Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227001	6.8	警告	e107.org	-	e107 の e107_admin/download.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6434	2013-01-7 16:26	2013-01-3	Show	GitHub Exploit DB Packet Storm

227002	6.8	警告	e107.org	-	e107 の e107_admin/newspost.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6433	2013-01-7 16:15	2013-01-3	Show	GitHub Exploit DB Packet Storm

227003	6	警告	MoinMoin	-	MoinMoin におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-6495	2013-01-7 16:04	2012-12-29	Show	GitHub Exploit DB Packet Storm

227004	4.3	警告	MoinMoin	-	MoinMoin の theme/__init__.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6082	2013-01-7 16:02	2012-12-29	Show	GitHub Exploit DB Packet Storm

227005	6	警告	MoinMoin	-	MoinMoin における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2012-6081	2013-01-7 16:02	2012-12-29	Show	GitHub Exploit DB Packet Storm

227006	6.4	警告	MoinMoin	-	MoinMoin の AttachFile アクションにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-6080	2013-01-7 15:53	2013-01-3	Show	GitHub Exploit DB Packet Storm

227007	4.3	警告	ownCloud	-	ownCloud の bookmarks/js/bookmarks.js におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5666	2013-01-7 15:52	2012-12-18	Show	GitHub Exploit DB Packet Storm

227008	4.3	警告	ownCloud	-	ownCloud における user_webdavauth および user_ldap の設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5665	2013-01-7 15:40	2012-12-18	Show	GitHub Exploit DB Packet Storm

227009	5	警告	Steven Jones	-	Drupal 用 Context モジュールにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5655	2013-01-7 15:35	2012-12-19	Show	GitHub Exploit DB Packet Storm

227010	4.3	警告	Nodewords	-	Drupal 用 Nodewords: D6 Meta Tags モジュールにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-5654	2013-01-7 15:22	2012-12-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215081	7.8	HIGH Local	malwarebytes	adwcleaner	An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0.3 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded.	CWE-426 Untrusted Search Path	CVE-2020-11507	2024-11-21 13:58	2020-04-7	Show	GitHub Exploit DB Packet Storm

215082	6.0	MEDIUM Local	linux canonical	linux_kernel ubuntu_linux	An issue was discovered in the Linux kernel through 5.6.2. mpol_parse_str in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, …	CWE-787 Out-of-bounds Write	CVE-2020-11565	2024-11-21 13:58	2020-04-6	Show	GitHub Exploit DB Packet Storm

215083	9.8	CRITICAL Network	gpac	gpac	An issue was discovered in libgpac.a in GPAC 0.8.0, as demonstrated by MP4Box. audio_sample_entry_Read in isomedia/box_code_base.c does not properly decide when to make gf_isom_box_del calls. This le…	CWE-416 Use After Free	CVE-2020-11558	2024-11-21 13:58	2020-04-6	Show	GitHub Exploit DB Packet Storm

215084	9.8	CRITICAL Network	search_meter_project	search_meter	The Search Meter plugin through 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection if a wp-admin…	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2020-11548	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215085	5.3	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal stat…	CWE-306 Missing Authentication for Critical Function	CVE-2020-11547	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215086	9.8	CRITICAL Network	3xlogic	infinias_eidc32_firmware infinias_eidc32_web	3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring.	CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information	CVE-2020-11542	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215087	5.5	MEDIUM Local	ivanti	workspace_control	Ivanti Workspace Control before 10.4.30.0, when SCCM integration is enabled, allows local users to obtain sensitive information (keying material).	NVD-CWE-noinfo	CVE-2020-11533	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215088	6.1	MEDIUM Network	getgrav	grav	Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x.	CWE-601 Open Redirect	CVE-2020-11529	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215089	7.5	HIGH Network	bit2spr_project	bit2spr	bit2spr 1992-06-07 has a stack-based buffer overflow (129-byte write) in conv_bitmap in bit2spr.c via a long line in a bitmap file.	CWE-787 Out-of-bounds Write	CVE-2020-11528	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

215090	7.5	HIGH Network	zohocorp	manageengine_opmanager	In Zoho ManageEngine OpManager before 12.4.181, an unauthenticated remote attacker can send a specially crafted URI to read arbitrary files.	NVD-CWE-noinfo	CVE-2020-11527	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed