Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249301 4.3 警告 RSSOwl - RSSOwl において任意のスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1252 2012-05-25 12:01 2012-05-25 Show GitHub Exploit DB Packet Storm
249302 7.5 危険 SIRINI.NET - GR Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5091 2012-05-25 11:53 2012-05-24 Show GitHub Exploit DB Packet Storm
249303 6.4 警告 SIRINI.NET - GR Board におけるデータを変更または削除される脆弱性 CWE-287
不適切な認証 		CVE-2011-5090 2012-05-25 11:52 2012-05-24 Show GitHub Exploit DB Packet Storm
249304 5 警告 Tornado - Tornado の tornado.web.RequestHandler.set_header 関数における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2374 2012-05-25 11:26 2012-05-23 Show GitHub Exploit DB Packet Storm
249305 6.4 警告 Gliffy - Atlassian JIRA および Atlassian Confluence 用 Gliffy プラグインにおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2928 2012-05-24 13:42 2012-05-22 Show GitHub Exploit DB Packet Storm
249306 4 警告 TM Software - Atlassian JIRA 用 TM Software Tempo プラグインにおけるサービス運用妨害 (リソース消費)の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2927 2012-05-24 13:41 2012-05-22 Show GitHub Exploit DB Packet Storm
249307 4.3 警告 NetWebLogic - WordPress 用 Login With Ajax プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2759 2012-05-24 13:38 2012-05-22 Show GitHub Exploit DB Packet Storm
249308 4.3 警告 Schneider Electric - Schneider Electric Kerweb および Kerwin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1990 2012-05-24 12:32 2012-05-22 Show GitHub Exploit DB Packet Storm
249309 7.5 危険 Thomas Abeel - Simple PHP Agenda の engine.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2925 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
249310 7.5 危険 HyperMethod IBS - Hypermethod eLearning Server の admin/setup.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-2924 2012-05-23 19:35 2012-05-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201091 3.3 LOW
Local 		huawei p30_firmware HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specifi… CWE-287
Improper Authentication 		CVE-2020-9077 2024-11-21 14:39 2020-07-27 Show GitHub Exploit DB Packet Storm
201092 5.5 MEDIUM
Local 		kubernetes kubernetes The Kubernetes kubelet component in versions 1.1-1.16.12, 1.17.0-1.17.8 and 1.18.0-1.18.5 do not account for disk usage by a pod which writes to its own /etc/hosts file. The /etc/hosts file mounted i… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8557 2024-11-21 14:39 2020-07-24 Show GitHub Exploit DB Packet Storm
201093 6.8 MEDIUM
Network 		kubernetes kubernetes The Kubernetes kube-apiserver in versions v1.6-v1.15, and versions prior to v1.16.13, v1.17.9 and v1.18.6 are vulnerable to an unvalidated redirect on proxied upgrade requests that could allow an att… CWE-601
Open Redirect 		CVE-2020-8559 2024-11-21 14:39 2020-07-22 Show GitHub Exploit DB Packet Storm
201094 7.2 HIGH
Network 		gpononu 1ge_router_wifi_onu_v2801rw_firmware
1ge\+3fe\+wifi_onu_v2804rgw_firmware 		Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in … CWE-78
OS Command  		CVE-2020-8958 2024-11-21 14:39 2020-07-16 Show GitHub Exploit DB Packet Storm
201095 5.5 MEDIUM
Local 		openthread wpantund A memory leak in Openthread's wpantund versions up to commit 0e5d1601febb869f583e944785e5685c6c747be7, when used in an environment where wpanctl is directly interfacing with the control driver (eg: d… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-8916 2024-11-21 14:39 2020-07-8 Show GitHub Exploit DB Packet Storm
201096 7.5 HIGH
Network 		envoyproxy envoy Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8663 2024-11-21 14:39 2020-07-2 Show GitHub Exploit DB Packet Storm
201097 6.5 MEDIUM
Network 		netapp hci_h610s_firmware The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-8573 2024-11-21 14:39 2020-06-29 Show GitHub Exploit DB Packet Storm
201098 7.2 HIGH
Network 		johnsoncontrols exacqvision_web_service
exacqvision_enterprise_manager 		A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-9047 2024-11-21 14:39 2020-06-27 Show GitHub Exploit DB Packet Storm
201099 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8933 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm
201100 7.8 HIGH
Local 		google
opensuse 		guest-oslogin
leap 		A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi… CWE-276
Incorrect Default Permissions  		CVE-2020-8907 2024-11-21 14:39 2020-06-22 Show GitHub Exploit DB Packet Storm