Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249881	5	警告	osCSS	-	osCSS の catalog/content.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4713	2011-12-13 15:01	2011-11-8	Show	GitHub Exploit DB Packet Storm

249882	5	警告	monoxide0184	-	Oxide WebServer におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4712	2011-12-13 14:59	2011-12-8	Show	GitHub Exploit DB Packet Storm

249883	5	警告	Namazu Project	-	Namazu の namazu.cgi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4711	2011-12-13 14:57	2011-12-8	Show	GitHub Exploit DB Packet Storm

249884	7.5	危険	Lucid Crew	-	Pixie CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4710	2011-12-13 14:53	2011-12-8	Show	GitHub Exploit DB Packet Storm

249885	4.3	警告	Hotaru CMS	-	Hotaru CMS の Search プラグイン内にある Hotaru.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4709	2011-12-13 14:52	2011-12-8	Show	GitHub Exploit DB Packet Storm

249886	4.3	警告	IBM	-	IBM Rational Asset Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4708	2011-12-13 14:51	2011-05-5	Show	GitHub Exploit DB Packet Storm

249887	4.3	警告	SAP	-	SAP Netweaver の Virus Scan Interface におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4707	2011-12-13 14:50	2011-12-8	Show	GitHub Exploit DB Packet Storm

249888	5	警告	Igor Sysoev	-	nginx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4315	2011-12-13 14:49	2011-11-15	Show	GitHub Exploit DB Packet Storm

249889	7.5	危険	Mambo Foundation	-	Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2917	2011-12-13 14:41	2011-12-8	Show	GitHub Exploit DB Packet Storm

249890	6.8	警告	MIT Kerberos	-	MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1530	2011-12-13 14:40	2011-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198251	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in the implementation of the Lua interpreter that is integrated in Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code with root privileges on…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-3423	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198252	7.5	HIGH Network	cisco	ios_xe	A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing p…	NVD-CWE-noinfo	CVE-2020-3422	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198253	7.5	HIGH Network	cisco	ios_xe	Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through t…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-3421	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198254	4.7	MEDIUM Adjacent	cisco	ios_xe	A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being …	NVD-CWE-Other	CVE-2020-3418	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198255	6.7	MEDIUM Local	cisco	ios_xe	A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker to execute persistent code at boot time and break the chain of trust. This vulnerability is due to incorrect vali…	CWE-78 OS Command	CVE-2020-3417	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198256	6.7	MEDIUM Local	cisco	ios_xe	Multiple vulnerabilities in the initialization routines that are executed during bootup of Cisco IOS XE Software for Cisco ASR 900 Series Aggregation Services Routers with a Route Switch Processor 3 …	CWE-94 Code Injection	CVE-2020-3416	2024-11-21 14:31	2020-09-25	Show	GitHub Exploit DB Packet Storm

198257	8.6	HIGH Network	cisco	ios_xr	Multiple vulnerabilities in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to either immediately crash the Int…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-3569	2024-11-21 14:31	2020-09-23	Show	GitHub Exploit DB Packet Storm

198258	5.5	MEDIUM Local	qualcomm	bitra_firmware kamorta_firmware nicobar_firmware qcs404_firmware qcs610_firmware rennell_firmware sa6155p_firmware sa8155p_firmware saipan_firmware sc7180_firmware sc818…	u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapd…	NVD-CWE-noinfo	CVE-2020-3679	2024-11-21 14:31	2020-09-9	Show	GitHub Exploit DB Packet Storm

198259	5.5	MEDIUM Local	qualcomm	nicobar_firmware qcs405_firmware saipan_firmware sc8180x_firmware sdx55_firmware sm8150_firmware sm8250_firmware sxr2130_firmware	Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mo…	CWE-125 Out-of-bounds Read	CVE-2020-3674	2024-11-21 14:31	2020-09-9	Show	GitHub Exploit DB Packet Storm

198260	7.8	HIGH Local	qualcomm	apq8009_firmware kamorta_firmware mdm9607_firmware msm8917_firmware msm8953_firmware nicobar_firmware qcm2150_firmware qcs405_firmware qcs605_firmware qm215_firmware ren…	Out of bound access can happen in MHI command process due to lack of check of command channel id value received from MHI devices in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapd…	CWE-120 Classic Buffer Overflow	CVE-2020-3656	2024-11-21 14:31	2020-09-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed