Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249011 5 警告 Tornado - Tornado の tornado.web.RequestHandler.set_header 関数における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2374 2012-05-25 11:26 2012-05-23 Show GitHub Exploit DB Packet Storm
249012 6.4 警告 Gliffy - Atlassian JIRA および Atlassian Confluence 用 Gliffy プラグインにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2928 2012-05-24 13:42 2012-05-22 Show GitHub Exploit DB Packet Storm
249013 4 警告 TM Software - Atlassian JIRA 用 TM Software Tempo プラグインにおけるサービス運用妨害 (リソース消費)の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2927 2012-05-24 13:41 2012-05-22 Show GitHub Exploit DB Packet Storm
249014 4.3 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2759 2012-05-24 13:38 2012-05-22 Show GitHub Exploit DB Packet Storm
249015 4.3 警告 Schneider Electric - Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1990 2012-05-24 12:32 2012-05-22 Show GitHub Exploit DB Packet Storm
249016 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
249017 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
249018 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の news.php4 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2923 2012-05-23 19:34 2012-05-21 Show GitHub Exploit DB Packet Storm
249019 5 警告 Drupal - Drupal の includes/bootstrap.inc 内の request_path 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-2922 2012-05-23 19:33 2012-05-21 Show GitHub Exploit DB Packet Storm
249020 3.5 注意 Geoff Davies - Drupal 用 Contact Forms モジュールにおけるモジュールの設定を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2340 2012-05-23 19:12 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210321 9.1 CRITICAL
Network 		bludit bludit bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the `deleteBackup' parameter. NVD-CWE-noinfo
CVE-2020-20495 2024-11-21 14:12 2021-09-1 Show GitHub Exploit DB Packet Storm
210322 7.5 HIGH
Network 		libiec_iccp_mod_project libiec_iccp_mod A heap buffer-overflow in the client_example1.c component of libiec_iccp_mod v1.5 leads to a denial of service (DOS). CWE-787
 Out-of-bounds Write 		CVE-2020-20490 2024-11-21 14:12 2021-09-1 Show GitHub Exploit DB Packet Storm
210323 7.5 HIGH
Network 		iec104_project iec104 IEC104 v1.0 contains a stack-buffer overflow in the parameter Iec10x_Sta_Addr. CWE-787
 Out-of-bounds Write 		CVE-2020-20486 2024-11-21 14:12 2021-09-1 Show GitHub Exploit DB Packet Storm
210324 9.8 CRITICAL
Network 		nuishop nuishop Nuishop v2.3 contains a SQL injection vulnerability in /goods/getGoodsListByConditions/. CWE-89
SQL Injection 		CVE-2020-20675 2024-11-21 14:12 2021-08-27 Show GitHub Exploit DB Packet Storm
210325 5.4 MEDIUM
Network 		eyoucms eyoucms Cross Site Scripting (XSS) vulnerability exists in EyouCMS1.3.6 in the basic_information area. CWE-79
Cross-site Scripting 		CVE-2020-20645 2024-11-21 14:12 2021-08-20 Show GitHub Exploit DB Packet Storm
210326 8.8 HIGH
Network 		eyoucms eyoucms Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to execute the js code via login.php?m=admin&c=Filemanager&a=newfile&lang=cn. CWE-352
 Origin Validation Error 		CVE-2020-20642 2024-11-21 14:12 2021-08-20 Show GitHub Exploit DB Packet Storm
210327 6.5 MEDIUM
Network 		axiosys bento4 An issue was discovered in Bento4 v1.5.1.0. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a denial of service (program crash), as demonstrated by mp42aa… CWE-787
 Out-of-bounds Write 		CVE-2020-21066 2024-11-21 14:12 2021-08-14 Show GitHub Exploit DB Packet Storm
210328 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /segments/edit.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via the Segment Name parameter. CWE-79
Cross-site Scripting 		CVE-2020-20990 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
210329 4.3 MEDIUM
Network 		domainmod domainmod A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows attackers to arbitrarily delete logs. CWE-352
 Origin Validation Error 		CVE-2020-20989 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
210330 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /domains/cost-by-owner.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the "or Exp… CWE-79
Cross-site Scripting 		CVE-2020-20988 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm