Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249681 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla Firefox および Thunderbird の nsSVGPointList::AppendElement 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2363 2012-01-27 16:31 2011-06-21 Show GitHub Exploit DB Packet Storm
249682 5 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla Firefox および Thunderbird における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2362 2012-01-27 16:25 2011-06-21 Show GitHub Exploit DB Packet Storm
249683 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla Firefox および Thunderbird の nsXULCommandDispatcher 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0085 2012-01-27 16:23 2011-06-21 Show GitHub Exploit DB Packet Storm
249684 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla Firefox および Thunderbird の nsSVGPathSegList::ReplaceItem 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0083 2012-01-27 16:22 2011-06-21 Show GitHub Exploit DB Packet Storm
249685 4.3 警告 シマンテック - Symantec pcAnywhere 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3479 2012-01-27 16:20 2012-01-22 Show GitHub Exploit DB Packet Storm
249686 10 危険 シマンテック - Symantec pcAnywhere 製品における任意のコードを実行される脆弱性 CWE-287
不適切な認証 		CVE-2011-3478 2012-01-27 16:18 2012-01-22 Show GitHub Exploit DB Packet Storm
249687 4.3 警告 Digium - Asterisk Open Source の chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-0885 2012-01-27 15:44 2012-01-15 Show GitHub Exploit DB Packet Storm
249688 4.3 警告 Google - Android の Bluetooth サービスにおける連絡先データを取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4276 2012-01-27 15:43 2011-10-28 Show GitHub Exploit DB Packet Storm
249689 5.8 警告 Tencent - Android 用 Tencent QQPhoto における連絡先情報およびパスワードハッシュを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4867 2012-01-27 15:18 2012-01-25 Show GitHub Exploit DB Packet Storm
249690 6.4 警告 Kaixin001 - Android 用 Kaixin001 における連絡先情報および平文パスワードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-4866 2012-01-27 15:18 2012-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211461 5.4 MEDIUM
Network 		glpi-project glpi In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6. CWE-79
Cross-site Scripting 		CVE-2020-11062 2024-11-21 13:56 2020-05-13 Show GitHub Exploit DB Packet Storm
211462 8.8 HIGH
Network 		glpi-project glpi In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. Theoretically, this vulnerability can be exploited by an attacker without a valid account by using a… CWE-352
 Origin Validation Error 		CVE-2020-11060 2024-11-21 13:56 2020-05-13 Show GitHub Exploit DB Packet Storm
211463 8.6 HIGH
Network 		simpleledger slp-validate In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow… CWE-697
 Incorrect Comparison 		CVE-2020-11072 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211464 8.6 HIGH
Network 		simpleledger slpjs SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet c… CWE-697
 Incorrect Comparison 		CVE-2020-11071 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211465 8.8 HIGH
Network 		pi-hole pi-hole The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Al… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11108 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211466 5.4 MEDIUM
Network 		shopizer shopizer In Shopizer before version 2.11.0, a script can be injected in various forms and saved in the database, then executed when information is fetched from backend. This has been patched in version 2.11.0. CWE-79
Cross-site Scripting 		CVE-2020-11006 2024-11-21 13:56 2020-05-9 Show GitHub Exploit DB Packet Storm
211467 8.0 HIGH
Adjacent 		tp-link tl-wa855re_firmware This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P1[20191213-rel60361] Wi-Fi extenders. Al… CWE-287
Improper Authentication 		CVE-2020-10916 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211468 6.3 MEDIUM
Network 		barrelstrengthdesign sprout_forms In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This ha… CWE-74
Injection 		CVE-2020-11056 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211469 8.1 HIGH
Network 		java-websocket_project java-websocket In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched … CWE-295
Improper Certificate Validation  		CVE-2020-11050 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211470 7.2 HIGH
Network 		gira tks-ip-gateway_firmware Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access. CWE-78
OS Command  		CVE-2020-10795 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm