Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249151 7.5 危険 Ola Lasisi - e-ticketing の loginscript.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1673 2012-04-12 16:57 2011-04-11 Show GitHub Exploit DB Packet Storm
249152 7.5 危険 useasdf_4444 - Hotel Booking Portal の getcity.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1672 2012-04-12 16:57 2011-04-11 Show GitHub Exploit DB Packet Storm
249153 4.3 警告 Novell - Novell ZENworks Configuration Management におけるクロスサイトトレーシング攻撃を誘発される脆弱性 CWE-200
情報漏えい 		CVE-2012-2223 2012-04-12 16:53 2012-02-8 Show GitHub Exploit DB Packet Storm
249154 7.8 危険 ソニー株式会社 - ソニー製 Bravia TV におけるサービス運用妨害 (機能停止またはデバイスクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2210 2012-04-12 16:52 2012-04-11 Show GitHub Exploit DB Packet Storm
249155 4.3 警告 DNN - DotNetNuke の Telerik HTML エディタにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1036 2012-04-12 16:06 2011-11-1 Show GitHub Exploit DB Packet Storm
249156 4.3 警告 DNN - DotNetNuke におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1030 2012-04-12 16:05 2012-02-1 Show GitHub Exploit DB Packet Storm
249157 7.5 危険 アドビシステムズ - Adobe Reader および Acrobat の JavaScript API における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0777 2012-04-12 15:08 2012-04-10 Show GitHub Exploit DB Packet Storm
249158 10 危険 アドビシステムズ - Adobe Reader のインストーラにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0776 2012-04-12 15:05 2012-04-10 Show GitHub Exploit DB Packet Storm
249159 10 危険 アドビシステムズ - Adobe Reader および Acrobat の JavaScript 実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2012-0775 2012-04-12 14:57 2012-04-10 Show GitHub Exploit DB Packet Storm
249160 10 危険 アドビシステムズ - Adobe Reader および Acrobat における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-0774 2012-04-12 14:55 2012-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212661 5.3 MEDIUM
Local 		openenclave openenclave In openenclave before 0.10.0, enclaves that use x87 FPU operations are vulnerable to tampering by a malicious host application. By violating the Linux System V Application Binary Interface (ABI) for … NVD-CWE-noinfo
CVE-2020-15107 2024-11-21 14:04 2020-07-16 Show GitHub Exploit DB Packet Storm
212662 6.5 MEDIUM
Network 		symless
fedoraproject 		synergy
fedora 		In Synergy before version 1.12.0, a Synergy server can be crashed by receiving a kMsgHelloBack packet with a client name length set to 0xffffffff (4294967295) if the servers memory is less than 4 GB.… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-15117 2024-11-21 14:04 2020-07-16 Show GitHub Exploit DB Packet Storm
212663 3.3 LOW
Local 		schokokeks freewvs In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk(). This can be problematic in a case where… CWE-674
 Uncontrolled Recursion 		CVE-2020-15101 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
212664 3.3 LOW
Local 		schokokeks freewvs In freewvs before 0.1.1, a user could create a large file that freewvs will try to read, which will terminate a scan process. This has been patched in 0.1.1. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-15100 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
212665 7.5 HIGH
Network 		openvpn openvpn_access_server OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial t… CWE-613
 Insufficient Session Expiration 		CVE-2020-15074 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
212666 5.4 MEDIUM
Network 		envoyproxy envoy In Envoy before versions 1.12.6, 1.13.4, 1.14.4, and 1.15.0 when validating TLS certificates, Envoy would incorrectly allow a wildcard DNS Subject Alternative Name apply to multiple subdomains. For e… CWE-346
 Origin Validation Error 		CVE-2020-15104 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
212667 7.5 HIGH
Network 		supremainc biostar_2 An issue was discovered in the Video Extension in Suprema BioStar 2 before 2.8.2. Remote attackers can read arbitrary files from the server via Directory Traversal. CWE-22
Path Traversal 		CVE-2020-15050 2024-11-21 14:04 2020-07-14 Show GitHub Exploit DB Packet Storm
212668 5.4 MEDIUM
Network 		django_two-factor_authentication_project django_two-factor_authentication Django Two-Factor Authentication before 1.12, stores the user's password in clear text in the user session (base64-encoded). The password is stored in the session when the user submits their username… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-15105 2024-11-21 14:04 2020-07-11 Show GitHub Exploit DB Packet Storm
212669 8.6 HIGH
Network 		amazon tough The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures. It allows an attacker to duplicate a valid signature in order to circumve… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-15093 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
212670 4.8 MEDIUM
Network 		northwestern timelinejs In TimelineJS before version 3.7.0, some user data renders as HTML. An attacker could implement an XSS exploit with maliciously crafted content in a number of data fields. This risk is present whethe… CWE-79
Cross-site Scripting 		CVE-2020-15092 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm