Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249281 5 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3557 2012-06-18 14:25 2012-06-14 Show GitHub Exploit DB Packet Storm
249282 9.3 危険 Opera Software ASA - Opera におけるクロスサイトスクリプティングの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-3556 2012-06-18 14:22 2012-06-14 Show GitHub Exploit DB Packet Storm
249283 7.6 危険 Opera Software ASA - Opera におけるクロスサイトスクリプティング攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3555 2012-06-18 14:20 2012-06-14 Show GitHub Exploit DB Packet Storm
249284 5.6 警告 ioquake3 - ioquake3 における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-3345 2012-06-18 14:13 2012-06-14 Show GitHub Exploit DB Packet Storm
249285 6 警告 クアンタム
デル		 - Quantum Scalar i500 および Dell ML6000 におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1843 2012-06-15 18:53 2012-03-22 Show GitHub Exploit DB Packet Storm
249286 3.5 注意 クアンタム
デル		 - Quantum Scalar i500 および Dell ML6000 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1842 2012-06-15 18:51 2012-03-22 Show GitHub Exploit DB Packet Storm
249287 9.3 危険 マイクロソフト - Microsoft Windows のリモートデスクトッププロトコル (RDP) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0173 2012-06-15 17:34 2012-06-12 Show GitHub Exploit DB Packet Storm
249288 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1523 2012-06-15 17:32 2012-06-12 Show GitHub Exploit DB Packet Storm
249289 9.3 危険 マイクロソフト - Microsoft Lync における権限昇格の脆弱性 CWE-Other
その他 		CVE-2012-1849 2012-06-15 17:31 2012-06-12 Show GitHub Exploit DB Packet Storm
249290 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1855 2012-06-15 17:30 2012-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209811 6.1 MEDIUM
Network 		nagios log_server Nagios Log Server 2.1.7 contains a cross-site scripting (XSS) vulnerability in /nagioslogserver/configure/create_snapshot through the snapshot_name parameter, which may impact users who open a malici… CWE-79
Cross-site Scripting 		CVE-2020-25385 2024-11-21 14:17 2021-01-20 Show GitHub Exploit DB Packet Storm
209812 9.8 CRITICAL
Network 		siemens scalance_x200-4pirt_firmware
scalance_x201-3pirt_firmware
scalance_x202-2irt_firmware
scalance_x202-2pirt_firmware
scalance_x202-2pirt_siplus_net_firmware
scalance_x204irt_firmware
 A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5… - CVE-2020-25226 2024-11-21 14:17 2021-01-13 Show GitHub Exploit DB Packet Storm
209813 7.5 HIGH
Network 		dovecot
debian
fedoraproject 		dovecot
debian_linux
fedora 		Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a crafted email message with certain choices for ten thousand MIME parts. CWE-20
 Improper Input Validation  		CVE-2020-25275 2024-11-21 14:17 2021-01-5 Show GitHub Exploit DB Packet Storm
209814 8.8 HIGH
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has incorrectly implemented protections from session fixation, which may allow an attacker to gain access to a sessio… CWE-384
 Session Fixation 		CVE-2020-25198 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209815 9.8 CRITICAL
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows SSH/Telnet sessions, which may be vulnerable to brute force attacks to bypass authentication. CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-25196 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209816 8.8 HIGH
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has improper privilege management, which may allow an attacker with user privileges to perform requests with administ… CWE-269
 Improper Privilege Management 		CVE-2020-25194 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209817 5.3 MEDIUM
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows sensitive information to be displayed without proper authorization. CWE-200
Information Exposure 		CVE-2020-25192 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209818 9.8 CRITICAL
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower stores and transmits the credentials of third-party services in cleartext. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-25190 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209819 7.5 HIGH
Network 		moxa nport_iaw5000a-i\/o_firmware The built-in web service for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower does not require users to have strong passwords. CWE-521
Weak Password Requirements  		CVE-2020-25153 2024-11-21 14:17 2020-12-24 Show GitHub Exploit DB Packet Storm
209820 9.8 CRITICAL
Network 		treck tcp\/ip A heap-based buffer overflow in the Treck HTTP Server component before 6.0.1.68 allows remote attackers to cause a denial of service (crash/reset) or to possibly execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2020-25066 2024-11-21 14:17 2020-12-23 Show GitHub Exploit DB Packet Storm