Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249971	5	警告	IBM	-	IBM Datacap Taskmaster Capture の Web Client Service における平文のパスワードを要求する脆弱性	CWE-310 暗号の問題	CVE-2011-2142	2012-03-27 18:43	2011-05-13	Show	GitHub Exploit DB Packet Storm

249972	7.5	危険	IBM	-	IBM Datacap Taskmaster Capture の TMWeb におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2141	2012-03-27 18:43	2011-05-13	Show	GitHub Exploit DB Packet Storm

249973	5	警告	opensymphony Apache Software Foundation	-	Apache Struts の XWork における重要情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-2088	2012-03-27 18:43	2011-05-13	Show	GitHub Exploit DB Packet Storm

249974	4.3	警告	Apache Software Foundation	-	Apache Struts の javatemplates プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2087	2012-03-27 18:43	2011-05-13	Show	GitHub Exploit DB Packet Storm

249975	5	警告	inventivetec	-	MediaCAST における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-2081	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

249976	7.5	危険	inventivetec	-	MediaCAST における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2080	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

249977	7.5	危険	inventivetec	-	MediaCAST における詳細不明な影響を受ける脆弱性	CWE-20 不適切な入力確認	CVE-2011-2079	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

249978	4.3	警告	inventivetec	-	MediaCAST の New Atlanta BlueDragon 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2078	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

249979	7.5	危険	inventivetec	-	MediaCAST の New Atlanta BlueDragon 管理インターフェースのデフォルト設定における脆弱性	CWE-16 環境設定	CVE-2011-2077	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

249980	5	警告	inventivetec	-	MediaCAST における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-2076	2012-03-27 18:43	2011-05-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209431	8.8	HIGH Network	logrhythm	platform_manager	LogRhythm Platform Manager (PM) 7.4.9 allows CSRF. The Web interface is vulnerable to Cross-site WebSocket Hijacking (CSWH). If a logged-in PM user visits a malicious site in the same browser session…	CWE-352 Origin Validation Error	CVE-2020-25095	2024-11-21 14:17	2020-12-17	Show	GitHub Exploit DB Packet Storm

209432	9.8	CRITICAL Network	logrhythm	platform_manager	LogRhythm Platform Manager 7.4.9 allows Command Injection. To exploit this, an attacker can inject arbitrary program names and arguments into a WebSocket. These are forwarded to any remote server wit…	CWE-78 OS Command	CVE-2020-25094	2024-11-21 14:17	2020-12-17	Show	GitHub Exploit DB Packet Storm

209433	7.5	HIGH Network	hosteng	h0-ecom100_firmware h2-ecom100_firmware h4-ecom100_firmware	The length of the input fields of Host Engineering H0-ECOM100, H2-ECOM100, and H4-ECOM100 modules are verified only on the client side when receiving input from the configuration web server, which ma…	CWE-20 Improper Input Validation	CVE-2020-25195	2024-11-21 14:17	2020-12-16	Show	GitHub Exploit DB Packet Storm

209434	7.5	HIGH Network	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The password used for authentication for the LOGO! Website and the LOGO! Access Tool is sent in a reco…	-	CVE-2020-25235	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209435	7.7	HIGH Local	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The LOGO! program files generated and used by the affected c…	-	CVE-2020-25234	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209436	5.5	MEDIUM Local	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The firmware update of affected devices contains the private RSA key that is used as a basis for encry…	-	CVE-2020-25233	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209437	7.5	HIGH Network	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Due to the usage of an insecure random number generation function and a deprecated cryptographic funct…	-	CVE-2020-25232	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209438	5.5	MEDIUM Local	siemens	logo\!_8_bm_firmware logo\!_soft_comfort	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3), LOGO! Soft Comfort (All versions < V8.3). The encryption of program data for the affected devices uses…	-	CVE-2020-25231	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209439	7.5	HIGH Network	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). Due to the usage of an outdated cipher mode on port 10005/tcp, an attacker could extract the encryptio…	-	CVE-2020-25230	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm

209440	7.5	HIGH Network	siemens	logo\!_8_bm_firmware	A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3). The implemented encryption for communication with affected devices is prone to replay attacks due to t…	CWE-798 Use of Hard-coded Credentials	CVE-2020-25229	2024-11-21 14:17	2020-12-15	Show	GitHub Exploit DB Packet Storm