Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226111 2.1 注意 Inkscape - Inkscape のラスタ化プロセスにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5656 2013-01-22 15:00 2012-12-17 Show GitHub Exploit DB Packet Storm
226112 4.3 警告 レッドハット - JBoss Enterprise Portal Platform の GateIn Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5531 2013-01-22 14:59 2013-01-7 Show GitHub Exploit DB Packet Storm
226113 5 警告 レッドハット
SquirrelMail Project		 - Red Hat Enterprise Linux で使用される SquirrelMail におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2124 2013-01-22 14:59 2013-01-8 Show GitHub Exploit DB Packet Storm
226114 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC NetWorker の nsrindexd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-4607 2013-01-22 14:58 2013-01-17 Show GitHub Exploit DB Packet Storm
226115 3.5 注意 IBM - IBM Tivoli Federated Identity Manager におけるパスワードを破られる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3310 2013-01-22 14:57 2013-01-17 Show GitHub Exploit DB Packet Storm
226116 3.5 注意 Samba Project - Samba における LDAP ディレクトリオブジェクトの変更上の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0172 2013-01-22 14:56 2013-01-17 Show GitHub Exploit DB Packet Storm
226117 4.6 警告 シスコシステムズ - Windows 上の Cisco VPN Client におけるサービス運用妨害 (カーネルフォルト および システムクラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5429 2013-01-22 14:41 2013-01-12 Show GitHub Exploit DB Packet Storm
226118 5 警告 SpecView - SpecView の Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5972 2013-01-22 14:28 2013-01-11 Show GitHub Exploit DB Packet Storm
226119 4.3 警告 General Electric Company - GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-4689 2013-01-22 14:18 2013-01-8 Show GitHub Exploit DB Packet Storm
226120 6.8 警告 シスコシステムズ - Cisco WebEx Training Center におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-1109 2013-01-22 14:08 2013-01-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213521 8.8 HIGH
Network 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the … CWE-352
 Origin Validation Error 		CVE-2020-10890 2024-11-21 13:56 2020-04-23 Show GitHub Exploit DB Packet Storm
213522 7.8 HIGH
Local 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the … CWE-843
Type Confusion 		CVE-2020-10889 2024-11-21 13:56 2020-04-23 Show GitHub Exploit DB Packet Storm
213523 7.5 HIGH
Network 		git-scm
debian
canonical
fedoraproject 		git
debian_linux
ubuntu_linux
fedora 		Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260(GHSA-qm7j-c969-7j4q… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-11008 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
213524 8.8 HIGH
Network 		vestacp vesta_control_panel An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script). NVD-CWE-noinfo
CVE-2020-10787 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
213525 8.8 HIGH
Network 		vestacp vesta_control_panel A remote command execution in Vesta Control Panel through 0.9.8-26 allows any authenticated user to execute arbitrary commands on the system via cron jobs. CWE-863
 Incorrect Authorization 		CVE-2020-10786 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
213526 8.8 HIGH
Network 		tortoise_orm_project tortoise_orm In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only… CWE-89
SQL Injection 		CVE-2020-11010 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
213527 5.4 MEDIUM
Network 		zulip zulip_server Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover. CWE-79
Cross-site Scripting 		CVE-2020-10935 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
213528 8.8 HIGH
Network 		sophos anti-virus_for_sophos_central
anti-virus_for_sophos_home 		Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation. CWE-59
Link Following 		CVE-2020-10947 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
213529 7.5 HIGH
Network 		ftpdmin_project ftpdmin A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet. CWE-120
Classic Buffer Overflow 		CVE-2020-10813 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
213530 6.5 MEDIUM
Network 		shopizer shopizer In Shopizer before version 2.11.0, using API or Controller based versions negative quantity is not adequately validated hence creating incorrect shopping cart and order total. This vulnerability make… CWE-20
 Improper Input Validation  		CVE-2020-11007 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm