Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249121	4.3	警告	Joomla!	-	Joomla! におけるクロスサイトスクリプティング脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2710	2012-03-27 18:43	2011-07-11	Show	GitHub Exploit DB Packet Storm

249122	5	警告	Ruby-lang.org	-	Ruby の SecureRandom.random_bytes 関数における結果の文字列を推測される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2705	2012-03-27 18:43	2011-08-5	Show	GitHub Exploit DB Packet Storm

249123	7.5	危険	UMN	-	MapServer におけるスタックベースのオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2704	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

249124	7.5	危険	UMN	-	MapServer における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2703	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

249125	5.8	警告	FreeRADIUS	-	FreeRADIUS の ocsp_check 関数における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2701	2012-03-27 18:43	2011-08-3	Show	GitHub Exploit DB Packet Storm

249126	2.1	注意	Linux	-	Linux kernel の si4713_write_econtrol_string 関数におけるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2700	2012-03-27 18:43	2011-09-6	Show	GitHub Exploit DB Packet Storm

249127	4.3	警告	Wireshark	-	Wireshark の elem_cell_id_aux 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-2698	2012-03-27 18:43	2011-07-18	Show	GitHub Exploit DB Packet Storm

249128	4.9	警告	Linux	-	Linux kernel の ext4 サブシステムにおけるサービス運用妨害 (DoS) 脆弱性	CWE-189 数値処理の問題	CVE-2011-2695	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

249129	7.5	危険	jan wolter	-	Apache HTTP Server の mod_authnz_external モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2688	2012-03-27 18:43	2011-07-28	Show	GitHub Exploit DB Packet Storm

249130	7.5	危険	Drupal	-	Drupal における node_access の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2687	2012-03-27 18:43	2011-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211121	9.8	CRITICAL Network	tendenci	tendenci	Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\views\staff.py.	CWE-502 Deserialization of Untrusted Data	CVE-2020-14942	2024-11-21 14:04	2020-06-22	Show	GitHub Exploit DB Packet Storm

211122	8.8	HIGH Network	squirrelmail	squirrelmail	compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates from an HTTP POST request. NOTE: the vendor disputes this because these two conditions for PHP object…	CWE-502 Deserialization of Untrusted Data	CVE-2020-14933	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211123	9.8	CRITICAL Network	squirrelmail	squirrelmail	compose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates from an HTTP GET request. This is related to mailto.php.	CWE-502 Deserialization of Untrusted Data	CVE-2020-14932	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211124	9.8	CRITICAL Network	dmitry_project	dmitry	A stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nic_…	CWE-787 Out-of-bounds Write	CVE-2020-14931	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211125	8.1	HIGH Network	bt_ctroms_terminal_project	bt_ctroms_terminal	An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp req…	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2020-14930	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211126	7.5	HIGH Network	alpine_project fedoraproject debian	alpine fedora debian_linux	Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the…	NVD-CWE-Other	CVE-2020-14929	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211127	4.8	MEDIUM Network	naviwebs	navigate_cms	Navigate CMS 2.9 allows XSS via the Alias or Real URL field of the "Web Sites > Create > Aliases > Add" screen.	CWE-79 Cross-site Scripting	CVE-2020-14927	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211128	5.4	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple 2.2.14 allows XSS via a Search Term to the admin/moduleinterface.php?mact=ModuleManager page.	CWE-79 Cross-site Scripting	CVE-2020-14926	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

211129	3.2	LOW Local	qemu fedoraproject redhat	qemu fedora extra_packages_for_enterprise_linux enterprise_linux openstack_platform	An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-14394	2024-11-21 14:03	2022-08-18	Show	GitHub Exploit DB Packet Storm

211130	5.6	MEDIUM Local	redhat	jboss_a-mq	A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker's configuration files, leading to denial of service and information disclosure.	CWE-611 XXE	CVE-2020-14379	2024-11-21 14:03	2022-08-17	Show	GitHub Exploit DB Packet Storm