Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249621	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0600	2012-03-21 15:23	2012-03-8	Show	GitHub Exploit DB Packet Storm

249622	6.8	警告	アップル Google	-	複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2877	2012-03-21 15:22	2011-10-4	Show	GitHub Exploit DB Packet Storm

249623	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2873	2012-03-21 15:02	2012-03-8	Show	GitHub Exploit DB Packet Storm

249624	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2872	2012-03-21 15:01	2012-03-8	Show	GitHub Exploit DB Packet Storm

249625	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2871	2012-03-21 14:59	2012-03-8	Show	GitHub Exploit DB Packet Storm

249626	9.3	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2870	2012-03-21 14:58	2012-03-8	Show	GitHub Exploit DB Packet Storm

249627	7.6	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0648	2012-03-21 14:52	2012-03-8	Show	GitHub Exploit DB Packet Storm

249628	7.6	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0639	2012-03-21 14:51	2012-03-8	Show	GitHub Exploit DB Packet Storm

249629	7.6	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0638	2012-03-21 14:49	2012-03-8	Show	GitHub Exploit DB Packet Storm

249630	7.6	危険	アップル	-	複数の Apple 製品で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0637	2012-03-21 14:47	2012-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211021	9.1	CRITICAL Network	broadcom fedoraproject	tcpreplay fedora	tcprewrite in Tcpreplay through 4.3.2 has a heap-based buffer over-read during a get_c operation. The issue is being triggered in the function get_ipv6_next() at common/get.c.	CWE-125 Out-of-bounds Read	CVE-2020-12740	2024-11-21 14:00	2020-05-9	Show	GitHub Exploit DB Packet Storm

211022	6.5	MEDIUM Network	maxum	rumpus	An issue was discovered in Maxum Rumpus before 8.2.12 on macOS. Authenticated users can perform a path traversal using double escaped characters, enabling read access to arbitrary files on the server.	CWE-22 Path Traversal	CVE-2020-12737	2024-11-21 14:00	2020-05-9	Show	GitHub Exploit DB Packet Storm

211023	5.5	MEDIUM Local	avira	free_antivirus	Avira Free Antivirus through 15.0.2005.1866 allows local users to discover user credentials. The functions of the executable file Avira.PWM.NativeMessaging.exe are aimed at collecting credentials sto…	NVD-CWE-noinfo	CVE-2020-12680	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211024	9.8	CRITICAL Network	domainmod	domainmod	reset.php in DomainMOD 4.13.0 uses insufficient entropy for password reset requests, leading to account takeover.	CWE-331 Insufficient Entropy	CVE-2020-12735	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211025	9.8	CRITICAL Network	vbulletin	vbulletin	vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control.	CWE-89 CWE-306 SQL Injection Missing Authentication for Critical Function	CVE-2020-12720	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211026	7.2	HIGH Network	wso2	identity_server_analytics identity_server identity_server_as_key_manager enterprise_integrator api_microgateway api_manager_analytics api_manager	XXE during an EventPublisher update can occur in Management Console in WSO2 API Manager 3.0.0 and earlier, API Manager Analytics 2.5.0 and earlier, API Microgateway 2.2.0, Enterprise Integrator 6.4.0…	CWE-611 XXE	CVE-2020-12719	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211027	5.4	MEDIUM Network	php-fusion	php-fusion	In administration/comments.php in PHP-Fusion 9.03.50, an authenticated attacker can take advantage of a stored XSS vulnerability in the Preview Comment feature. The protection mechanism can be bypass…	CWE-79 Cross-site Scripting	CVE-2020-12718	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211028	6.1	MEDIUM Network	php-fusion	php-fusion	Multiple cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the cat_id parameter to downloads/downloads.php or article.php. N…	CWE-79 Cross-site Scripting	CVE-2020-12708	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211029	6.1	MEDIUM Network	lepton-cms	lepton_cms	An XSS vulnerability exists in modules/wysiwyg/save.php of LeptonCMS 4.5.0. This can be exploited because the only security measure used against XSS is the stripping of SCRIPT elements. A malicious a…	CWE-79 Cross-site Scripting	CVE-2020-12707	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm

211030	5.4	MEDIUM Network	php-fusion	php-fusion	Multiple Cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the go parameter to faq/faq_admin.php or shoutbox_panel/shoutbox_…	CWE-79 Cross-site Scripting	CVE-2020-12706	2024-11-21 14:00	2020-05-8	Show	GitHub Exploit DB Packet Storm