Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249071	4.3	警告	ヒューレット・パッカード	-	HP PSP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1537	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

249072	5	警告	ヒューレット・パッカード	-	HP Performance Insight における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1536	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249073	6	警告	ヒューレット・パッカード	-	HP Insight Control における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1535	2012-03-27 18:43	2011-04-19	Show	GitHub Exploit DB Packet Storm

249074	6.5	警告	ヒューレット・パッカード	-	HP NNMi におけるプロセスへのアクセス権を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1534	2012-03-27 18:43	2011-04-18	Show	GitHub Exploit DB Packet Storm

249075	4.3	警告	ヒューレット・パッカード	-	複数の HP Photosmart 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1533	2012-03-27 18:43	2011-04-14	Show	GitHub Exploit DB Packet Storm

249076	7.5	危険	ヒューレット・パッカード	-	複数の HP Photosmart 製品で使用される SNMP コンポーネントにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-1532	2012-03-27 18:43	2011-04-14	Show	GitHub Exploit DB Packet Storm

249077	4.3	警告	ヒューレット・パッカード	-	複数の HP Photosmart 製品で使用される Embedded Web Server (EWS) の webscan コンポーネントにおけるスキャン面のドキュメントを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1531	2012-03-27 18:43	2011-04-14	Show	GitHub Exploit DB Packet Storm

249078	4.3	警告	シマンテック	-	Symantec LUA の管理ログイン GUI ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1524	2012-03-27 18:43	2011-03-21	Show	GitHub Exploit DB Packet Storm

249079	7.5	危険	Doctrine Project	-	Doctrine の Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1522	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

249080	4.3	警告	OTRS プロジェクト	-	OTRS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1518	2012-03-27 18:43	2011-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198641	9.8	CRITICAL Network	hp	intelligent_management_center	A faultdevparasset expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7143	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

198642	9.8	CRITICAL Network	hp	intelligent_management_center	A eventinfo_content expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7142	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

198643	9.8	CRITICAL Network	hp	intelligent_management_center	A adddevicetoview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7141	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

198644	5.5	MEDIUM Local	blackberry	unified_endpoint_manager	An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause…	CWE-20 Improper Input Validation	CVE-2020-6933	2024-11-21 14:36	2020-10-14	Show	GitHub Exploit DB Packet Storm

198645	9.8	CRITICAL Network	zte	zxone_19700_snpe_firmware	A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access rig…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6875	2024-11-21 14:36	2020-10-6	Show	GitHub Exploit DB Packet Storm

198646	5.3	MEDIUM Network	php fedoraproject debian opensuse canonical netapp tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with pref…	CWE-565 Reliance on Cookies without Validation and Integrity Checking	CVE-2020-7070	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

198647	6.5	MEDIUM Network	php fedoraproject debian opensuse canonical netapp oracle tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap communications_diameter_signaling_router tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when AES-CCM mode is used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV is actually use…	CWE-326 Inadequate Encryption Strength	CVE-2020-7069	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

198648	7.8	HIGH Local	eaton	9000x_programming_and_configuration_software	A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLL…	CWE-427 CWE-426 Uncontrolled Search Path Element Untrusted Search Path	CVE-2020-6654	2024-11-21 14:36	2020-10-1	Show	GitHub Exploit DB Packet Storm

198649	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7122	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

198650	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7121	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm