Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249511 6.8 警告 The phpMyAdmin Project - phpMyAdmin の sql.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-2643 2012-03-27 18:43 2011-07-23 Show GitHub Exploit DB Packet Storm
249512 2.6 注意 The phpMyAdmin Project - phpMyAdmin の table Print view 実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2642 2012-03-27 18:43 2011-07-23 Show GitHub Exploit DB Packet Storm
249513 6.4 警告 ヒューレット・パッカード - HP OpenView Performance Agent および Operations Agent の ovbbccb.exe における任意のファイルを削除される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2608 2012-03-27 18:43 2011-07-1 Show GitHub Exploit DB Packet Storm
249514 4.3 警告 IBM - IBM RTC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2607 2012-03-27 18:43 2011-05-27 Show GitHub Exploit DB Packet Storm
249515 4.3 警告 IBM - IBM RTC の Web UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2606 2012-03-27 18:43 2011-06-30 Show GitHub Exploit DB Packet Storm
249516 4.3 警告 Mozilla Foundation - Mozilla Firefox および Thunderbird の nsCookieService::SetCookieStringInternal 関数における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-2605 2012-03-27 18:43 2011-06-30 Show GitHub Exploit DB Packet Storm
249517 5 警告 The Prosody Team - Prosody の json.decode 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2532 2012-03-27 18:43 2011-06-3 Show GitHub Exploit DB Packet Storm
249518 7.1 危険 インテル - Intel G41 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2604 2012-03-27 18:43 2011-06-30 Show GitHub Exploit DB Packet Storm
249519 7.1 危険 NVIDIA - NVIDIA 9400M ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2603 2012-03-27 18:43 2011-06-30 Show GitHub Exploit DB Packet Storm
249520 7.1 危険 NVIDIA - NVIDIA Geforce 310 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2602 2012-03-27 18:43 2011-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213701 9.8 CRITICAL
Network 		dbsoft sglac An issue was discovered in DB Soft SGLAC before 20.05.001. The ProcedimientoGenerico method in the SVCManejador.svc webservice of the SGLAC web frontend allows an attacker to run arbitrary SQL comman… CWE-89
SQL Injection 		CVE-2020-12606 2024-11-21 13:59 2020-08-17 Show GitHub Exploit DB Packet Storm
213702 6.1 MEDIUM
Network 		tiny tinymce A cross-site scripting (XSS) vulnerability in TinyMCE 5.2.1 and earlier allows remote attackers to inject arbitrary web script when configured in classic editing mode. CWE-79
Cross-site Scripting 		CVE-2020-12648 2024-11-21 13:59 2020-08-14 Show GitHub Exploit DB Packet Storm
213703 8.2 HIGH
Local 		intel s2600wftr_firmware
s2600wf0r_firmware
s2600wfqr_firmware
s2600bpsr_firmware
s2600bpbr_firmware
s2600bpqr_firmware
s2600stqr_firmware
s2600stbr_firmware 		Improper initialization in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access. CWE-665
 Improper Initialization 		CVE-2020-12301 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213704 8.2 HIGH
Local 		intel s2600stqr_firmware
s2600stbr_firmware
s2600bpsr_firmware
s2600bpbr_firmware
s2600bpqr_firmware
s2600wftr_firmware
s2600wf0r_firmware
s2600wfqr_firmware 		Improper input validation in BIOS firmware for Intel(R) Server Board Families S2600ST, S2600BP and S2600WF may allow a privileged user to potentially enable escalation of privilege via local access. CWE-20
 Improper Input Validation  		CVE-2020-12299 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213705 8.2 HIGH
Local 		intel s2600cw2_firmware
s2600cw2s_firmware
s2600cwt_firmware
s2600cwts_firmware
s2600cw2r_firmware
s2600cw2sr_firmware
s2600cwtr_firmware
s2600cwtsr_firmware
s2600kp_firmware
s26… 		Uninitialized pointer in BIOS firmware for Intel(R) Server Board Families S2600CW, S2600KP, S2600TP, and S2600WT may allow a privileged user to potentially enable escalation of privilege via local ac… CWE-824
 Access of Uninitialized Pointer 		CVE-2020-12300 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213706 7.8 HIGH
Local 		intel distribution_of_openvino_toolkit Incorrect permissions in the Intel(R) Distribution of OpenVINO(TM) Toolkit before version 2020.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CWE-276
Incorrect Default Permissions  		CVE-2020-12287 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213707 9.8 CRITICAL
Network 		stengg vpncrypt_m10_firmware The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System. CWE-78
OS Command  		CVE-2020-12107 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213708 9.8 CRITICAL
Network 		stengg vpncrypt_m10_firmware The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows unauthenticated users to send HTTP POST request to several critical Administrative functions such as, changing credentials of the Admini… CWE-306
Missing Authentication for Critical Function 		CVE-2020-12106 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213709 7.5 HIGH
Network 		dovecot
debian
fedoraproject
canonical 		dovecot
debian_linux
fedora
ubuntu_linux 		In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply ne… CWE-674
 Uncontrolled Recursion 		CVE-2020-12100 2024-11-21 13:59 2020-08-13 Show GitHub Exploit DB Packet Storm
213710 7.5 HIGH
Network 		apache wicket
fortress 		By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. This would allow an attacker to see possibly sensitive information inside a HTML template that is usually r… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-11976 2024-11-21 13:59 2020-08-12 Show GitHub Exploit DB Packet Storm