Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249431	9.3	危険	X.Org Foundation サイバートラスト株式会社レッドハット	-	X.Org の xrdb.c における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0465	2012-04-17 17:13	2011-03-1	Show	GitHub Exploit DB Packet Storm

249432	5	警告	PNG Development Group	-	libpng の png_err 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-2691	2012-04-17 17:09	2011-07-17	Show	GitHub Exploit DB Packet Storm

249433	5	警告	光洋電子工業	-	複数の光洋電子工業社製品の Web サーバにおけるサービス運用妨害 (リソース消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-1809	2012-04-17 16:52	2012-04-11	Show	GitHub Exploit DB Packet Storm

249434	10	危険	光洋電子工業	-	複数の光洋電子工業社製品の Web サーバおける不特定の機能を実行される脆弱性	CWE-287 不適切な認証	CVE-2012-1808	2012-04-17 16:52	2012-04-11	Show	GitHub Exploit DB Packet Storm

249435	4.3	警告	光洋電子工業	-	複数の光洋電子工業社製品の Web サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1807	2012-04-17 16:51	2012-04-11	Show	GitHub Exploit DB Packet Storm

249436	7.5	危険	光洋電子工業	-	複数の光洋電子工業社製品の ECOM Ethernet モジュールにおけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-1806	2012-04-17 16:50	2012-04-11	Show	GitHub Exploit DB Packet Storm

249437	10	危険	光洋電子工業	-	複数の光洋電子工業社製品の ECOM Ethernet モジュールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1805	2012-04-17 16:47	2012-04-11	Show	GitHub Exploit DB Packet Storm

249438	7.5	危険	libarchive	-	libarchive におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1779	2012-04-17 16:46	2012-04-13	Show	GitHub Exploit DB Packet Storm

249439	7.5	危険	libarchive	-	libarchive におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4666	2012-04-17 16:29	2012-04-13	Show	GitHub Exploit DB Packet Storm

249440	9.3	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird における権限を取得される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3655	2012-04-16 18:09	2011-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201041	6.1	MEDIUM Network	horde	groupware gollem	Gollem before 3.0.13, as used in Horde Groupware Webmail Edition 5.2.22 and other products, is affected by a reflected Cross-Site Scripting (XSS) vulnerability via the HTTP GET dir parameter in the b…	CWE-79 Cross-site Scripting	CVE-2020-8034	2024-11-21 14:38	2020-05-19	Show	GitHub Exploit DB Packet Storm

201042	6.1	MEDIUM Network	horde	groupware	The image view functionality in Horde Groupware Webmail Edition before 5.2.22 is affected by a stored Cross-Site Scripting (XSS) vulnerability via an SVG image upload containing a JavaScript payload.…	CWE-79 Cross-site Scripting	CVE-2020-8035	2024-11-21 14:38	2020-05-19	Show	GitHub Exploit DB Packet Storm

201043	9.8	CRITICAL Network	logkitty_project	logkitty	Lack of output sanitization allowed an attack to execute arbitrary shell commands via the logkitty npm package before version 0.7.1.	CWE-94 Code Injection	CVE-2020-8149	2024-11-21 14:38	2020-05-16	Show	GitHub Exploit DB Packet Storm

201044	7.5	HIGH Network	bitdefender	engines	Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an attacker to trigger a denial of service while scanning a specially-crafted sample. This…	CWE-20 Improper Input Validation	CVE-2020-8100	2024-11-21 14:38	2020-05-15	Show	GitHub Exploit DB Packet Storm

201045	6.1	MEDIUM Network	opensuse debian	open_build_service debian_linux	A Improper Neutralization of Input During Web Page Generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. This issue affects: openSUSE open-bu…	-	CVE-2020-8020	2024-11-21 14:38	2020-05-14	Show	GitHub Exploit DB Packet Storm

201046	9.8	CRITICAL Network	rubyonrails debian	actionpack_page-caching debian_linux	There is a vulnerability in actionpack_page-caching gem < v1.2.1 that allows an attacker to write arbitrary files to a web server, potentially resulting in remote code execution if the attacker can w…	CWE-22 Path Traversal	CVE-2020-8159	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201047	7.0	HIGH Network	nextcloud fedoraproject	mail fedora	A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.	CWE-295 Improper Certificate Validation	CVE-2020-8156	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201048	5.4	MEDIUM Network	nextcloud	nextcloud_server	An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross-site scripting vulnerability when opening a malicious PDF.	CWE-79 Cross-site Scripting	CVE-2020-8155	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201049	7.7	HIGH Network	nextcloud	nextcloud_server	An Insecure direct object reference vulnerability in Nextcloud Server 18.0.2 allowed an attacker to remote wipe devices of other users when sending a malicious request directly to the endpoint.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-8154	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201050	8.1	HIGH Network	nextcloud fedoraproject	group_folders fedora	Improper access control in Groupfolders app 4.0.3 allowed to delete hidden directories when when renaming an accessible item to the same name.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-8153	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm