Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249031 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 および Internet Explorer 9 におけるクッキーファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2382 2012-03-27 18:43 2011-06-3 Show GitHub Exploit DB Packet Storm
249032 4.3 警告 Mozilla Foundation - Bugzilla における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2381 2012-03-27 18:43 2011-08-9 Show GitHub Exploit DB Packet Storm
249033 5 警告 Mozilla Foundation - Bugzilla におけるプライベートグループ名の存在を発見される脆弱性 CWE-200
情報漏えい 		CVE-2011-2380 2012-03-27 18:43 2011-08-9 Show GitHub Exploit DB Packet Storm
249034 4.3 警告 アップル
Mozilla Foundation
マイクロソフト		 - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2379 2012-03-27 18:43 2011-08-9 Show GitHub Exploit DB Packet Storm
249035 10 危険 ヒューレット・パッカード - HP IMC の img.exe における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2331 2012-03-27 18:43 2011-06-2 Show GitHub Exploit DB Packet Storm
249036 9 危険 IBM - IBM Tivoli Management Framework の Tivoli Endpoint における禁止されたページにリクエストを送信する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2330 2012-03-27 18:43 2011-05-30 Show GitHub Exploit DB Packet Storm
249037 6.5 警告 Apache Software Foundation - Apache Rampart の rampart_timestamp_token_validate 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2329 2012-03-27 18:43 2011-06-2 Show GitHub Exploit DB Packet Storm
249038 4.3 警告 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2226 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
249039 9.3 危険 Novell
marcus schafer		 - SUSE Studio で使用される Kiwi における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2225 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
249040 4.3 警告 Novell - Novell Data Synchronizer の Mobility Pack におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2224 2012-03-27 18:43 2011-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211821 5.5 MEDIUM
Local 		gitlab gitlab A vulnerability in the internal Kubernetes agent api in GitLab CE/EE version 13.3 and above allows unauthorized access to private projects. Affected versions are: >=13.4, <13.4.5,>=13.3, <13.3.9,>=13… NVD-CWE-noinfo
CVE-2020-13358 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211822 4.3 MEDIUM
Network 		gitlab gitlab A potential DOS vulnerability was discovered in GitLab CE/EE starting with version 12.6. The container registry name check could cause exponential number of backtracks for certain user supplied value… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-13354 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211823 3.2 LOW
Local 		gitlab gitaly When importing repos via URL, one time use git credentials were persisted beyond the expected time window in Gitaly 1.79.0 or above. CWE-613
 Insufficient Session Expiration 		CVE-2020-13353 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211824 5.3 MEDIUM
Network 		gitlab gitlab Private group info is leaked leaked in GitLab CE/EE version 10.2 and above, when the project is moved from private to public group. Affected versions are: >=10.2, <13.3.9,>=13.4, <13.4.5,>=13.5, <13.… NVD-CWE-noinfo
CVE-2020-13352 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211825 5.4 MEDIUM
Network 		ivanti endpoint_manager Ivanti Endpoint Manager through 2020.1.1 allows XSS via /LDMS/frm_splitfrm.aspx, /LDMS/licensecheck.aspx, /LDMS/frm_splitcollapse.aspx, /LDMS/alert_log.aspx, /LDMS/ServerList.aspx, /LDMS/frm_coremain… CWE-79
Cross-site Scripting 		CVE-2020-13773 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211826 5.3 MEDIUM
Network 		ivanti endpoint_manager In /ldclient/ldprov.cgi in Ivanti Endpoint Manager through 2020.1.1, an attacker is able to disclose information about the server operating system, local pathnames, and environment variables with no … NVD-CWE-noinfo
CVE-2020-13772 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211827 8.8 HIGH
Network 		ivanti endpoint_manager LDMS/alert_log.aspx in Ivanti Endpoint Manager through 2020.1 allows SQL Injection via a /remotecontrolauth/api/device request. CWE-89
SQL Injection 		CVE-2020-13769 2024-11-21 14:01 2020-11-17 Show GitHub Exploit DB Packet Storm
211828 9.8 CRITICAL
Network 		rconfig rconfig lib/crud/userprocess.php in rConfig 3.9.x before 3.9.7 has an authentication bypass, leading to administrator account creation. This issue has been fixed in 3.9.7. CWE-269
 Improper Privilege Management 		CVE-2020-13638 2024-11-21 14:01 2020-11-14 Show GitHub Exploit DB Packet Storm
211829 9.9 CRITICAL
Network 		ivanti endpoint_manager An unrestricted file-upload issue in EditLaunchPadDialog.aspx in Ivanti Endpoint Manager 2019.1 and 2020.1 allows an authenticated attacker to gain remote code execution by uploading a malicious aspx… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-13774 2024-11-21 14:01 2020-11-13 Show GitHub Exploit DB Packet Storm
211830 7.8 HIGH
Local 		ivanti endpoint_manager Various components in Ivanti Endpoint Manager through 2020.1.1 rely on Windows search order when loading a (nonexistent) library file, allowing (under certain conditions) one to gain code execution (… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-13771 2024-11-21 14:01 2020-11-13 Show GitHub Exploit DB Packet Storm