Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249061	6.3	警告	Gentoo Linux	-	logrotate のデフォルト設定におけるシンボリックリンク攻撃を誘発する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1548	2012-03-27 18:43	2011-03-30	Show	GitHub Exploit DB Packet Storm

249062	7.5	危険	Andy's PHP Knowledgebase Project	-	Aphpkb における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1546	2012-03-27 18:43	2011-03-16	Show	GitHub Exploit DB Packet Storm

249063	6.8	警告	ヒューレット・パッカード	-	HP Insight Control Performance Management におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1545	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

249064	6	警告	ヒューレット・パッカード	-	HP Insight Control Performance Management における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1544	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

249065	4.3	警告	ヒューレット・パッカード	-	HP SIM におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1543	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249066	4.3	警告	ヒューレット・パッカード	-	HP SIM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1542	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249067	10	危険	ヒューレット・パッカード	-	HP SMH におけるアクセス制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2011-1541	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249068	9	危険	ヒューレット・パッカード	-	HP SMH における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-1540	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249069	5	警告	ヒューレット・パッカード	-	HP PSP における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1539	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

249070	4.9	警告	ヒューレット・パッカード	-	HP PSP におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-1538	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211841	7.5	HIGH Network	jerryscript	jerryscript	parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during certain out-of-memory conditions, as demonstrated by a scanner_reverse_info_list NULL pointer dereference and a scanner_scan_all a…	CWE-754 CWE-476 CWE-617 Improper Check for Unusual or Exceptional Conditions NULL Pointer Dereference Reachable Assertion	CVE-2020-13649	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

211842	3.2	LOW Local	qemu debian opensuse canonical	qemu debian_linux leap ubuntu_linux	In QEMU 5.0.0 and earlier, megasas_lookup_frame in hw/scsi/megasas.c has an out-of-bounds read via a crafted reply_queue_head field from a guest OS user.	CWE-125 Out-of-bounds Read	CVE-2020-13362	2024-11-21 14:01	2020-05-29	Show	GitHub Exploit DB Packet Storm

211843	3.9	LOW Local	qemu debian opensuse canonical	qemu debian_linux leap ubuntu_linux	In QEMU 5.0.0 and earlier, es1370_transfer_audio in hw/audio/es1370.c does not properly validate the frame count, which allows guest OS users to trigger an out-of-bounds access during an es1370_write…	CWE-787 Out-of-bounds Write	CVE-2020-13361	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211844	6.5	MEDIUM Network	gnome canonical fedoraproject netapp broadcom	balsa glib-networking ubuntu_linux fedora cloud_backup fabric_operating_system	In GNOME glib-networking through 2.64.2, the implementation of GTlsClientConnection skips hostname verification of the server's TLS certificate if the application fails to specify the expected server…	CWE-295 Improper Certificate Validation	CVE-2020-13645	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211845	5.4	MEDIUM Network	pickplugins	accordion	An issue was discovered in the Accordion plugin before 2.2.9 for WordPress. The unprotected AJAX wp_ajax_accordions_ajax_import_json action allowed any authenticated user with Subscriber or higher pe…	CWE-79 Cross-site Scripting	CVE-2020-13644	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211846	8.8	HIGH Network	siteorigin	page_builder	An issue was discovered in the SiteOrigin Page Builder plugin before 2.10.16 for WordPress. The live editor feature did not do any nonce verification, allowing for requests to be forged on behalf of …	CWE-352 Origin Validation Error	CVE-2020-13643	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211847	8.8	HIGH Network	siteorigin	page_builder	An issue was discovered in the SiteOrigin Page Builder plugin before 2.10.16 for WordPress. The action_builder_content function did not do any nonce verification, allowing for requests to be forged o…	CWE-352 Origin Validation Error	CVE-2020-13642	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211848	8.8	HIGH Network	infolific	real-time_find_and_replace	An issue was discovered in the Real-Time Find and Replace plugin before 4.0.2 for WordPress. The far_options_page function did not do any nonce verification, allowing for requests to be forged on beh…	CWE-352 Origin Validation Error	CVE-2020-13641	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211849	6.1	MEDIUM Network	fork-cms	fork_cms	Fork before 5.8.3 allows XSS via navigation_title or title.	CWE-79 Cross-site Scripting	CVE-2020-13633	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm

211850	6.1	MEDIUM Network	centreon	centreon_host-monitoring_widget centreon_tactical-overview_widget centreon_service-monitoring_widget	Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the widgetId parameter to host-monitoring/src/toolbar.php. This vulnerability is fixed in v…	CWE-79 Cross-site Scripting	CVE-2020-13628	2024-11-21 14:01	2020-05-28	Show	GitHub Exploit DB Packet Storm