Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227021 4.3 警告 Simple Invoices - SimpleInvoices におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4932 2013-01-4 16:16 2012-12-28 Show GitHub Exploit DB Packet Storm
227022 5 警告 ModSecurity - Apache HTTP Server 用 mod_security2 モジュールにおけるルールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4528 2013-01-4 16:14 2012-10-15 Show GitHub Exploit DB Packet Storm
227023 4.3 警告 MediaWiki - MediaWiki 用 RSS Reader 拡張機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6453 2013-01-4 14:54 2012-12-31 Show GitHub Exploit DB Packet Storm
227024 4.3 警告 Cerberus, LLC - Cerberus FTP Server の管理用 Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6339 2013-01-4 14:51 2012-12-11 Show GitHub Exploit DB Packet Storm
227025 6.5 警告 Open Constructor - Open Constructor における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-3873 2013-01-4 14:47 2012-12-28 Show GitHub Exploit DB Packet Storm
227026 4.3 警告 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3872 2013-01-4 14:46 2012-12-28 Show GitHub Exploit DB Packet Storm
227027 3.5 注意 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3871 2013-01-4 14:22 2012-12-28 Show GitHub Exploit DB Packet Storm
227028 3.5 注意 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3870 2013-01-4 14:22 2012-12-28 Show GitHub Exploit DB Packet Storm
227029 3.3 注意 サムスン - 複数の Samsung Galaxy デバイス上の Android 用 SamsungDive におけるデバイスの発見を妨害される脆弱性 CWE-200
情報漏えい 		CVE-2012-6337 2013-01-4 14:07 2012-12-31 Show GitHub Exploit DB Packet Storm
227030 3.3 注意 Lookout Mobile Security - Lookout の端末捜索機能における任意の位置データに偽装される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6336 2013-01-4 14:04 2012-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215031 7.5 HIGH
Network 		inductiveautomation ignition_gateway The affected product lacks proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10644 2024-11-21 13:55 2020-06-10 Show GitHub Exploit DB Packet Storm
215032 8.2 HIGH
Network 		perl
fedoraproject
opensuse
oracle 		perl
fedora
leap
communications_eagle_lnp_application_processor
sd-wan_edge
enterprise_manager_base_platform
communications_billing_and_revenue_management
communications_offline_… 		Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-10543 2024-11-21 13:55 2020-06-5 Show GitHub Exploit DB Packet Storm
215033 5.5 MEDIUM
Local 		qemu qemu A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generatio… NVD-CWE-Other
CVE-2020-10702 2024-11-21 13:55 2020-06-5 Show GitHub Exploit DB Packet Storm
215034 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated snippets.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, gr… CWE-89
SQL Injection 		CVE-2020-10549 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
215035 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated devices.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, gra… CWE-89
SQL Injection 		CVE-2020-10548 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
215036 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to late… CWE-89
SQL Injection 		CVE-2020-10547 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
215037 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral mo… CWE-89
SQL Injection 		CVE-2020-10546 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
215038 6.0 MEDIUM
Network 		linuxfoundation
redhat
fedoraproject 		cni_network_plugins
enterprise_linux
fedora
openshift_container_platform 		A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle (MitM) attacks. A m… NVD-CWE-Other
CVE-2020-10749 2024-11-21 13:55 2020-06-3 Show GitHub Exploit DB Packet Storm
215039 9.8 CRITICAL
Network 		github github An improper access control vulnerability was identified in the GitHub Enterprise Server API that allowed an organization member to escalate permissions and gain access to unauthorized repositories wi… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-10516 2024-11-21 13:55 2020-06-3 Show GitHub Exploit DB Packet Storm
215040 7.5 HIGH
Network 		istio istio Istio 1.4.x before 1.4.9 and Istio 1.5.x before 1.5.4 contain the following vulnerability when telemetry v2 is enabled: by sending a specially crafted packet, an attacker could trigger a Null Pointer… CWE-476
 NULL Pointer Dereference 		CVE-2020-10739 2024-11-21 13:55 2020-06-2 Show GitHub Exploit DB Packet Storm