Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249471 7.2 危険 マイクロソフト - Microsoft Windows の 32 ビットプラットフォームにおける権限昇格の脆弱性 CWE-noinfo
情報不足 		CVE-2010-3888 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249472 4.3 警告 アップル - Apple の Mac OS X の Limit Mail 機能におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3887 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249473 4.3 警告 マイクロソフト - Microsoft mshtml.dll の sertIntoTimeoutList 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3886 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249474 6.8 警告 CMS Made Simple - CMS Made Simple における管理者パスワードのリセット要求の管理者認証をハイジャックされる脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3884 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249475 6.8 警告 CMS Made Simple - CMS Made Simple の Change Group Permissions モジュールにおけるクロスサイトリクエストフォージェリ脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3883 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249476 4.3 警告 CMS Made Simple - CMS Made Simple におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3882 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249477 4.3 警告 レッドハット - Red Hat JBoss Enterprise Application Platform の JMX Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3878 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
249478 4.3 警告 Mahara - Mahara の blocktype/groupviews/theme/raw/groupviews.tpl におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3871 2012-03-27 18:42 2010-11-9 Show GitHub Exploit DB Packet Storm
249479 4 警告 レッドハット - RHCS および Dogtag Certificate System における任意の認証番号を生成される脆弱性 CWE-310
暗号の問題 		CVE-2010-3869 2012-03-27 18:42 2010-11-8 Show GitHub Exploit DB Packet Storm
249480 5.8 警告 レッドハット - RHCS および Dogtag Certificate System における PIN を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-3868 2012-03-27 18:42 2010-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212231 6.8 MEDIUM
Physics 		avertx hd838_firmware
hd438_firmware 		An issue was discovered in AvertX Auto focus Night Vision HD Indoor/Outdoor IP Dome Camera HD838 and Night Vision HD Indoor/Outdoor Mini IP Bullet Camera HD438. An attacker with physical access to th… NVD-CWE-noinfo
CVE-2020-11623 2024-11-21 13:58 2020-07-24 Show GitHub Exploit DB Packet Storm
212232 9.8 CRITICAL
Network 		superwebmailer superwebmailer SuperWebMailer 7.21.0.01526 is susceptible to a remote code execution vulnerability in the Language parameter of mailingupgrade.php. An unauthenticated remote attacker can exploit this behavior to ex… CWE-94
Code Injection 		CVE-2020-11546 2024-11-21 13:58 2020-07-15 Show GitHub Exploit DB Packet Storm
212233 7.8 HIGH
Local 		gog galaxy In GOG Galaxy 1.2.67, there is a service that is vulnerable to weak file/service permissions: GalaxyClientService.exe. An attacker can put malicious code in a Trojan horse GalaxyClientService.exe. Af… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-11827 2024-11-21 13:58 2020-07-15 Show GitHub Exploit DB Packet Storm
212234 9.8 CRITICAL
Network 		rittal cmciii-pu-9333e0fb_firmware
pdu-3c002dec_firmware
cmc_iii_pu_7030.000_firmware
lcp-cw_firmware
iot_interface_3124.300 		An issue was discovered on Rittal PDU-3C002DEC through 5.17.10 and CMCIII-PU-9333E0FB through 3.17.10 devices. There is a least privilege violation. CWE-269
 Improper Privilege Management 		CVE-2020-11956 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212235 8.8 HIGH
Network 		rittal cmciii-pu-9333e0fb_firmware
pdu-3c002dec_firmware
cmc_iii_pu_7030.000_firmware
lcp-cw_firmware
iot_interface_3124.300 		An issue was discovered on Rittal PDU-3C002DEC through 5.15.70 and CMCIII-PU-9333E0FB through 3.15.70 devices. There are insecure permissions. CWE-276
Incorrect Default Permissions  		CVE-2020-11955 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212236 8.8 HIGH
Network 		rittal cmciii-pu-9333e0fb_firmware
pdu-3c002dec_firmware
cmc_iii_pu_7030.000_firmware
lcp-cw_firmware
iot_interface_3124.300 		An issue was discovered on Rittal PDU-3C002DEC through 5.15.40 and CMCIII-PU-9333E0FB through 3.15.70_4 devices. Attackers can execute code. CWE-78
OS Command  		CVE-2020-11953 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212237 6.2 MEDIUM
Local 		rittal cmciii-pu-9333e0fb_firmware
pdu-3c002dec_firmware
cmc_iii_pu_7030.000_firmware
lcp-cw_firmware
iot_interface_3124.300 		An issue was discovered on Rittal PDU-3C002DEC through 5.17.10 and CMCIII-PU-9333E0FB through 3.17.10 devices. Attackers can bypass the CLI menu. NVD-CWE-noinfo
CVE-2020-11952 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212238 9.8 CRITICAL
Network 		rittal cmciii-pu-9333e0fb_firmware
pdu-3c002dec_firmware
cmc_iii_pu_7030.000_firmware
lcp-cw_firmware
iot_interface_3124.300 		An issue was discovered on Rittal PDU-3C002DEC through 5.17.10 and CMCIII-PU-9333E0FB through 3.17.10 devices. There is a Backdoor root account. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-11951 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212239 9.0 CRITICAL
Network 		pandorafms pandora_fms Pandora FMS 7.0 NG <= 746 suffers from Multiple XSS vulnerabilities in different browser views. A network administrator scanning a SNMP device can trigger a Cross Site Scripting (XSS), which can run … CWE-79
Cross-site Scripting 		CVE-2020-11749 2024-11-21 13:58 2020-07-14 Show GitHub Exploit DB Packet Storm
212240 9.8 CRITICAL
Network 		microfocus identity_manager Elevation of privilege and/or unauthorized access vulnerability in Micro Focus Identity Manager. Affecting versions prior to 4.7.3 and 4.8.1 hot fix 1. The vulnerability could allow information expos… NVD-CWE-noinfo
CVE-2020-11849 2024-11-21 13:58 2020-07-8 Show GitHub Exploit DB Packet Storm