Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248971	9.3	危険	IBM	-	IBM Rational AppScan におけるサーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2012-0732	2012-05-8 09:49	2012-05-3	Show	GitHub Exploit DB Packet Storm

248972	6.8	警告	IBM	-	IBM Rational AppScan における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-0731	2012-05-8 09:49	2012-05-3	Show	GitHub Exploit DB Packet Storm

248973	6	警告	IBM	-	IBM Rational AppScan におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0730	2012-05-8 09:47	2012-05-3	Show	GitHub Exploit DB Packet Storm

248974	6	警告	IBM	-	IBM Rational AppScan における任意の ASP.NET コードを実行される脆弱性	CWE-Other その他	CVE-2012-0729	2012-05-8 09:46	2012-05-3	Show	GitHub Exploit DB Packet Storm

248975	4.9	警告	ヒューレット・パッカード	-	HP Insight Management Agents におけるデータを変更される脆弱性	CWE-noinfo 情報不足	CVE-2012-2006	2012-05-7 16:38	2012-05-1	Show	GitHub Exploit DB Packet Storm

248976	4.3	警告	ヒューレット・パッカード	-	HP Insight Management Agents におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2005	2012-05-7 16:38	2012-05-1	Show	GitHub Exploit DB Packet Storm

248977	8.3	危険	ヒューレット・パッカード	-	HP Insight Management Agents におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2004	2012-05-7 16:25	2012-05-1	Show	GitHub Exploit DB Packet Storm

248978	6.8	警告	ヒューレット・パッカード	-	HP Insight Management Agents におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2003	2012-05-7 16:25	2012-05-1	Show	GitHub Exploit DB Packet Storm

248979	8.3	危険	ヒューレット・パッカード	-	HP SNMP Agents for Linux におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2012-2002	2012-05-7 16:24	2012-05-1	Show	GitHub Exploit DB Packet Storm

248980	4.3	警告	ヒューレット・パッカード	-	HP SNMP Agents for Linux におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2001	2012-05-7 16:23	2012-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212101	9.8	CRITICAL Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an unauthenticated user to execute arbitrary code by POSTing to apply_sec.cgi …	CWE-787 Out-of-bounds Write	CVE-2020-14080	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212102	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14079	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212103	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14078	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212104	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14077	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212105	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the action pppoe_connect, ru_pppoe_connect, or dhcp_connect with the key wan_ifname (or wan0_dns), all…	CWE-78 OS Command	CVE-2020-14075	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212106	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14074	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212107	9.8	CRITICAL Network	naviwebs	navigatecms	The install_from_hash functionality in Navigate CMS 2.9 does not consider the .phtml extension when examining files within a ZIP archive that may contain PHP code, in check_upload in lib/packages/ext…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-14067	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212108	8.1	HIGH Network	fasterxml netapp oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager agile_plm banking_digital_experience communications_diameter_signaling_router communications_evolved_c…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool (aka apache/drill).	CWE-502 Deserialization of Untrusted Data	CVE-2020-14060	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212109	8.1	HIGH Network	fasterxml netapp debian oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager debian_linux agile_plm banking_digital_experience communications_diameter_signaling_router communic…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool (aka xalan2…	CWE-502 Deserialization of Untrusted Data	CVE-2020-14062	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

212110	8.1	HIGH Network	fasterxml netapp debian oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager debian_linux agile_plm banking_digital_experience communications_instant_messaging_server communica…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oracle.jms.AQjmsQueueConnectionFactory, oracle.jms.AQjmsXATopicConnectio…	CWE-502 Deserialization of Untrusted Data	CVE-2020-14061	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm