Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249231	5.8	警告	WordPress.org	-	WordPress におけるクリックジャックの脆弱性	CWE-20 不適切な入力確認	CVE-2011-3127	2012-03-27 18:43	2011-05-25	Show	GitHub Exploit DB Packet Storm

249232	5	警告	WordPress.org	-	WordPress におけるユーザ名を特定される脆弱性	CWE-200 情報漏えい	CVE-2011-3126	2012-03-27 18:43	2011-05-25	Show	GitHub Exploit DB Packet Storm

249233	10	危険	WordPress.org	-	WordPress における脆弱性	CWE-noinfo 情報不足	CVE-2011-3125	2012-03-27 18:43	2011-05-25	Show	GitHub Exploit DB Packet Storm

249234	7.2	危険	IBM	-	IBM InfoSphere DataStage および他の製品で使用される IBM InfoSphere Information Server における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3124	2012-03-27 18:43	2011-08-10	Show	GitHub Exploit DB Packet Storm

249235	7.2	危険	IBM	-	IBM InfoSphere DataStage および他の製品で使用される IBM InfoSphere Information Server における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3123	2012-03-27 18:43	2011-08-10	Show	GitHub Exploit DB Packet Storm

249236	10	危険	WordPress.org	-	WordPress における脆弱性	CWE-noinfo 情報不足	CVE-2011-3122	2012-03-27 18:43	2011-05-25	Show	GitHub Exploit DB Packet Storm

249237	5	警告	Novell	-	Novell Data Synchronizer の WebAdmin における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3014	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

249238	5	警告	Novell	-	Novell Data Synchronizer の WebAdmin におけるアクセス権を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-3013	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

249239	10	危険	ioquake3 worldofpadman urbanterror tremulous	-	World of Padman などの製品で使用される ioQuake3 エンジンにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3012	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

249240	5	警告	Ruby-lang.org	-	Ruby における乱数の値を推測される脆弱性	CWE-310 暗号の問題	CVE-2011-3009	2012-03-27 18:43	2011-08-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213111	7.8	HIGH Local	pi-hole	pi-hole	Pi-hole 4.4 allows a user able to write to /etc/pihole/dns-servers.conf to escalate privileges through command injection (shell metacharacters after an IP address).	CWE-78 OS Command	CVE-2020-12620	2024-11-21 13:59	2020-07-30	Show	GitHub Exploit DB Packet Storm

213112	9.8	CRITICAL Network	trusteddomain fedoraproject debian	opendmarc fedora debian_linux	OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 has improper null termination in the function opendmarc_xml_parse that can result in a one-byte heap overflow in opendmarc_xml when parsing a spe…	CWE-787 Out-of-bounds Write	CVE-2020-12460	2024-11-21 13:59	2020-07-28	Show	GitHub Exploit DB Packet Storm

213113	6.8	MEDIUM Adjacent	espressif	esp8266_nonos_sdk esp8266_rtos_sdk esp-idf	An encryption-bypass issue was discovered on Espressif ESP-IDF devices through 4.2, ESP8266_NONOS_SDK devices through 3.0.3, and ESP8266_RTOS_SDK devices through 3.3. Broadcasting forged beacon frame…	CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information	CVE-2020-12638	2024-11-21 13:59	2020-07-24	Show	GitHub Exploit DB Packet Storm

213114	7.3	HIGH Local	phoenixcontact	plcnext_engineer	In PHOENIX CONTACT PLCnext Engineer version 2020.3.1 and earlier an improper path sanitation vulnerability exists on import of project files.	CWE-22 Path Traversal	CVE-2020-12499	2024-11-21 13:59	2020-07-22	Show	GitHub Exploit DB Packet Storm

213115	6.1	MEDIUM Network	collaboraoffice	collabora_online_development_edition	The WOPI API integration for Vereign Collabora CODE through 4.2.2 does not properly restrict delivery of JavaScript to a victim's browser, and lacks proper MIME type access control, which could lead …	CWE-79 Cross-site Scripting	CVE-2020-12432	2024-11-21 13:59	2020-07-21	Show	GitHub Exploit DB Packet Storm

213116	7.8	HIGH Local	rockwellautomation	factorytalk_view	In all versions of FactoryTalk View SE, after bypassing memory corruption mechanisms found in the operating system, a local, authenticated attacker may corrupt the associated memory space allowing fo…	CWE-787 Out-of-bounds Write	CVE-2020-12031	2024-11-21 13:59	2020-07-21	Show	GitHub Exploit DB Packet Storm

213117	8.1	HIGH Network	rockwellautomation	factorytalk_view	In all versions of FactoryTalk View SEA remote, an authenticated attacker may be able to utilize certain handlers to interact with the data on the remote endpoint since those handlers do not enforce …	CWE-306 Missing Authentication for Critical Function	CVE-2020-12028	2024-11-21 13:59	2020-07-21	Show	GitHub Exploit DB Packet Storm

213118	4.3	MEDIUM Network	rockwellautomation	factorytalk_view	All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. A remote, authenticated attacker may be able to leverage this information for reconnaiss…	NVD-CWE-noinfo	CVE-2020-12027	2024-11-21 13:59	2020-07-21	Show	GitHub Exploit DB Packet Storm

213119	7.8	HIGH Local	rockwellautomation	factorytalk_view	All versions of FactoryTalk View SE do not properly validate input of filenames within a project directory. A remote, unauthenticated attacker may be able to execute a crafted file on a remote endpoi…	-	CVE-2020-12029	2024-11-21 13:59	2020-07-21	Show	GitHub Exploit DB Packet Storm

213120	5.4	MEDIUM Network	apache	airflow	An issue was found in Apache Airflow versions 1.10.10 and below. It was discovered that many of the admin management screens in the new/RBAC UI handled escaping incorrectly, allowing authenticated us…	CWE-79 Cross-site Scripting	CVE-2020-11983	2024-11-21 13:59	2020-07-17	Show	GitHub Exploit DB Packet Storm