Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248871	9.3	危険	アップル	-	Apple iTunes におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0677	2012-06-14 11:51	2012-06-12	Show	GitHub Exploit DB Packet Storm

248872	7.2	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR のインストーラにおける権限を取得される脆弱性	CWE-Other その他	CVE-2012-2040	2012-06-13 16:43	2012-06-8	Show	GitHub Exploit DB Packet Storm

248873	10	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-2039	2012-06-13 16:42	2012-06-8	Show	GitHub Exploit DB Packet Storm

248874	2.6	注意	アドビシステムズ	-	Flash Player における同一生成元ポリシー実装不備の脆弱性	CWE-Other その他	CVE-2012-2038	2012-06-13 16:32	2012-06-11	Show	GitHub Exploit DB Packet Storm

248875	10	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-2037	2012-06-13 16:30	2012-06-8	Show	GitHub Exploit DB Packet Storm

248876	10	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2036	2012-06-13 16:29	2012-06-8	Show	GitHub Exploit DB Packet Storm

248877	10	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2035	2012-06-13 16:27	2012-06-8	Show	GitHub Exploit DB Packet Storm

248878	10	危険	アドビシステムズ	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-2034	2012-06-13 16:25	2012-06-8	Show	GitHub Exploit DB Packet Storm

248879	6.8	警告	アップル	-	Apple 製品の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0672	2012-06-13 16:22	2012-05-8	Show	GitHub Exploit DB Packet Storm

248880	5.1	警告	BMC Software	-	BMC Identity Management Suite にクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2959	2012-06-13 11:44	2012-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213091	6.1	MEDIUM Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194.	CWE-79 Cross-site Scripting	CVE-2020-15575	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213092	7.5	HIGH Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.	NVD-CWE-noinfo	CVE-2020-15574	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213093	6.1	MEDIUM Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421.	CWE-79 Cross-site Scripting	CVE-2020-15573	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213094	5.3	MEDIUM Network	gitlab	gitlab	GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.	NVD-CWE-noinfo	CVE-2020-15525	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213095	5.4	MEDIUM Network	faceted_search_project	faceted_search	The ke_search (aka Faceted Search) extension through 2.8.2, and 3.x through 3.1.3, for TYPO3 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-15517	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213096	5.4	MEDIUM Network	mm_forum_project	mm_forum	The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2020-15516	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213097	5.4	MEDIUM Network	jh_captcha_project	jh_captcha	The jh_captcha extension through 2.1.3, and 3.x through 3.0.2, for TYPO3 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-15514	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213098	5.3	MEDIUM Network	mittwald	typo3_forum	The typo3_forum extension before 1.2.1 for TYPO3 has Incorrect Access Control.	CWE-863 Incorrect Authorization	CVE-2020-15513	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213099	6.5	MEDIUM Adjacent	nordicsemi	dfu_library android_ble_library	Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-15509	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

213100	5.3	MEDIUM Network	venki	supravizio_bpm	A user enumeration vulnerability flaw was found in Venki Supravizio BPM 10.1.2. This issue occurs during password recovery, where a difference in error messages could allow an attacker to determine i…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-15392	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm