Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248901	7.8	危険	infradead	-	OpenConnect におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3291	2012-06-11 15:52	2012-06-7	Show	GitHub Exploit DB Packet Storm

248902	10	危険	Google サムスン日本エイサー	-	複数の製品の Chromebook プラットフォーム上で稼働する Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2012-3290	2012-06-11 15:49	2012-06-4	Show	GitHub Exploit DB Packet Storm

248903	7.5	危険	s9y	-	Serendipity の include/functions_trackbacks.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2762	2012-06-11 15:40	2012-06-7	Show	GitHub Exploit DB Packet Storm

248904	4.3	警告	Sensio Labs	-	SensioLabs Symfony における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2012-2667	2012-06-11 15:39	2012-06-7	Show	GitHub Exploit DB Packet Storm

248905	5.5	警告	MIT Kerberos	-	MIT Kerberos の kadmin プロトコルの実装における文字列属性を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1012	2012-06-11 15:22	2012-02-21	Show	GitHub Exploit DB Packet Storm

248906	9.3	危険	ソニー株式会社	-	複数の Sony 製品の Wireless Manager ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0985	2012-06-11 15:18	2012-06-7	Show	GitHub Exploit DB Packet Storm

248907	6.8	警告	Konstanty Bialkowski	-	libmodplug の CSoundFile::ReadAMS2 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-2915	2012-06-11 15:14	2012-06-7	Show	GitHub Exploit DB Packet Storm

248908	6.8	警告	Konstanty Bialkowski	-	libmodplug の CSoundFile::ReadDSM 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-2914	2012-06-11 14:21	2012-06-7	Show	GitHub Exploit DB Packet Storm

248909	6.8	警告	Konstanty Bialkowski	-	libmodplug の CSoundFile::ReadAMS 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-2913	2012-06-11 14:19	2012-06-7	Show	GitHub Exploit DB Packet Storm

248910	6.8	警告	Konstanty Bialkowski	-	libmodplug の CSoundFile::ReadS3M 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2912	2012-06-11 14:18	2012-06-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210481	9.8	CRITICAL Network	caret	caret	A specially crafted Markdown document could cause the execution of malicious JavaScript code in Caret Editor before 4.0.0-rc22.	NVD-CWE-noinfo	CVE-2020-20269	2024-11-21 14:11	2021-01-27	Show	GitHub Exploit DB Packet Storm

210482	6.5	MEDIUM Adjacent	huawei	cloudengine_12800_firmware cloudengine_5800_firmware cloudengine_6800_firmware cloudengine_7800_firmware	There is an out-of-bounds read vulnerability in Huawei CloudEngine products. The software reads data past the end of the intended buffer when parsing certain PIM message, an adjacent attacker could s…	CWE-125 Out-of-bounds Read	CVE-2020-1865	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

210483	6.5	MEDIUM Adjacent	huawei	nip6800_firmware s12700_firmware s2700_firmware s5700_firmware s6700_firmware s7700_firmware s9700_firmware secospace_usg6600_firmware usg9500_firmware	There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could caus…	CWE-125 Out-of-bounds Read	CVE-2020-1866	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

210484	5.5	MEDIUM Local	huawei	jackman-al00d_firmware	There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1). Local attackers construct malicious application files, causing system applications to run abnormally.	NVD-CWE-noinfo	CVE-2020-1848	2024-11-21 14:11	2020-12-30	Show	GitHub Exploit DB Packet Storm

210485	5.4	MEDIUM Network	zzcms	zzcms	There is a XSS in the user login page in zzcms 2019. Users can inject js code by the referer header via user/login.php	CWE-79 Cross-site Scripting	CVE-2020-20285	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210486	9.8	CRITICAL Network	troglobit	uftpd	There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's…	CWE-22 Path Traversal	CVE-2020-20277	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210487	9.8	CRITICAL Network	troglobit	uftpd	An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be abused to cause a crash and could potentially lead to remot…	CWE-787 Out-of-bounds Write	CVE-2020-20276	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

210488	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20142	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

210489	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20141	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

210490	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20140	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed