Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249031 4.3 警告 Kolja Schleich - WordPress 用 LeagueManager プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2912 2012-05-23 18:25 2012-05-21 Show GitHub Exploit DB Packet Storm
249032 5 警告 Chevereto Software - Chevereto の Upload/engine.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2919 2012-05-23 18:19 2012-05-21 Show GitHub Exploit DB Packet Storm
249033 4.3 警告 Chevereto Software - Chevereto の Upload/engine.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2918 2012-05-23 18:18 2012-05-21 Show GitHub Exploit DB Packet Storm
249034 7.5 危険 Johan Cwiklinski - Galette の includes/picture.class.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2338 2012-05-23 18:16 2012-05-21 Show GitHub Exploit DB Packet Storm
249035 10 危険 DMSoft Technologies - SkinCrafter の InitLicenKeys 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2271 2012-05-23 18:15 2012-05-21 Show GitHub Exploit DB Packet Storm
249036 9.3 危険 Lattice Semiconductor - Lattice Semiconductor PAC-Designer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-2915 2012-05-23 18:04 2012-05-21 Show GitHub Exploit DB Packet Storm
249037 5 警告 リアルネットワークス - RealNetworks RealPlayer および RealPlayer SP におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-1904 2012-05-23 18:04 2012-03-28 Show GitHub Exploit DB Packet Storm
249038 4.3 警告 unijimpe - Unijimpe Captcha の captchademo.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2914 2012-05-23 18:02 2012-05-21 Show GitHub Exploit DB Packet Storm
249039 4.3 警告 SiliSoftware - SiliSoftware backupDB() の backupDB.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2911 2012-05-23 17:54 2012-05-21 Show GitHub Exploit DB Packet Storm
249040 4.3 警告 SiliSoftware - SiliSoftware phpThumb() におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2910 2012-05-23 17:53 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212791 8.8 HIGH
Network 		google chrome Insufficient policy enforcement in networking in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially bypass firewall controls via a crafted HTML page. NVD-CWE-noinfo
CVE-2020-16022 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212792 7.5 HIGH
Network 		google chrome Race in image burner in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to perform OS-level privilege escalation via a malicious file. CWE-362
Race Condition 		CVE-2020-16021 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212793 8.8 HIGH
Network 		google chrome Inappropriate implementation in cryptohome in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to bypass discretionary access control … NVD-CWE-noinfo
CVE-2020-16020 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212794 8.8 HIGH
Network 		google chrome Inappropriate implementation in filesystem in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised the browser process to bypass noexec restrictions via a mal… NVD-CWE-noinfo
CVE-2020-16019 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212795 9.6 CRITICAL
Network 		google chrome Use after free in payments in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. CWE-416
 Use After Free 		CVE-2020-16018 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212796 9.6 CRITICAL
Network 		google chrome Use after free in site isolation in Google Chrome prior to 86.0.4240.198 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML … CWE-416
 Use After Free 		CVE-2020-16017 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212797 9.6 CRITICAL
Network 		google chrome Inappropriate implementation in base in Google Chrome prior to 86.0.4240.193 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted H… NVD-CWE-noinfo
CVE-2020-16016 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212798 8.8 HIGH
Network 		google chrome Insufficient data validation in WASM in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-20
CWE-787
CWE-843
 Improper Input Validation 
 Out-of-bounds Write
Type Confusion 		CVE-2020-16015 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212799 9.6 CRITICAL
Network 		google chrome Use after free in PPAPI in Google Chrome prior to 87.0.4280.66 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. CWE-416
 Use After Free 		CVE-2020-16014 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm
212800 8.8 HIGH
Network 		google chrome Inappropriate implementation in V8 in Google Chrome prior to 86.0.4240.198 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
 Out-of-bounds Write 		CVE-2020-16013 2024-11-21 14:06 2021-01-9 Show GitHub Exploit DB Packet Storm