Exploit DB Packet Storm

226059	6.8	警告	zentracking	-	Zen Time Tracking における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1053	2012-12-20 19:29	2010-03-22	Show	GitHub Exploit DB Packet Storm

226060	7.5	危険	Uiga	-	Uiga Business Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1049	2012-12-20 19:29	2010-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211131	7.5	HIGH Network	phoenixcontact	btp_2043w_firmware btp_2070w_firmware btp_2102w_firmware	Uncontrolled Resource Consumption can be exploited to cause the Phoenix Contact HMIs BTP 2043W, BTP 2070W and BTP 2102W in all versions to become unresponsive and not accurately update the display co…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12524	2024-11-21 13:59	2020-12-3	Show	GitHub Exploit DB Packet Storm

211132	3.3	LOW Local	apache	cordova	We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially craft…	NVD-CWE-noinfo	CVE-2020-11990	2024-11-21 13:59	2020-12-2	Show	GitHub Exploit DB Packet Storm

211133	5.4	MEDIUM Network	intelbras	tip200_firmware tip200lite_firmware tip300_firmware	Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS.	CWE-79 Cross-site Scripting	CVE-2020-12262	2024-11-21 13:59	2020-11-27	Show	GitHub Exploit DB Packet Storm

211134	6.5	MEDIUM Adjacent	linux	linux_kernel	Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.	CWE-909 Missing Initialization of Resource	CVE-2020-12352	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

211135	8.8	HIGH Adjacent	linux	linux_kernel	Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.	CWE-20 Improper Input Validation	CVE-2020-12351	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

211136	7.3	HIGH Local	beckhoff	twincat_extended_automation_runtime	The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions whic…	CWE-276 Incorrect Default Permissions	CVE-2020-12510	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211137	6.5	MEDIUM Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to exposure of sensitive info…	CWE-200 Information Exposure	CVE-2020-12496	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211138	8.8	HIGH Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-based user interface w…	CWE-269 Improper Privilege Management	CVE-2020-12495	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211139	7.5	HIGH Network	symantec	endpoint_detection_and_response	Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.	NVD-CWE-noinfo	CVE-2020-12593	2024-11-21 13:59	2020-11-19	Show	GitHub Exploit DB Packet Storm

211140	9.8	CRITICAL Network	intel	open_webrtc_toolkit	Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access.	NVD-CWE-Other	CVE-2020-12338	2024-11-21 13:59	2020-11-14	Show	GitHub Exploit DB Packet Storm