Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249771 6.4 警告 Novell - SUSE OBS の API におけるパッケージまたはプロジェクトの書き込みアクセス制限を回避する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0466 2012-03-27 18:42 2011-03-2 Show GitHub Exploit DB Packet Storm
249772 10 危険 Novell - Novell Vibe OnPrem における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-0464 2012-03-27 18:42 2011-02-25 Show GitHub Exploit DB Packet Storm
249773 2.1 注意 Linux - Linux kernel の ocfs2_prepare_page_for_write 関数における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0463 2012-03-27 18:42 2011-04-9 Show GitHub Exploit DB Packet Storm
249774 4.3 警告 Novell - SUSE OBS のログインページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0462 2012-03-27 18:42 2011-03-2 Show GitHub Exploit DB Packet Storm
249775 6.3 警告 Novell - openSUSE の /etc/init.d/boot.localfs における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-0461 2012-03-27 18:42 2011-04-4 Show GitHub Exploit DB Packet Storm
249776 7.5 危険 Ruby on Rails project - Ruby on Rails の actionpack/lib/action_view/template/resolver.rb におけるアクセス制限を回避する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0449 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
249777 7.5 危険 Ruby on Rails project - Ruby on Rails における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-0448 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
249778 6.8 警告 Ruby on Rails project - Ruby on Rails におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-0447 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
249779 4.3 警告 Ruby on Rails project - Ruby on Rails の mail_to ヘルパーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0446 2012-03-27 18:42 2011-02-9 Show GitHub Exploit DB Packet Storm
249780 6.8 警告 TinyBB - TinyBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-0443 2012-03-27 18:42 2011-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210311 6.1 MEDIUM
Network 		dlink dir-816l_firmware An XSS issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. In the file webinc/js/info.php, no output filtration is applied to the RESULT parameter, before it's printed on the we… CWE-79
Cross-site Scripting 		CVE-2020-15895 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210312 7.5 HIGH
Network 		dlink dir-816l_firmware An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. There exists an exposed administration function in getcfg.php, which can be used to call various services. It can be utili… CWE-306
Missing Authentication for Critical Function 		CVE-2020-15894 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210313 7.5 HIGH
Network 		dlink dap-1522_firmware An authentication-bypass issue was discovered on D-Link DAP-1522 devices 1.4x before 1.10b04Beta02. There exist a few pages that are directly accessible by any unauthorized user, e.g., logout.php and… CWE-287
Improper Authentication 		CVE-2020-15896 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210314 9.8 CRITICAL
Network 		dlink dir-816l_firmware An issue was discovered on D-Link DIR-816L devices 2.x before 1.10b04Beta02. Universal Plug and Play (UPnP) is enabled by default on port 1900. An attacker can perform command injection by injecting … CWE-78
OS Command  		CVE-2020-15893 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210315 9.8 CRITICAL
Network 		dlink dap-1520_firmware An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. Whenever a user performs a login action from the web interface, the request values are being forwarded to the ssi… CWE-787
CWE-669
 Out-of-bounds Write
 Incorrect Resource Transfer Between Spheres 		CVE-2020-15892 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210316 7.5 HIGH
Network 		codesys control_rte
control_for_beaglebone
control_for_empc-a\/imx6
control_for_iot2000
control_for_linux
control_for_plcnext
control_for_pfc100
control_for_pfc200
control_for_raspber… 		CODESYS Control runtime system before 3.5.16.10 allows Uncontrolled Memory Allocation. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-15806 2024-11-21 14:06 2020-07-23 Show GitHub Exploit DB Packet Storm
210317 7.5 HIGH
Network 		luajit
debian
canonical 		luajit
debian_linux
ubuntu_linux 		LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc handler frame traversal is mishandled. CWE-125
Out-of-bounds Read 		CVE-2020-15890 2024-11-21 14:06 2020-07-22 Show GitHub Exploit DB Packet Storm
210318 9.8 CRITICAL
Network 		lua lua Lua 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members. CWE-125
Out-of-bounds Read 		CVE-2020-15889 2024-11-21 14:06 2020-07-22 Show GitHub Exploit DB Packet Storm
210319 8.8 HIGH
Network 		lua lua Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free. CWE-125
CWE-787
CWE-416
Out-of-bounds Read
 Out-of-bounds Write
 Use After Free 		CVE-2020-15888 2024-11-21 14:06 2020-07-22 Show GitHub Exploit DB Packet Storm
210320 7.8 HIGH
Local 		360totalsecurity 360_total_security In the version 12.1.0.1005 and below of 360 Total Security, when the Gamefolde calls GameChrome.exe, there exists a local privilege escalation vulnerability. An attacker who could exploit DLL hijacki… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-15724 2024-11-21 14:06 2020-07-22 Show GitHub Exploit DB Packet Storm