Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249981	7.5	危険	Pydio	-	AjaXplorer におけるログインのアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-1840	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

249982	7.5	危険	Pydio	-	AjaXplorer の Get Template 機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1839	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

249983	5	警告	IBM	-	IBM Tivoli Endpoint Manager における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-1837	2012-03-26 16:07	2012-03-22	Show	GitHub Exploit DB Packet Storm

249984	4.3	警告	IBM	-	IBM Tivoli Endpoint Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0719	2012-03-26 16:04	2012-03-22	Show	GitHub Exploit DB Packet Storm

249985	4.3	警告	ESET K7 Computing AVG Technologies トレンドマイクロ Ikarus Norman ソフォスマカフィー Beijing Rising International Software BitDefender VirusBlokAda フォーティネットカスペルスキー Emsisoft Authentium シマンテックエフ・セキュア Jiangmin	-	複数の製品の Gzip ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1461	2012-03-26 14:35	2012-03-21	Show	GitHub Exploit DB Packet Storm

249986	4.3	警告	ESET トレンドマイクロ AVG Technologies マカフィー Ikarus Norman ソフォス Beijing Rising International Software Comodo FRISK Software International クイックヒール・テクノロジーズ・ジャパン株式会社アラジンフォーティネット Panda Security カスペルスキー Emsisoft シマンテック	-	複数の製品の TAR ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1456	2012-03-26 14:28	2012-03-21	Show	GitHub Exploit DB Packet Storm

249987	4.3	警告	Beijing Rising International Software ESET	-	NOD32 Antivirus および Rising Antivirus の CAB ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1455	2012-03-26 14:26	2012-03-21	Show	GitHub Exploit DB Packet Storm

249988	4.3	警告	トレンドマイクロ Ikarus Emsisoft クイックヒール・テクノロジーズ・ジャパン株式会社	-	複数の製品の CAB ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1448	2012-03-26 14:08	2012-03-21	Show	GitHub Exploit DB Packet Storm

249989	4.3	警告	マカフィー Antiy Labs Norman ソフォス CA Technologies Beijing Rising International Software クイックヒール・テクノロジーズ・ジャパン株式会社 PC Tools フォーティネット Panda Security カスペルスキーシマンテックアラジン	-	複数の製品の ELF ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1446	2012-03-26 14:06	2012-03-21	Show	GitHub Exploit DB Packet Storm

249990	4.3	警告	フォーティネット Panda Security ウェブルート株式会社アラジン	-	複数の製品の ELF ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1444	2012-03-26 14:06	2012-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210681	7.5	HIGH Network	contiki-ng	contiki-ng	An issue was discovered in Contiki through 3.0. An Integer Overflow exists in the uIP TCP/IP Stack component when parsing TCP MSS options of IPv4 network packets in uip_process in net/ipv4/uip.c.	CWE-190 Integer Overflow or Wraparound	CVE-2020-13988	2024-11-21 14:02	2020-12-12	Show	GitHub Exploit DB Packet Storm

210682	7.5	HIGH Network	uip_project open-iscsi_project siemens	uip open-iscsi sentron_3va_com100_firmware sentron_3va_com800_firmware sentron_pac3200_firmware sentron_pac4200_firmware	An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component when calculating the checksums for IP packets in upper_layer_chksum in net…	CWE-125 Out-of-bounds Read	CVE-2020-13987	2024-11-21 14:02	2020-12-12	Show	GitHub Exploit DB Packet Storm

210683	7.5	HIGH Network	contiki-os	contiki	An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when handling RPL extension headers of IPv6 network packets in rpl_remove_header in net/rpl/r…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-13986	2024-11-21 14:02	2020-12-12	Show	GitHub Exploit DB Packet Storm

210684	7.5	HIGH Network	contiki-os	contiki	An issue was discovered in Contiki through 3.0. A memory corruption vulnerability exists in the uIP TCP/IP stack component when handling RPL extension headers of IPv6 network packets in rpl_remove_he…	CWE-787 CWE-190 CWE-681 Out-of-bounds Write Integer Overflow or Wraparound Incorrect Conversion between Numeric Types	CVE-2020-13985	2024-11-21 14:02	2020-12-12	Show	GitHub Exploit DB Packet Storm

210685	7.5	HIGH Network	contiki-os	contiki	An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack component when processing IPv6 extension headers in ext_hdr_options_process in net/ipv6/uip6.c.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-13984	2024-11-21 14:02	2020-12-12	Show	GitHub Exploit DB Packet Storm

210686	5.3	MEDIUM Network	divebook_project	divebook	The DiveBook plugin 1.1.4 for WordPress was prone to a SQL injection within divelog.php, allowing unauthenticated users to retrieve data from the database via the divelog.php filter_diver parameter.	CWE-89 SQL Injection	CVE-2020-14207	2024-11-21 14:02	2020-12-9	Show	GitHub Exploit DB Packet Storm

210687	6.1	MEDIUM Network	divebook_project	divebook	The DiveBook plugin 1.1.4 for WordPress is prone to unauthenticated XSS within the filter function (via an arbitrary parameter).	CWE-79 Cross-site Scripting	CVE-2020-14206	2024-11-21 14:02	2020-12-9	Show	GitHub Exploit DB Packet Storm

210688	5.3	MEDIUM Network	divebook_project	divebook	The DiveBook plugin 1.1.4 for WordPress is prone to improper access control in the Log Dive form because it fails to perform authorization checks. An attacker may leverage this issue to manipulate th…	CWE-862 Missing Authorization	CVE-2020-14205	2024-11-21 14:02	2020-12-9	Show	GitHub Exploit DB Packet Storm

210689	6.5	MEDIUM Network	apache	apisix	In Apache APISIX, the user enabled the Admin API and deleted the Admin API access IP restriction rules. Eventually, the default token is allowed to access APISIX management data. This affects version…	NVD-CWE-Other	CVE-2020-13945	2024-11-21 14:02	2020-12-8	Show	GitHub Exploit DB Packet Storm

210690	4.3	MEDIUM Network	samba redhat	samba enterprise_linux storage	A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be u…	-	CVE-2020-14318	2024-11-21 14:02	2020-12-4	Show	GitHub Exploit DB Packet Storm