Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226751	7.5	危険	Powie	-	pGB の kommentar.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6524	2013-02-1 15:59	2013-01-31	Show	GitHub Exploit DB Packet Storm

226752	7.5	危険	Cornerstone Technologies	-	Cornerstone Technologies webConductor の default.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5287	2013-02-1 15:58	2013-01-31	Show	GitHub Exploit DB Packet Storm

226753	5	警告	w-CMS	-	w-CMS の codes/wcms.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-6522	2013-02-1 15:57	2013-01-31	Show	GitHub Exploit DB Packet Storm

226754	4.3	警告	X3CMS	-	X3 CMS の admin/login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5255	2013-02-1 15:48	2011-11-21	Show	GitHub Exploit DB Packet Storm

226755	4.3	警告	w-CMS	-	w-CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6523	2013-02-1 15:47	2013-01-31	Show	GitHub Exploit DB Packet Storm

226756	7.5	危険	ICU project アップル	-	ICU の common/uloc.c 内の _canonicalize 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4599	2013-01-31 16:00	2012-06-21	Show	GitHub Exploit DB Packet Storm

226757	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-3589	2013-01-31 15:03	2012-07-25	Show	GitHub Exploit DB Packet Storm

226758	2.6	注意	株式会社ウェザーニューズ	-	Android 版ウェザーニュースタッチにおいて位置情報をログに出力する脆弱性	CWE-200 情報漏えい	CVE-2012-5187	2013-01-31 12:00	2013-01-31	Show	GitHub Exploit DB Packet Storm

226759	6.8	警告	アップルサイバートラスト株式会社 LibTIFF レッドハット	-	LibTIFF の Thunder デコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1167	2013-01-31 10:10	2011-03-28	Show	GitHub Exploit DB Packet Storm

226760	5.1	警告	アップル	-	Apple iOS 6.1 未満の StoreKit におけるアクセス制限を回避される脆弱性	CWE-DesignError	CVE-2013-0974	2013-01-30 16:03	2013-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209061	9.8	CRITICAL Network	apache	couchdb	CouchDB version 3.0.0 shipped with a new configuration setting that governs access control to the entire database server called `require_valid_user_except_for_up`. It was meant as an extension to the…	CWE-306 Missing Authentication for Critical Function	CVE-2020-1955	2024-11-21 14:11	2020-05-20	Show	GitHub Exploit DB Packet Storm

209062	7.5	HIGH Network	redhat fedoraproject	resteasy fedora	A flaw was found in all resteasy 3.x.x versions prior to 3.12.0.Final and all resteasy 4.x.x versions prior to 4.6.0.Final, where an improper input validation results in returning an illegal header t…	NVD-CWE-Other	CVE-2020-1695	2024-11-21 14:11	2020-05-20	Show	GitHub Exploit DB Packet Storm

209063	9.8	CRITICAL Network	facebook	proxygen	A use-after-free is possible due to an error in lifetime management in the request adaptor when a malicious client invokes request error handling in a specific sequence. This issue affects versions o…	CWE-416 Use After Free	CVE-2020-1897	2024-11-21 14:11	2020-05-19	Show	GitHub Exploit DB Packet Storm

209064	5.9	MEDIUM Network	redhat	keycloak openstack	A flaw was found in Keycloak in versions before 10.0.0, where it does not perform the TLS hostname verification while sending emails using the SMTP server. This flaw allows an attacker to perform a m…	CWE-295 Improper Certificate Validation	CVE-2020-1758	2024-11-21 14:11	2020-05-16	Show	GitHub Exploit DB Packet Storm

209065	7.1	HIGH Local	huawei	honor_view_20_firmware honor_20_firmware honor_20_pro_firmware honor_magic2_firmware	Honor 20;HONOR 20 PRO;Honor Magic2;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30 Pro;Honor View 20 smartphones with versions earlier than 10.0.0.187(C00E60R4P11); versions earlier than 10.0.0.187(C00E60R4P1…	CWE-125 Out-of-bounds Read	CVE-2020-1808	2024-11-21 14:11	2020-05-15	Show	GitHub Exploit DB Packet Storm

209066	4.7	MEDIUM Local	apache	flink	A vulnerability in Apache Flink (1.1.0 to 1.1.5, 1.2.0 to 1.2.1, 1.3.0 to 1.3.3, 1.4.0 to 1.4.2, 1.5.0 to 1.5.6, 1.6.0 to 1.6.4, 1.7.0 to 1.7.2, 1.8.0 to 1.8.3, 1.9.0 to 1.9.2, 1.10.0) where, when ru…	NVD-CWE-noinfo	CVE-2020-1960	2024-11-21 14:11	2020-05-15	Show	GitHub Exploit DB Packet Storm

209067	6.1	MEDIUM Network	apache oracle	activemq flexcube_private_banking enterprise_repository communications_element_manager communications_diameter_signaling_router communications_session_report_manager communications_…	In Apache ActiveMQ 5.0.0 to 5.15.11, the webconsole admin GUI is open to XSS, in the view that lists the contents of a queue.	CWE-79 Cross-site Scripting	CVE-2020-1941	2024-11-21 14:11	2020-05-15	Show	GitHub Exploit DB Packet Storm

209068	6.3	MEDIUM Local	apache canonical fedoraproject opensuse oracle	ant ubuntu_linux fedora leap flexcube_investor_servicing flexcube_private_banking primavera_unifier retail_integration_bus retail_store_inventory_management enterprise_repo…	Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-1945	2024-11-21 14:11	2020-05-15	Show	GitHub Exploit DB Packet Storm

209069	6.1	MEDIUM Network	paloaltonetworks	pan-os	An open redirection vulnerability in the GlobalProtect component of Palo Alto Networks PAN-OS allows an attacker to specify an arbitrary redirection target away from the trusted GlobalProtect gateway…	CWE-601 Open Redirect	CVE-2020-1997	2024-11-21 14:11	2020-05-14	Show	GitHub Exploit DB Packet Storm

209070	8.8	HIGH Network	paloaltonetworks	pan-os	An improper authorization vulnerability in PAN-OS that mistakenly uses the permissions of local linux users instead of the intended SAML permissions of the account when the username is shared for the…	CWE-863 Incorrect Authorization	CVE-2020-1998	2024-11-21 14:11	2020-05-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed