Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248891 9.3 危険 stunnel - stunnel におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2940 2012-03-27 18:43 2011-08-18 Show GitHub Exploit DB Packet Storm
248892 4.3 警告 Ruby on Rails project - Ruby on Rails の activesupport/lib/active_support/core_ext/string/output_safety.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2932 2012-03-27 18:43 2011-08-29 Show GitHub Exploit DB Packet Storm
248893 4.3 警告 Ruby on Rails project - Ruby on Rails の strip_tags ヘルパーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2931 2012-03-27 18:43 2011-08-16 Show GitHub Exploit DB Packet Storm
248894 7.5 危険 Ruby on Rails project - Ruby on Rails の quote_table_name メソッドにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2930 2012-03-27 18:43 2011-08-16 Show GitHub Exploit DB Packet Storm
248895 5 警告 Ruby on Rails project - Ruby on Rails のテンプレート選択機能における任意のビューを表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2929 2012-03-27 18:43 2011-08-17 Show GitHub Exploit DB Packet Storm
248896 4.9 警告 Linux - Linux kernel の befs_follow_link 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2928 2012-03-27 18:43 2011-08-29 Show GitHub Exploit DB Packet Storm
248897 7.5 危険 Adaptive Computing - Terascale Open-Source Resource におけるホストベースの認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-2907 2012-03-27 18:43 2011-08-15 Show GitHub Exploit DB Packet Storm
248898 6.8 警告 rhythm - tcptrack におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2903 2012-03-27 18:43 2011-09-2 Show GitHub Exploit DB Packet Storm
248899 7.5 危険 shttpd
yaSSL
valenok		 - Mongoose などの put_dir 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2900 2012-03-27 18:43 2011-08-5 Show GitHub Exploit DB Packet Storm
248900 5.1 警告 アップル
SWI-Prolog
The GIMP Team		 - CUPS などの製品で使用される LZW デコンプレッサにおける無限ループの脆弱性 CWE-119
バッファエラー 		CVE-2011-2896 2012-03-27 18:43 2011-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198971 7.5 HIGH
Network 		mozilla firefox For native-to-JS bridging, the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token was being used for JS-to-native also, but it isn't need… CWE-200
Information Exposure 		CVE-2020-6830 2024-11-21 14:36 2020-05-27 Show GitHub Exploit DB Packet Storm
198972 8.1 HIGH
Network 		hpe nimbleos Potential remote access security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to access and modify sensitive information on the system. … NVD-CWE-noinfo
CVE-2020-7139 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
198973 8.8 HIGH
Network 		hpe nimbleos Potential remote code execution security vulnerabilities have been identified with HPE Nimble Storage systems that could be exploited by an attacker to gain elevated privileges on the array. The foll… NVD-CWE-noinfo
CVE-2020-7138 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
198974 6.7 MEDIUM
Local 		hpe superdome_flex_server_firmware A validation issue in HPE Superdome Flex's RMC component may allow local elevation of privilege. Apply HPE Superdome Flex Server version 3.25.46 or later to resolve this issue. CWE-20
 Improper Input Validation  		CVE-2020-7137 2024-11-21 14:36 2020-05-20 Show GitHub Exploit DB Packet Storm
198975 6.1 MEDIUM
Network 		pcs dexicon_enterprise PCS DEXICON 3.4.1 allows XSS via the loginName parameter in login_action.jsp. CWE-79
Cross-site Scripting 		CVE-2020-6956 2024-11-21 14:36 2020-05-19 Show GitHub Exploit DB Packet Storm
198976 6.5 MEDIUM
Adjacent 		google
apple 		android
iphone_os
ipados
mac_os_x 		Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) shou… NVD-CWE-noinfo
CVE-2020-6616 2024-11-21 14:36 2020-05-9 Show GitHub Exploit DB Packet Storm
198977 7.8 HIGH
Local 		mcafee active_response Privilege Escalation vulnerability in McAfee Active Response (MAR) for Linux prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not be… CWE-269
 Improper Privilege Management 		CVE-2020-7290 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
198978 7.8 HIGH
Local 		mcafee active_response Privilege Escalation vulnerability in McAfee Active Response (MAR) for Windows prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not … CWE-269
 Improper Privilege Management 		CVE-2020-7289 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
198979 7.8 HIGH
Local 		mcafee endpoint_detection_and_response Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Mac prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing us… CWE-269
 Improper Privilege Management 		CVE-2020-7288 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm
198980 7.8 HIGH
Local 		mcafee endpoint_detection_and_response Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Linux prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing … CWE-269
 Improper Privilege Management 		CVE-2020-7287 2024-11-21 14:36 2020-05-8 Show GitHub Exploit DB Packet Storm