Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249371	7.5	危険	Ruby on Rails project	-	Ruby on Rails の actionpack/lib/action_view/template/resolver.rb におけるアクセス制限を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0449	2012-03-27 18:42	2011-02-8	Show	GitHub Exploit DB Packet Storm

249372	7.5	危険	Ruby on Rails project	-	Ruby on Rails における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0448	2012-03-27 18:42	2011-02-8	Show	GitHub Exploit DB Packet Storm

249373	6.8	警告	Ruby on Rails project	-	Ruby on Rails におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0447	2012-03-27 18:42	2011-02-8	Show	GitHub Exploit DB Packet Storm

249374	4.3	警告	Ruby on Rails project	-	Ruby on Rails の mail_to ヘルパーにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0446	2012-03-27 18:42	2011-02-9	Show	GitHub Exploit DB Packet Storm

249375	6.8	警告	TinyBB	-	TinyBB における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0443	2012-03-27 18:42	2011-01-12	Show	GitHub Exploit DB Packet Storm

249376	3.5	注意	DELL EMC (旧 EMC Corporation)	-	EMC Avamar のサービスユーティリティにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0442	2012-03-27 18:42	2011-03-16	Show	GitHub Exploit DB Packet Storm

249377	6.3	警告	The PHP Group	-	PHP の Debian GNU/Linux /etc/cron.d/php5 クーロンジョブにおける任意のファイルを削除される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0441	2012-03-27 18:42	2011-03-29	Show	GitHub Exploit DB Packet Storm

249378	5.8	警告	Mahara	-	Mahara におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0440	2012-03-27 18:42	2011-03-28	Show	GitHub Exploit DB Packet Storm

249379	4.3	警告	Mahara	-	Mahara におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0439	2012-03-27 18:42	2011-03-28	Show	GitHub Exploit DB Packet Storm

249380	6.8	警告	arthurdejong	-	nss-pam-ldapd PAM モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-0438	2012-03-27 18:42	2011-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210781	3.3	LOW Local	c-ares fedoraproject	c-ares fedora	A possible use-after-free and double-free in c-ares lib version 1.16.0 if ares_destroy() is called prior to ares_getaddrinfo() completing. This flaw possibly allows an attacker to crash the service t…	CWE-415 CWE-416 Double Free Use After Free	CVE-2020-14354	2024-11-21 14:03	2021-05-13	Show	GitHub Exploit DB Packet Storm

210782	10.0	CRITICAL Network	rockwellautomation	factorytalk_services_platform	In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that p…	-	CVE-2020-14516	2024-11-21 14:03	2021-03-19	Show	GitHub Exploit DB Packet Storm

210783	7.5	HIGH Local	gnu redhat fedoraproject netapp	grub2 enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux enterprise_linux_server_tus enterprise_linux_server_eus fedora cloud_backup ontap_select_deploy…	A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to cra…	-	CVE-2020-14372	2024-11-21 14:03	2021-03-4	Show	GitHub Exploit DB Packet Storm

210784	7.3	HIGH Network	redhat	louketo_proxy	A vulnerability was found in all versions of Keycloak Gatekeeper, where on using lower case HTTP headers (via cURL) an attacker can bypass our Gatekeeper. Lower case headers are also accepted by some…	-	CVE-2020-14359	2024-11-21 14:03	2021-02-23	Show	GitHub Exploit DB Packet Storm

210785	9.8	CRITICAL Network	pyyaml oracle	pyyaml communications_cloud_native_core_network_function_cloud_native_environment	A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or…	CWE-20 Improper Input Validation	CVE-2020-14343	2024-11-21 14:03	2021-02-10	Show	GitHub Exploit DB Packet Storm

210786	5.5	MEDIUM Local	gnome	control_center	A flaw was found in the GNOME Control Center in Red Hat Enterprise Linux 8 versions prior to 8.2, where it improperly uses Red Hat Customer Portal credentials when a user registers a system through t…	-	CVE-2020-14391	2024-11-21 14:03	2021-02-9	Show	GitHub Exploit DB Packet Storm

210787	7.0	HIGH Local	morphisec madshi cisco	unified_threat_prevention_platform madcodehook advanced_malware_protection	A TOCTOU vulnerability exists in madCodeHook before 2020-07-16 that allows local attackers to elevate their privileges to SYSTEM. This occurs because path redirection can occur via vectors involving …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-14418	2024-11-21 14:03	2021-01-30	Show	GitHub Exploit DB Packet Storm

210788	7.8	HIGH Local	x.org	x_server	A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerabi…	-	CVE-2020-14360	2024-11-21 14:03	2021-01-21	Show	GitHub Exploit DB Packet Storm

210789	5.4	MEDIUM Network	libsdl debian fedoraproject	simple_directmedia_layer debian_linux fedora	SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.	CWE-125 Out-of-bounds Read	CVE-2020-14410	2024-11-21 14:03	2021-01-20	Show	GitHub Exploit DB Packet Storm

210790	7.8	HIGH Local	libsdl fedoraproject debian starwindsoftware	simple_directmedia_layer fedora debian_linux starwind_virtual_san	SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-14409	2024-11-21 14:03	2021-01-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed