Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249181 6.5 警告 The phpMyAdmin Project - phpMyAdmin の libraries/server_synchronize.lib.php における PCRE e 修飾子を挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2507 2012-03-27 18:43 2011-07-2 Show GitHub Exploit DB Packet Storm
249182 7.5 危険 The phpMyAdmin Project - phpMyAdmin の setup/lib/ConfigGenerator.class.php における静的コードインジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2506 2012-03-27 18:43 2011-07-2 Show GitHub Exploit DB Packet Storm
249183 6.4 警告 The phpMyAdmin Project - phpMyAdmin の libraries/auth/swekey/swekey.auth.lib.php における SESSION スーパーグローバル配列を変更される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2505 2012-03-27 18:43 2011-07-2 Show GitHub Exploit DB Packet Storm
249184 8.3 危険 Linux - Linux kernel の l2cap_config_req 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2497 2012-03-27 18:43 2011-08-29 Show GitHub Exploit DB Packet Storm
249185 7.2 危険 NRL - OPIE の opielogin.c における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2490 2012-03-27 18:43 2011-07-26 Show GitHub Exploit DB Packet Storm
249186 7.2 危険 NRL - OPIE の opiesu.c における権限を取得される脆弱性 CWE-189
数値処理の問題 		CVE-2011-2489 2012-03-27 18:43 2011-07-26 Show GitHub Exploit DB Packet Storm
249187 5 警告 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2488 2012-03-27 18:43 2011-04-4 Show GitHub Exploit DB Packet Storm
249188 2.6 注意 The Icinga Project - Icinga の config.c におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2477 2012-03-27 18:43 2011-06-14 Show GitHub Exploit DB Packet Storm
249189 4.3 警告 Coppermine Photo Gallery - CPG におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2476 2012-03-27 18:43 2011-06-2 Show GitHub Exploit DB Packet Storm
249190 10 危険 サイベース - Sybase OneBridge Mobile Data Suite の ECTrace.dll における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-2475 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211121 9.8 CRITICAL
Network 		tendenci tendenci Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\views\staff.py. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14942 2024-11-21 14:04 2020-06-22 Show GitHub Exploit DB Packet Storm
211122 8.8 HIGH
Network 		squirrelmail squirrelmail compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates from an HTTP POST request. NOTE: the vendor disputes this because these two conditions for PHP object… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14933 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211123 9.8 CRITICAL
Network 		squirrelmail squirrelmail compose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates from an HTTP GET request. This is related to mailto.php. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14932 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211124 9.8 CRITICAL
Network 		dmitry_project dmitry A stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nic_… CWE-787
 Out-of-bounds Write 		CVE-2020-14931 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211125 8.1 HIGH
Network 		bt_ctroms_terminal_project bt_ctroms_terminal An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp req… CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2020-14930 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211126 7.5 HIGH
Network 		alpine_project
fedoraproject
debian 		alpine
fedora
debian_linux 		Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the… NVD-CWE-Other
CVE-2020-14929 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211127 4.8 MEDIUM
Network 		naviwebs navigate_cms Navigate CMS 2.9 allows XSS via the Alias or Real URL field of the "Web Sites > Create > Aliases > Add" screen. CWE-79
Cross-site Scripting 		CVE-2020-14927 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211128 5.4 MEDIUM
Network 		cmsmadesimple cms_made_simple CMS Made Simple 2.2.14 allows XSS via a Search Term to the admin/moduleinterface.php?mact=ModuleManager page. CWE-79
Cross-site Scripting 		CVE-2020-14926 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
211129 3.2 LOW
Local 		qemu
fedoraproject
redhat 		qemu
fedora
extra_packages_for_enterprise_linux
enterprise_linux
openstack_platform 		An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the … CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-14394 2024-11-21 14:03 2022-08-18 Show GitHub Exploit DB Packet Storm
211130 5.6 MEDIUM
Local 		redhat jboss_a-mq A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker's configuration files, leading to denial of service and information disclosure. CWE-611
XXE 		CVE-2020-14379 2024-11-21 14:03 2022-08-17 Show GitHub Exploit DB Packet Storm