Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250021	6.8	警告	blaenkdenum	-	WordPress の Recaptcha プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0759	2012-03-27 18:43	2011-03-22	Show	GitHub Exploit DB Packet Storm

250022	10	危険	CA Technologies	-	CA ETrust Secure Content Manager および CA Gateway Securit の eCS コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-0758	2012-03-27 18:43	2011-02-8	Show	GitHub Exploit DB Packet Storm

250023	5	警告	Trustwave	-	Trustwave WebDefend Enterprise のアプリケーションサーバにおけるセキュリティイベントデータを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-0756	2012-03-27 18:43	2011-05-4	Show	GitHub Exploit DB Packet Storm

250024	7.5	危険	nazgul	-	nhttpd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0751	2012-03-27 18:43	2011-03-16	Show	GitHub Exploit DB Packet Storm

250025	6.8	警告	Tincan	-	phpList におけるクロスサイトリクエストフォージェリ脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0748	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250026	4.3	警告	ZyXEL	-	ZyXEL O2 DSL Router Classic の Forms/PortForwarding_Edit_1 におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0746	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250027	4	警告	SugarCRM	-	SugarCRM における顧客名などを発見される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0745	2012-03-27 18:43	2011-03-16	Show	GitHub Exploit DB Packet Storm

250028	10	危険	Novell	-	Novell ZENworks Handheld Management の ZfHIPCND.exe におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0742	2012-03-27 18:43	2011-01-25	Show	GitHub Exploit DB Packet Storm

250029	4.3	警告	MODX	-	ModX Evolution におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0741	2012-03-27 18:43	2011-02-1	Show	GitHub Exploit DB Packet Storm

250030	4.3	警告	WordPress.org pleer	-	WordPress 用の RSS Feed Reader の magpie/scripts/magpie_slashbox.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0740	2012-03-27 18:43	2011-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209691	6.5	MEDIUM Adjacent	huawei	nip6800_firmware s12700_firmware s2700_firmware s5700_firmware s6700_firmware s7700_firmware s9700_firmware secospace_usg6600_firmware usg9500_firmware	There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could caus…	CWE-125 Out-of-bounds Read	CVE-2020-1866	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

209692	5.5	MEDIUM Local	huawei	jackman-al00d_firmware	There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1). Local attackers construct malicious application files, causing system applications to run abnormally.	NVD-CWE-noinfo	CVE-2020-1848	2024-11-21 14:11	2020-12-30	Show	GitHub Exploit DB Packet Storm

209693	5.4	MEDIUM Network	zzcms	zzcms	There is a XSS in the user login page in zzcms 2019. Users can inject js code by the referer header via user/login.php	CWE-79 Cross-site Scripting	CVE-2020-20285	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209694	9.8	CRITICAL Network	troglobit	uftpd	There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's…	CWE-22 Path Traversal	CVE-2020-20277	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209695	9.8	CRITICAL Network	troglobit	uftpd	An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be abused to cause a crash and could potentially lead to remot…	CWE-787 Out-of-bounds Write	CVE-2020-20276	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209696	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20142	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209697	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20141	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209698	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20140	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209699	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20139	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209700	6.1	MEDIUM Network	cmsmadesimple	cms_made_simple	Cross Site Scripting (XSS) vulnerability in the Showtime2 Slideshow module in CMS Made Simple (CMSMS) 2.2.4.	CWE-79 Cross-site Scripting	CVE-2020-20138	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed