Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248941	4.3	警告	Joomla!	-	Joomla! におけるクロスサイトスクリプティング脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2710	2012-03-27 18:43	2011-07-11	Show	GitHub Exploit DB Packet Storm

248942	5	警告	Ruby-lang.org	-	Ruby の SecureRandom.random_bytes 関数における結果の文字列を推測される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2705	2012-03-27 18:43	2011-08-5	Show	GitHub Exploit DB Packet Storm

248943	7.5	危険	UMN	-	MapServer におけるスタックベースのオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2704	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

248944	7.5	危険	UMN	-	MapServer における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2703	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

248945	5.8	警告	FreeRADIUS	-	FreeRADIUS の ocsp_check 関数における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2701	2012-03-27 18:43	2011-08-3	Show	GitHub Exploit DB Packet Storm

248946	2.1	注意	Linux	-	Linux kernel の si4713_write_econtrol_string 関数におけるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2700	2012-03-27 18:43	2011-09-6	Show	GitHub Exploit DB Packet Storm

248947	4.3	警告	Wireshark	-	Wireshark の elem_cell_id_aux 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-2698	2012-03-27 18:43	2011-07-18	Show	GitHub Exploit DB Packet Storm

248948	4.9	警告	Linux	-	Linux kernel の ext4 サブシステムにおけるサービス運用妨害 (DoS) 脆弱性	CWE-189 数値処理の問題	CVE-2011-2695	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

248949	7.5	危険	jan wolter	-	Apache HTTP Server の mod_authnz_external モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2688	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

248950	7.5	危険	Drupal	-	Drupal における node_access の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2687	2012-03-27 18:43	2011-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211751	6.1	MEDIUM Network	mk-auth	mk-auth	An issue was discovered in MK-AUTH 19.01. XSS vulnerabilities in admin and client scripts allow an attacker to execute arbitrary JavaScript code.	CWE-79 Cross-site Scripting	CVE-2020-14071	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm

211752	9.8	CRITICAL Network	mk-auth	mk-auth	An issue was discovered in MK-AUTH 19.01. There is authentication bypass in the web login functionality because guessable credentials to admin/executar_login.php result in admin access.	CWE-287 Improper Authentication	CVE-2020-14070	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm

211753	6.8	MEDIUM Physics	mk-auth	mk-auth	An issue was discovered in MK-AUTH 19.01. There are SQL injection issues in mkt/ PHP scripts, as demonstrated by arp.php, dhcp.php, hotspot.php, ip.php, pgaviso.php, pgcorte.php, pppoe.php, queues.ph…	CWE-89 SQL Injection	CVE-2020-14069	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm

211754	9.8	CRITICAL Network	mk-auth	mk-auth	An issue was discovered in MK-AUTH 19.01. The web login functionality allows an attacker to bypass authentication and gain client privileges via SQL injection in central/executar_login.php.	CWE-89 SQL Injection	CVE-2020-14068	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm

211755	7.5	HIGH Network	mattermost	mattermost	An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintended third-party servers could sometimes obtain authorization tokens, aka MMSA-2020-0022.	NVD-CWE-noinfo	CVE-2020-13891	2024-11-21 14:02	2020-06-27	Show	GitHub Exploit DB Packet Storm

211756	9.8	CRITICAL Network	mi	xiaomi_r3600_firmware	In Xiaomi router R3600, ROM version<1.0.20, a connect service suffers from an injection vulnerability through the web interface, leading to a stack overflow or remote code execution.	CWE-787 Out-of-bounds Write	CVE-2020-14095	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

211757	9.8	CRITICAL Network	mi	xiaomi_r3600_firmware	In Xiaomi router R3600, ROM version<1.0.20, the connection service can be injected through the web interface, resulting in stack overflow or remote code execution.	CWE-787 Out-of-bounds Write	CVE-2020-14094	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

211758	6.1	MEDIUM Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. There is a stored XSS vulnerability that is executed on the page to view users, and on the page to edit users. This is present in both the User fiel…	CWE-79 Cross-site Scripting	CVE-2020-14018	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

211759	7.5	HIGH Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. Sessions, as well as associated information such as CSRF tokens, are stored in cleartext files in the directory /private/sessions. An unauthenticate…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-14017	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

211760	5.3	MEDIUM Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. The forgot-password feature allows users to reset their passwords by using either their username or the email address associated with their account.…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2020-14016	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm