Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248671 7.5 危険 SIRINI.NET - GR Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5091 2012-05-25 11:53 2012-05-24 Show GitHub Exploit DB Packet Storm
248672 6.4 警告 SIRINI.NET - GR Board におけるデータを変更または削除される脆弱性 CWE-287
不適切な認証 		CVE-2011-5090 2012-05-25 11:52 2012-05-24 Show GitHub Exploit DB Packet Storm
248673 5 警告 Tornado - Tornado の tornado.web.RequestHandler.set_header 関数における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2374 2012-05-25 11:26 2012-05-23 Show GitHub Exploit DB Packet Storm
248674 6.4 警告 Gliffy - Atlassian JIRA および Atlassian Confluence 用 Gliffy プラグインにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2928 2012-05-24 13:42 2012-05-22 Show GitHub Exploit DB Packet Storm
248675 4 警告 TM Software - Atlassian JIRA 用 TM Software Tempo プラグインにおけるサービス運用妨害 (リソース消費)の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2927 2012-05-24 13:41 2012-05-22 Show GitHub Exploit DB Packet Storm
248676 4.3 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2759 2012-05-24 13:38 2012-05-22 Show GitHub Exploit DB Packet Storm
248677 4.3 警告 Schneider Electric - Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1990 2012-05-24 12:32 2012-05-22 Show GitHub Exploit DB Packet Storm
248678 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
248679 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
248680 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2923 2012-05-23 19:34 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199141 6.7 MEDIUM
Local 		lenovo 130-14ast_firmware
130-14ikb_firmware
130-15ast_firmware
130-15ikb_firmware
320c-15ikb_firmware
330-14igm_firmware
330-14ikb_firmware
330-14ikbr_firmware
330-15arr_firmware 		A potential vulnerability in the SMI callback function used in the System Lock Preinstallation driver in some Lenovo Notebook and ThinkStation models may allow arbitrary code execution. NVD-CWE-noinfo
CVE-2020-8321 2024-11-21 14:38 2020-06-10 Show GitHub Exploit DB Packet Storm
199142 6.8 MEDIUM
Physics 		lenovo thinkpad_11e_yoga_gen_6_firmware
thinkpad_11e_firmware
thinkpad_yoga_11e_3rd_gen_firmware
thinkpad_yoga_11e_4th_gen_firmware
thinkpad_yoga_11e_5th_gen_firmware
thinkpad_13_2nd_gen_firm… 		An internal shell was included in BIOS image in some ThinkPad models that could allow escalation of privilege. CWE-269
 Improper Privilege Management 		CVE-2020-8320 2024-11-21 14:38 2020-06-10 Show GitHub Exploit DB Packet Storm
199143 9.9 CRITICAL
Network 		nextcloud talk A too lax check in Nextcloud Talk 6.0.4, 7.0.2 and 8.0.7 allowed a code injection when a not correctly sanitized talk command was added by an administrator. CWE-94
Code Injection 		CVE-2020-8180 2024-11-21 14:38 2020-06-8 Show GitHub Exploit DB Packet Storm
199144 7.4 HIGH
Network 		nodejs
oracle 		node.js
graalvm
banking_extensibility_workbench
mysql_cluster
blockchain_platform 		TLS session reuse can lead to host certificate verification bypass in node version < 12.18.0 and < 14.4.0. CWE-295
Improper Certificate Validation  		CVE-2020-8172 2024-11-21 14:38 2020-06-8 Show GitHub Exploit DB Packet Storm
199145 7.1 HIGH
Local 		bitdefender antivirus_2020 A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This… CWE-59
Link Following 		CVE-2020-8103 2024-11-21 14:38 2020-06-6 Show GitHub Exploit DB Packet Storm
199146 5.5 MEDIUM
Local 		abb device_library_wizard Insecure storage of sensitive information in ABB Device Library Wizard versions 6.0.X, 6.0.3.1 and 6.0.3.2 allows unauthenticated low privilege user to read file that contains confidential data CWE-922
 Insecure Storage of Sensitive Information 		CVE-2020-8482 2024-11-21 14:38 2020-05-30 Show GitHub Exploit DB Packet Storm
199147 7.5 HIGH
Network 		lenovo lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware 		A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, p… NVD-CWE-noinfo
CVE-2020-8330 2024-11-21 14:38 2020-05-29 Show GitHub Exploit DB Packet Storm
199148 7.5 HIGH
Network 		lenovo lj4010dn_firmware
lj6700dn_firmware
m8960dnf_firmware 		A denial of service vulnerability was reported in the firmware prior to version 1.01 used in Lenovo Printer LJ4010DN that could be triggered by a remote user sending a crafted packet to the device, c… NVD-CWE-noinfo
CVE-2020-8329 2024-11-21 14:38 2020-05-29 Show GitHub Exploit DB Packet Storm
199149 9.8 CRITICAL
Network 		ui airos We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the… CWE-78
OS Command  		CVE-2020-8171 2024-11-21 14:38 2020-05-27 Show GitHub Exploit DB Packet Storm
199150 6.1 MEDIUM
Network 		ui airos We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the… CWE-79
Cross-site Scripting 		CVE-2020-8170 2024-11-21 14:38 2020-05-27 Show GitHub Exploit DB Packet Storm