Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248761 4.9 警告 IBM - IBM AIX および VIOS の socketpair 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2192 2012-06-21 15:35 2012-03-2 Show GitHub Exploit DB Packet Storm
248762 4.3 警告 IBM - IBM DB2 の DRDA モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-2180 2012-06-21 15:33 2012-03-23 Show GitHub Exploit DB Packet Storm
248763 9.3 危険 IBM - IBM Lotus iNotesr の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2175 2012-06-21 15:29 2012-05-31 Show GitHub Exploit DB Packet Storm
248764 9.3 危険 IBM - IBM Lotus Notes の URL ハンドラにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2174 2012-06-21 15:27 2012-06-15 Show GitHub Exploit DB Packet Storm
248765 5 警告 IBM - IBM Security AppScan Source の ODBC ドライバにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-2173 2012-06-21 15:25 2012-06-20 Show GitHub Exploit DB Packet Storm
248766 4.3 警告 IBM - IBM WebSphere Application Server における重要なクライアント情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2170 2012-06-21 15:22 2012-05-29 Show GitHub Exploit DB Packet Storm
248767 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0720 2012-06-21 15:13 2012-05-29 Show GitHub Exploit DB Packet Storm
248768 2.6 注意 IBM - IBM WebSphere Application Server における X.509 クライアント証明書の認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2012-0717 2012-06-21 15:06 2012-05-29 Show GitHub Exploit DB Packet Storm
248769 4.3 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0716 2012-06-21 15:01 2012-05-29 Show GitHub Exploit DB Packet Storm
248770 5 警告 Plugin Newsletter - WordPress 用 Plugin Newsletter プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-3588 2012-06-21 14:33 2012-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210681 5.3 MEDIUM
Adjacent 		apache
oracle
netapp 		cxf
peoplesoft_enterprise_peopletools
communications_diameter_signaling_router
communications_session_report_manager
communications_element_manager
enterprise_manager_base_platform
 Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationMa… NVD-CWE-noinfo
CVE-2020-1954 2024-11-21 14:11 2020-04-2 Show GitHub Exploit DB Packet Storm
210682 5.3 MEDIUM
Network 		apache
fedoraproject
debian
canonical
opensuse
oracle 		http_server
fedora
debian_linux
ubuntu_linux
leap
instantis_enterprisetrack
communications_element_manager
enterprise_manager_ops_center
communications_session_report_manager<… 		In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server. CWE-908
 Use of Uninitialized Resource 		CVE-2020-1934 2024-11-21 14:11 2020-04-2 Show GitHub Exploit DB Packet Storm
210683 6.1 MEDIUM
Network 		apache sling_cms Scripts in Sling CMS before 0.16.0 do not property escape the Sling Selector from URLs when generating navigational elements for the administrative consoles and are vulnerable to reflected XSS attack… CWE-79
Cross-site Scripting 		CVE-2020-1949 2024-11-21 14:11 2020-04-2 Show GitHub Exploit DB Packet Storm
210684 6.1 MEDIUM
Network 		apache ofbiz Data sent with contentId to /control/stream is not sanitized, allowing XSS attacks in Apache OFBiz 16.11.01 to 16.11.07. CWE-79
Cross-site Scripting 		CVE-2020-1943 2024-11-21 14:11 2020-04-2 Show GitHub Exploit DB Packet Storm
210685 7.8 HIGH
Local 		systemd_project
redhat
debian 		systemd
enterprise_linux
openshift_container_platform
discovery
migration_toolkit
ceph_storage
debian_linux 		A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while handling dbus messages. A local unprivileged attacker can abuse… CWE-416
 Use After Free 		CVE-2020-1712 2024-11-21 14:11 2020-04-1 Show GitHub Exploit DB Packet Storm
210686 8.1 HIGH
Network 		otrs otrs An attacker with the ability to generate session IDs or password reset tokens, either by being able to authenticate or by exploiting OSA-2020-09, may be able to predict other users session IDs, passw… CWE-331
 Insufficient Entropy 		CVE-2020-1773 2024-11-21 14:11 2020-03-27 Show GitHub Exploit DB Packet Storm
210687 7.5 HIGH
Network 		otrs
opensuse
debian 		otrs
leap
backports_sle
debian_linux 		It's possible to craft Lost Password requests with wildcards in the Token value, which allows attacker to retrieve valid Token(s), generated by users which already requested new passwords. This issue… NVD-CWE-noinfo
CVE-2020-1772 2024-11-21 14:11 2020-03-27 Show GitHub Exploit DB Packet Storm
210688 5.4 MEDIUM
Network 		otrs otrs Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter enc… CWE-79
Cross-site Scripting 		CVE-2020-1771 2024-11-21 14:11 2020-03-27 Show GitHub Exploit DB Packet Storm
210689 4.3 MEDIUM
Network 		otrs
opensuse
debian 		otrs
leap
backports_sle
debian_linux 		Support bundle generated files could contain sensitive information that might be unwanted to be disclosed. This issue affects: ((OTRS)) Community Edition: 5.0.41 and prior versions, 6.0.26 and prior … CWE-200
Information Exposure 		CVE-2020-1770 2024-11-21 14:11 2020-03-27 Show GitHub Exploit DB Packet Storm
210690 4.3 MEDIUM
Network 		otrs
opensuse 		otrs
leap
backports_sle 		In the login screens (in agent and customer interface), Username and Password fields use autocomplete, which might be considered as security issue. This issue affects: ((OTRS)) Community Edition: 5.0… NVD-CWE-noinfo
CVE-2020-1769 2024-11-21 14:11 2020-03-27 Show GitHub Exploit DB Packet Storm