Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227391 6.4 警告 Sensio Labs - Symfony における URI の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6431 2012-12-28 15:18 2012-12-20 Show GitHub Exploit DB Packet Storm
227392 4.3 警告 Sebastian Heinlein
Canonical		 - Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0962 2012-12-28 15:03 2012-12-17 Show GitHub Exploit DB Packet Storm
227393 2.1 注意 Debian - Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-0961 2012-12-28 14:59 2012-12-12 Show GitHub Exploit DB Packet Storm
227394 4.3 警告 PS Project Management Team - Firefox 用 Unity integration 拡張機能における同一生成元ポリシーを回避される脆弱性 CWE-DesignError
CVE-2012-0958 2012-12-28 14:58 2012-10-23 Show GitHub Exploit DB Packet Storm
227395 - - Ruby on Rails project - ** 削除 ** Ruby on Rails 用 Authlogic gem における SQL インジェクションの脆弱性 - CVE-2012-5664 2012-12-28 14:22 2012-12-26 Show GitHub Exploit DB Packet Storm
227396 4.3 警告 Opera Software ASA - Android 版 Opera Mini ウェブブラウザおよび Opera Mobile ウェブブラウザにおいて任意のスクリプトが実行される脆弱性 CWE-200
情報漏えい 		CVE-2012-5180 2012-12-28 14:17 2012-12-20 Show GitHub Exploit DB Packet Storm
227397 2.6 注意 WordPress.org - WordPress における有効なセッション識別子を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5868 2012-12-28 11:58 2012-12-27 Show GitHub Exploit DB Packet Storm
227398 4.9 警告 Linux - Linux Kernel と一緒に配布される hypervkvpd におけるサービス運用妨害 (Daemon Exit) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-5532 2012-12-28 11:44 2012-12-22 Show GitHub Exploit DB Packet Storm
227399 5 警告 シトリックス・システムズ - Citrix XenDesktop Virtual Desktop Agent における USB デバイスへのアクセス権を保持される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6314 2012-12-28 11:20 2012-12-11 Show GitHub Exploit DB Packet Storm
227400 9.3 危険 シトリックス・システムズ - Citrix XenApp の XML Service インターフェースにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5161 2012-12-28 11:08 2012-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202541 8.8 HIGH
Network 		magmi_project magmi Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens. RCE (via phpcli command) is possible in the event that a CSRF is leveraged against an existing admin session fo… CWE-352
 Origin Validation Error 		CVE-2020-5776 2024-11-21 14:34 2020-09-2 Show GitHub Exploit DB Packet Storm
202542 6.7 MEDIUM
Local 		pivotal_software
vmware 		rabbitmq RabbitMQ versions 3.8.x prior to 3.8.7 are prone to a Windows-specific binary planting security vulnerability that allows for arbitrary code execution. An attacker with write privileges to the Rabbit… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-5419 2024-11-21 14:34 2020-09-1 Show GitHub Exploit DB Packet Storm
202543 6.1 MEDIUM
Network 		riken xoonips Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5625 2024-11-21 14:34 2020-08-28 Show GitHub Exploit DB Packet Storm
202544 9.8 CRITICAL
Network 		riken xoonips SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2020-5624 2024-11-21 14:34 2020-08-28 Show GitHub Exploit DB Packet Storm
202545 6.1 MEDIUM
Network 		nitori nitori NITORI App for Android versions 6.0.4 and earlier and NITORI App for iOS versions 6.0.2 and earlier allow remote attackers to lead a user to access an arbitrary website via the vulnerable App. As a r… CWE-601
Open Redirect 		CVE-2020-5623 2024-11-21 14:34 2020-08-28 Show GitHub Exploit DB Packet Storm
202546 4.3 MEDIUM
Network 		netgear gs716tv2_firmware
gs724tv3_firmware 		Cross-site request forgery (CSRF) vulnerability in NETGEAR switching hubs (GS716Tv2 Firmware version 5.4.2.30 and earlier, and GS724Tv3 Firmware version 5.4.2.30 and earlier) allow remote attackers t… CWE-352
 Origin Validation Error 		CVE-2020-5621 2024-11-21 14:34 2020-08-28 Show GitHub Exploit DB Packet Storm
202547 5.3 MEDIUM
Network 		dell emc_powerscale_onefs
emc_isilon 		Dell EMC Isilon OneFS version 8.2.2 and Dell EMC PowerScale OneFS version 9.0.0 contains a buffer overflow vulnerability in the Likewise component. A remote unauthenticated malicious attacker may pot… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-5383 2024-11-21 14:34 2020-08-28 Show GitHub Exploit DB Packet Storm
202548 3.1 LOW
Local 		f5 big-ip_application_security_manager In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, BIG-IP ASM Configuration utility CSRF protection token can be reused multiple tim… CWE-352
 Origin Validation Error 		CVE-2020-5928 2024-11-21 14:34 2020-08-27 Show GitHub Exploit DB Packet Storm
202549 6.1 MEDIUM
Network 		f5 big-ip_application_security_manager In versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, and 14.1.0-14.1.2.6, BIG-IP ASM Configuration utility Stored-Cross Site Scripting. CWE-79
Cross-site Scripting 		CVE-2020-5927 2024-11-21 14:34 2020-08-27 Show GitHub Exploit DB Packet Storm
202550 5.3 MEDIUM
Network 		f5 big-ip_access_policy_manager In BIG-IP APM versions 12.1.0-12.1.5.1 and 11.6.1-11.6.5.2, RADIUS authentication leaks memory when the username for authentication is not set. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-5924 2024-11-21 14:34 2020-08-27 Show GitHub Exploit DB Packet Storm