Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249101	4.3	警告	IBM	-	IBM WCM および他の製品で使用される IBM WebSphere Portal の PageBuilder2 テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2754	2012-03-27 18:43	2011-07-17	Show	GitHub Exploit DB Packet Storm

249102	6.8	警告	SquirrelMail Project	-	SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-2753	2012-03-27 18:43	2011-07-12	Show	GitHub Exploit DB Packet Storm

249103	5.8	警告	SquirrelMail Project	-	SquirrelMail における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-2752	2012-03-27 18:43	2011-07-11	Show	GitHub Exploit DB Packet Storm

249104	7.5	危険	parodia	-	Parodia における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2751	2012-03-27 18:43	2011-07-17	Show	GitHub Exploit DB Packet Storm

249105	5	警告	Novell	-	Novell File Reporter の NFRAgent.exe における任意のファイルを削除される脆弱性	CWE-399 リソース管理の問題	CVE-2011-2750	2012-03-27 18:43	2011-07-17	Show	GitHub Exploit DB Packet Storm

249106	4	警告	OTRS プロジェクト	-	OTRS の OTRS-Core の Kernel/Modules/AdminPackageManager.pm における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-2746	2012-03-27 18:43	2011-08-29	Show	GitHub Exploit DB Packet Storm

249107	6.5	警告	Chyrp	-	Chyrp の upload_handler.php における .php ファイルをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2745	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

249108	6.8	警告	Chyrp	-	Chyrp におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2744	2012-03-27 18:43	2011-07-19	Show	GitHub Exploit DB Packet Storm

249109	4.3	警告	Chyrp	-	Chyrp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2743	2012-03-27 18:43	2011-07-19	Show	GitHub Exploit DB Packet Storm

249110	5	警告	RSAセキュリティ	-	RSA enVision における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-2737	2012-03-27 18:43	2011-08-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211141	10.0	CRITICAL Network	yiiframework	yii	Yii 2 (yiisoft/yii2) before version 2.0.38 is vulnerable to remote code execution if the application calls `unserialize()` on arbitrary user input. This is fixed in version 2.0.38. A possible workaro…	-	CVE-2020-15148	2024-11-21 14:04	2020-09-16	Show	GitHub Exploit DB Packet Storm

211142	6.6	MEDIUM Network	xwiki	xwiki	In XWiki before versions 11.10.5 or 12.2.1, any user with SCRIPT right (EDIT right before XWiki 7.4) can gain access to the application server Servlet context which contains tools allowing to instant…	CWE-74 Injection	CVE-2020-15171	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211143	5.5	MEDIUM Local	avast	antivirus	An issue was discovered in the Login Password feature of the Password Manager component in Avast Antivirus 20.1.5069.562. An entered password continues to be stored in Windows main memory after a log…	CWE-212 CWE-459 Improper Removal of Sensitive Information Before Storage or Transfer Incomplete Cleanup	CVE-2020-15024	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211144	6.1	MEDIUM Network	action_view_project debian fedoraproject	action_view debian_linux fedora	In Action View before versions 5.2.4.4 and 6.0.3.3 there is a potential Cross-Site Scripting (XSS) vulnerability in Action View's translation helpers. Views that allow the user to control the default…	-	CVE-2020-15169	2024-11-21 14:04	2020-09-12	Show	GitHub Exploit DB Packet Storm

211145	7.5	HIGH Network	zeromq fedoraproject debian	libzmq fedora debian_linux	In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerability. Users with TCP transport public endpoints, even with CURVE/ZAP enabled, are impacted. If a raw TCP socket is opened and con…	-	CVE-2020-15166	2024-11-21 14:04	2020-09-12	Show	GitHub Exploit DB Packet Storm

211146	7.0	HIGH Network	ctrip	apollo	apollo-adminservice before version 1.7.1 does not implement access controls. If users expose apollo-adminservice to internet(which is not recommended), there are potential security issues since apoll…	NVD-CWE-Other	CVE-2020-15170	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211147	5.3	MEDIUM Network	node-fetch_project	node-fetch	node-fetch before versions 2.6.1 and 3.0.0-beta.9 did not honor the size option after following a redirect, which means that when a content size was over the limit, a FetchError would never get throw…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-15168	2024-11-21 14:04	2020-09-11	Show	GitHub Exploit DB Packet Storm

211148	8.2	HIGH Network	linuxfoundation	the_update_framework	Python TUF (The Update Framework) reference implementation before version 0.12 it will incorrectly trust a previously downloaded root metadata file which failed verification at download time. This al…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2020-15163	2024-11-21 14:04	2020-09-10	Show	GitHub Exploit DB Packet Storm

211149	8.6	HIGH Local	johnkerl	miller	In Miller (command line utility) using the configuration file support introduced in version 5.9.0, it is possible for an attacker to cause Miller to run arbitrary code by placing a malicious `.mlrrc`…	CWE-427 Uncontrolled Search Path Element	CVE-2020-15167	2024-11-21 14:04	2020-09-3	Show	GitHub Exploit DB Packet Storm

211150	8.8	HIGH Network	sensiolabs fedoraproject	httpclient symfony fedora	In Symfony before versions 4.4.13 and 5.1.5, the CachingHttpClient class from the HttpClient Symfony component relies on the HttpCache class to handle requests. HttpCache uses internal headers like X…	-	CVE-2020-15094	2024-11-21 14:04	2020-09-3	Show	GitHub Exploit DB Packet Storm