Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248681 5 警告 Drupal - Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2922 2012-05-23 19:33 2012-05-21 Show GitHub Exploit DB Packet Storm
248682 3.5 注意 Geoff Davies - Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2340 2012-05-23 19:12 2012-05-21 Show GitHub Exploit DB Packet Storm
248683 4.3 警告 Nancy Wichmann - Drupal 用 Glossary モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2339 2012-05-23 19:00 2012-05-21 Show GitHub Exploit DB Packet Storm
248684 2.6 注意 Ishmael Sanchez - Drupal 用 Aberdeen テーマの aberdeen_breadcrumb 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2907 2012-05-23 18:57 2012-05-21 Show GitHub Exploit DB Packet Storm
248685 5 警告 mark pilgrim - Universal Feed Parser におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2921 2012-05-23 18:50 2012-05-2 Show GitHub Exploit DB Packet Storm
248686 4.3 警告 Weston Ruter - WordPress 用 User Photo プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2920 2012-05-23 18:48 2012-05-21 Show GitHub Exploit DB Packet Storm
248687 4.3 警告 Andrew Killen - WordPress 用 Share and Follow プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2917 2012-05-23 18:47 2012-05-21 Show GitHub Exploit DB Packet Storm
248688 4.3 警告 dlo - WordPress 用 Sabre プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2916 2012-05-23 18:46 2012-05-21 Show GitHub Exploit DB Packet Storm
248689 4.3 警告 Hind - WordPress 用 Leaflet プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2913 2012-05-23 18:41 2012-05-21 Show GitHub Exploit DB Packet Storm
248690 4.3 警告 Kolja Schleich - WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2912 2012-05-23 18:25 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211231 5.3 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! through 3.9.19. Missing validation checks on the usergroups table object can result in a broken site configuration. CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-15699 2024-11-21 14:06 2020-07-16 Show GitHub Exploit DB Packet Storm
211232 5.3 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! through 3.9.19. Inadequate filtering on the system information screen could expose Redis or proxy credentials NVD-CWE-noinfo
CVE-2020-15698 2024-11-21 14:06 2020-07-16 Show GitHub Exploit DB Packet Storm
211233 4.3 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! through 3.9.19. Internal read-only fields in the User table class could be modified by users. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-15697 2024-11-21 14:06 2020-07-16 Show GitHub Exploit DB Packet Storm
211234 6.1 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! through 3.9.19. Lack of input filtering and escaping allows XSS attacks in mod_random_image. CWE-79
Cross-site Scripting 		CVE-2020-15696 2024-11-21 14:06 2020-07-16 Show GitHub Exploit DB Packet Storm
211235 6.3 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! through 3.9.19. A missing token check in the remove request section of com_privacy causes a CSRF vulnerability. CWE-352
 Origin Validation Error 		CVE-2020-15695 2024-11-21 14:06 2020-07-16 Show GitHub Exploit DB Packet Storm
211236 6.1 MEDIUM
Network 		rosariosis rosariosis RosarioSIS through 6.8-beta allows modules/Custom/NotifyParents.php XSS because of the href attributes for AddStudents.php and User.php. CWE-79
Cross-site Scripting 		CVE-2020-15721 2024-11-21 14:06 2020-07-15 Show GitHub Exploit DB Packet Storm
211237 6.8 MEDIUM
Network 		dogtagpki dogtagpki In Dogtag PKI through 10.8.3, the pki.client.PKIConnection class did not enable python-requests certificate validation. Since the verify parameter was hard-coded in all request functions, it was not … CWE-295
Improper Certificate Validation  		CVE-2020-15720 2024-11-21 14:06 2020-07-14 Show GitHub Exploit DB Packet Storm
211238 4.2 MEDIUM
Network 		openldap
redhat
opensuse
mcafee
oracle 		openldap
enterprise_linux
leap
policy_auditor
blockchain_platform 		libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subject… CWE-295
Improper Certificate Validation  		CVE-2020-15719 2024-11-21 14:06 2020-07-14 Show GitHub Exploit DB Packet Storm
211239 8.8 HIGH
Network 		misp misp In MISP before 2.4.129, setting a favourite homepage was not CSRF protected. CWE-352
 Origin Validation Error 		CVE-2020-15711 2024-11-21 14:06 2020-07-14 Show GitHub Exploit DB Packet Storm
211240 7.5 HIGH
Network 		embedthis appweb Appweb before 7.2.2 and 8.x before 8.1.0, when built with CGI support, mishandles an HTTP request with a Range header that lacks an exact range. This may result in a NULL pointer dereference and caus… CWE-476
 NULL Pointer Dereference 		CVE-2020-15689 2024-11-21 14:06 2020-07-13 Show GitHub Exploit DB Packet Storm