Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250041	6.8	警告	アップル Google	-	Google Chrome の SVG フィルタにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1800	2012-03-27 18:43	2011-05-16	Show	GitHub Exploit DB Packet Storm

250042	5	警告	IBM	-	IBM Rational Build Forge におけるセッション ID が漏えいする脆弱性	CWE-200 情報漏えい	CVE-2011-1839	2012-03-27 18:43	2010-12-29	Show	GitHub Exploit DB Packet Storm

250043	4.3	警告	Opera Software ASA	-	Opera の VEGAOpBitmap::AddLine 関数における無効なメモリへ書き込みされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-1824	2012-03-27 18:43	2010-08-12	Show	GitHub Exploit DB Packet Storm

250044	2.1	注意	IBM	-	IBM TDS の LDAP_ADD 実装における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-1822	2012-03-27 18:43	2010-01-19	Show	GitHub Exploit DB Packet Storm

250045	4	警告	IBM	-	IBM TDS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1821	2012-03-27 18:43	2010-11-16	Show	GitHub Exploit DB Packet Storm

250046	2.1	注意	VMware	-	VMware vCenter のvCenter Server における SOAP セッション ID を発見される脆弱性	CWE-200 情報漏えい	CVE-2011-1788	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

250047	3.6	注意	Keepalived	-	keepalived の core/pidfile.c の pidfile_write 関数における任意のプロセスを停止される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1784	2012-03-27 18:43	2011-05-20	Show	GitHub Exploit DB Packet Storm

250048	7.5	危険	The GIMP Team	-	GIMP の read_channel_data 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1782	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

250049	1.2	注意	SystemTap	-	SystemTap におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-1781	2012-03-27 18:43	2011-05-11	Show	GitHub Exploit DB Packet Storm

250050	4.7	警告	Linux	-	Linux kernel の cifs_close 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1771	2012-03-27 18:43	2011-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214371	8.8	HIGH Adjacent	royalapps	royal_ts	Royal TS before 5 has a 0.0.0.0 listener, which makes it easier for attackers to bypass tunnel authentication via a brute-force approach.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-13872	2024-11-21 14:02	2020-06-10	Show	GitHub Exploit DB Packet Storm

214372	5.4	MEDIUM Network	themeboy	sportspress	The SportsPress plugin before 2.7.2 for WordPress allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-13892	2024-11-21 14:02	2020-06-10	Show	GitHub Exploit DB Packet Storm

214373	4.8	MEDIUM Network	opencart	opencart	OpenCart 3.0.3.3 allows remote authenticated users to conduct XSS attacks via a crafted filename in the users' image upload section because of a lack of entity encoding. NOTE: this issue exists becau…	CWE-79 Cross-site Scripting	CVE-2020-13980	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214374	7.2	HIGH Network	monstra	monstra_cms	Monstra CMS 3.0.4 allows an attacker, who already has administrative access to modify .chunk.php files on the Edit Chunk screen, to execute arbitrary OS commands via the Theme Module by visiting the …	CWE-78 OS Command	CVE-2020-13978	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214375	4.9	MEDIUM Network	nagios fedoraproject	nagios fedora	Nagios 4.4.5 allows an attacker, who already has administrative access to change the "URL for JSON CGIs" configuration setting, to modify the Alert Histogram and Trends code via crafted versions of t…	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2020-13977	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214376	8.8	HIGH Network	dd-wrt	dd-wrt	An issue was discovered in DD-WRT through 16214. The Diagnostic page allows remote attackers to execute arbitrary commands via shell metacharacters in the host field of the ping command. Exploitation…	CWE-78 OS Command	CVE-2020-13976	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214377	7.8	HIGH Local	linux debian canonical	linux_kernel debian_linux ubuntu_linux	An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called several times in a row, aka CID-b86dab054059. NOTE: Members in th…	CWE-190 Integer Overflow or Wraparound	CVE-2020-13974	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214378	6.1	MEDIUM Network	owasp	json-sanitizer	OWASP json-sanitizer before 1.2.1 allows XSS. An attacker who controls a substring of the input JSON, and controls another substring adjacent to a SCRIPT element in which the output is embedded as Ja…	CWE-79 Cross-site Scripting	CVE-2020-13973	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214379	6.1	MEDIUM Network	roundcube debian fedoraproject	webmail debian_linux fedora	An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is among the allowed types for a preview.	CWE-79 Cross-site Scripting	CVE-2020-13965	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm

214380	6.1	MEDIUM Network	roundcube fedoraproject debian	webmail fedora debian_linux	An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. include/rcmail_output_html.php allows XSS via the username template object.	CWE-79 Cross-site Scripting	CVE-2020-13964	2024-11-21 14:02	2020-06-9	Show	GitHub Exploit DB Packet Storm