Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226931 9 危険 シスコシステムズ - Cisco ATA 187 Analog Telephone Adaptor におけるオペレーティングシステムのコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1111 2013-02-15 19:46 2013-02-6 Show GitHub Exploit DB Packet Storm
226932 5.4 警告 シスコシステムズ - Cisco Catalyst スイッチ上で稼働する Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1100 2013-02-15 19:45 2013-01-30 Show GitHub Exploit DB Packet Storm
226933 4.3 警告 Featurific For WordPress Project - WordPress 用 Featurific For WordPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5265 2013-02-15 19:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226934 4.3 警告 Marcel Brinkkemper - WordPress 用 Lazyest Backup プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5264 2013-02-15 19:10 2013-02-12 Show GitHub Exploit DB Packet Storm
226935 4.3 警告 SAP - SAP NetWeaver におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5263 2013-02-15 19:09 2013-02-12 Show GitHub Exploit DB Packet Storm
226936 7.5 危険 SonicWALL - SonicWALL Aventail における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5262 2013-02-15 19:08 2013-02-12 Show GitHub Exploit DB Packet Storm
226937 4.3 警告 アクシスコミュニケーションズ - AXIS M10 Series Network Cameras M1054 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5261 2013-02-15 19:07 2013-02-12 Show GitHub Exploit DB Packet Storm
226938 4.3 警告 SAP - SAP NetWeaver におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5260 2013-02-15 19:04 2013-02-12 Show GitHub Exploit DB Packet Storm
226939 6.8 警告 OrangeHRM - OrangeHRM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5259 2013-02-15 18:59 2013-02-12 Show GitHub Exploit DB Packet Storm
226940 4.3 警告 OrangeHRM - OrangeHRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5258 2013-02-15 18:58 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208851 9.8 CRITICAL
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower stores and transmits the credentials of third-party services in cleartext. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-25190 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
208852 7.5 HIGH
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in web service for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower does not require users to have strong passwords. CWE-521
Weak Password Requirements  		CVE-2020-25153 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
208853 9.8 CRITICAL
Network 		treck tcp\/ip A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2020-25066 2024-11-21 14:17 2020-12-23 Show GitHub Exploit DB Packet Storm
208854 7.8 HIGH
Local 		supremocontrol supremo Nanosystems SupRemo 4.1.3.2348 allows attackers to obtain LocalSystem access because File Manager can be used to rename Supremo.exe and then upload a Trojan horse with the Supremo.exe filename. CWE-269
 Improper Privilege Management 		CVE-2020-25106 2024-11-21 14:17 2020-12-23 Show GitHub Exploit DB Packet Storm
208855 8.8 HIGH
Network 		logrhythm platform_manager LogRhythm Platform Manager (PM) 7.4.9 has Incorrect Access Control. Users within LogRhythm can be delegated different roles and privileges, intended to limit what data and services they can interact … NVD-CWE-Other
CVE-2020-25096 2024-11-21 14:17 2020-12-17 Show GitHub Exploit DB Packet Storm
208856 8.8 HIGH
Network 		logrhythm platform_manager LogRhythm Platform Manager (PM) 7.4.9 allows CSRF. The Web interface is vulnerable to Cross-site WebSocket Hijacking (CSWH). If a logged-in PM user visits a malicious site in the same browser session… CWE-352
 Origin Validation Error 		CVE-2020-25095 2024-11-21 14:17 2020-12-17 Show GitHub Exploit DB Packet Storm
208857 9.8 CRITICAL
Network 		logrhythm platform_manager LogRhythm Platform Manager 7.4.9 allows Command Injection. To exploit this, an attacker can inject arbitrary program names and arguments into a WebSocket. These are forwarded to any remote server wit… CWE-78
OS Command  		CVE-2020-25094 2024-11-21 14:17 2020-12-17 Show GitHub Exploit DB Packet Storm
208858 7.5 HIGH
Network 		hosteng h0-ecom100_firmware
h2-ecom100_firmware
h4-ecom100_firmware 		The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which ma… CWE-20
 Improper Input Validation  		CVE-2020-25195 2024-11-21 14:17 2020-12-16 Show GitHub Exploit DB Packet Storm
208859 7.5 HIGH
Network 		siemens logo\!_8_bm_firmware A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The password used for authentication for the LOGO! Website and the LOGO! Access Tool is sent in a reco… - CVE-2020-25235 2024-11-21 14:17 2020-12-15 Show GitHub Exploit DB Packet Storm
208860 7.7 HIGH
Local 		siemens logo\!_8_bm_firmware A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The LOGO! program files generated and used by the affected c… - CVE-2020-25234 2024-11-21 14:17 2020-12-15 Show GitHub Exploit DB Packet Storm