Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249521	5	警告	Insoshi	-	Insoshi における ForumPost user_id の値を設定される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-7309	2012-04-6 16:15	2008-09-21	Show	GitHub Exploit DB Packet Storm

249522	3.5	注意	OpenBSD	-	OpenSSH の gss-serv.c 内の ssh_gssapi_parse_ename 関数におけるサービス運用妨害 (メモリ消費) の脆弱性	CWE-189 数値処理の問題	CVE-2011-5000	2012-04-6 16:00	2012-04-5	Show	GitHub Exploit DB Packet Storm

249523	7.2	危険	F5 Networks	-	F5 FirePass の sudoers ファイルにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-2053	2012-04-6 15:53	2012-04-5	Show	GitHub Exploit DB Packet Storm

249524	7.5	危険	F5 Networks	-	F5 FirePass の my.activation.php3 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1777	2012-04-6 15:43	2012-03-14	Show	GitHub Exploit DB Packet Storm

249525	9.3	危険	シスコシステムズ	-	Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1337	2012-04-6 15:41	2012-04-4	Show	GitHub Exploit DB Packet Storm

249526	9.3	危険	シスコシステムズ	-	Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1336	2012-04-6 15:41	2012-04-4	Show	GitHub Exploit DB Packet Storm

249527	9.3	危険	シスコシステムズ	-	Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1335	2012-04-6 15:40	2012-04-4	Show	GitHub Exploit DB Packet Storm

249528	5.8	警告	株式会社アイシーズ	-	せん茶SNS におけるセッション固定の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1238	2012-04-5 14:03	2012-04-5	Show	GitHub Exploit DB Packet Storm

249529	2.6	注意	株式会社アイシーズ	-	せん茶SNS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1237	2012-04-5 14:02	2012-04-5	Show	GitHub Exploit DB Packet Storm

249530	6.4	警告	東芝テック	-	東芝テック製 e-Studio シリーズにおける認証回避の脆弱性	CWE-287 不適切な認証	CVE-2012-1239	2012-04-5 14:01	2012-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209801	6.5	MEDIUM Network	optilinknetwork	op-xt71000n_firmware	A vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to…	CWE-352 Origin Validation Error	CVE-2020-23589	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209802	4.3	MEDIUM Network	optilinknetwork	op-xt71000n_firmware	A vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to…	CWE-352 Origin Validation Error	CVE-2020-23588	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209803	3.1	LOW Network	optilinknetwork	op-xt71000n_firmware	A vulnerability found in the OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF)…	CWE-352 Origin Validation Error	CVE-2020-23587	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209804	4.3	MEDIUM Network	optilinknetwork	op-xt71000n_firmware	A vulnerability found in OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) att…	CWE-352 Origin Validation Error	CVE-2020-23586	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209805	9.8	CRITICAL Network	optilinknetwork	op-xt71000n_firmware	Unauthenticated remote code execution in OPTILINK OP-XT71000N, Hardware Version: V2.2 occurs when the attacker passes arbitrary commands with IP-ADDRESS using " \| " to execute commands on " /diag_tra…	CWE-77 Command Injection	CVE-2020-23584	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209806	6.5	MEDIUM Network	optilinknetwork	op-xt71000n_firmware	A vulnerability in OPTILINK OP-XT71000N Hardware Version: V2.2, Firmware Version: OP_V3.3.1-191028 allows an unauthenticated, remote attacker to conduct a cross site request forgery (CSRF) attack to …	CWE-352 Origin Validation Error	CVE-2020-23593	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209807	8.8	HIGH Network	optilinknetwork	op-xt71000n_firmware	A remote attacker can conduct a cross-site request forgery (CSRF) attack on OPTILINK OP-XT71000N Hardware Version: V2.2 , Firmware Version: OP_V3.3.1-191028. The vulnerability is due to insufficient …	CWE-352 Origin Validation Error	CVE-2020-23585	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209808	9.8	CRITICAL Network	optilinknetwork	op-xt71000n_firmware	OPTILINK OP-XT71000N V2.2 is vulnerable to Remote Code Execution. The issue occurs when the attacker sends an arbitrary code on "/diag_ping_admin.asp" to "PingTest" interface that leads to COMMAND EX…	CWE-77 Command Injection	CVE-2020-23583	2024-11-21 14:13	2022-11-23	Show	GitHub Exploit DB Packet Storm

209809	9.8	CRITICAL Network	mkcms_project	mkcms	MKCMS V6.2 has SQL injection via the /ucenter/active.php verify parameter.	CWE-89 SQL Injection	CVE-2020-22819	2024-11-21 14:13	2022-11-4	Show	GitHub Exploit DB Packet Storm

209810	9.8	CRITICAL Network	mkcms_project	mkcms	MKCMS V6.2 has SQL injection via /ucenter/reg.php name parameter.	CWE-89 SQL Injection	CVE-2020-22818	2024-11-21 14:13	2022-11-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed