Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250071	7.5	危険	Doctrine Project	-	Doctrine の Doctrine\DBAL\Platforms\AbstractPlatform::modifyLimitQuery 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1522	2012-03-27 18:43	2011-05-3	Show	GitHub Exploit DB Packet Storm

250072	4.3	警告	OTRS プロジェクト	-	OTRS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1518	2012-03-27 18:43	2011-04-18	Show	GitHub Exploit DB Packet Storm

250073	5	警告	ヒューレット・パッカード	-	HP OpenView Storage Data Protector の inet サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1515	2012-03-27 18:43	2011-06-28	Show	GitHub Exploit DB Packet Storm

250074	5	警告	ヒューレット・パッカード	-	HP OpenView Storage Data Protector の inet サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1514	2012-03-27 18:43	2011-06-28	Show	GitHub Exploit DB Packet Storm

250075	5	警告	Digium	-	Asterisk Open Source におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1507	2012-03-27 18:43	2011-04-21	Show	GitHub Exploit DB Packet Storm

250076	6.8	警告	Kerio Technologies	-	Kerio Connect の STARTTLS 実装における暗号化された SMTP セッションにコマンドを挿入される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1506	2012-03-27 18:43	2011-03-22	Show	GitHub Exploit DB Packet Storm

250077	10	危険	IBM	-	IBM Lotus Quickr services for Lotus Domino における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2011-1505	2012-03-27 18:43	2011-03-22	Show	GitHub Exploit DB Packet Storm

250078	4	警告	Liferay Apache Software Foundation	-	Liferay Portal Community Edition における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1502	2012-03-27 18:43	2011-05-7	Show	GitHub Exploit DB Packet Storm

250079	2.1	注意	kevinmehall	-	Pithos の PreferencesPithosDialog.py における資格情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1500	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250080	2.6	注意	banu	-	Tinyproxy の acl.c における Web トラフィックの発生源を隠蔽される脆弱性	CWE-16 環境設定	CVE-2011-1499	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209691	6.5	MEDIUM Adjacent	huawei	nip6800_firmware s12700_firmware s2700_firmware s5700_firmware s6700_firmware s7700_firmware s9700_firmware secospace_usg6600_firmware usg9500_firmware	There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could caus…	CWE-125 Out-of-bounds Read	CVE-2020-1866	2024-11-21 14:11	2021-01-14	Show	GitHub Exploit DB Packet Storm

209692	5.5	MEDIUM Local	huawei	jackman-al00d_firmware	There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1). Local attackers construct malicious application files, causing system applications to run abnormally.	NVD-CWE-noinfo	CVE-2020-1848	2024-11-21 14:11	2020-12-30	Show	GitHub Exploit DB Packet Storm

209693	5.4	MEDIUM Network	zzcms	zzcms	There is a XSS in the user login page in zzcms 2019. Users can inject js code by the referer header via user/login.php	CWE-79 Cross-site Scripting	CVE-2020-20285	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209694	9.8	CRITICAL Network	troglobit	uftpd	There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10 due to improper implementation of a chroot jail in common.c's…	CWE-22 Path Traversal	CVE-2020-20277	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209695	9.8	CRITICAL Network	troglobit	uftpd	An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be abused to cause a crash and could potentially lead to remot…	CWE-787 Out-of-bounds Write	CVE-2020-20276	2024-11-21 14:11	2020-12-19	Show	GitHub Exploit DB Packet Storm

209696	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20142	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209697	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20141	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209698	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20140	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209699	6.1	MEDIUM Network	flexmonster	pivot_table_\&_charts	Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.	CWE-79 Cross-site Scripting	CVE-2020-20139	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

209700	6.1	MEDIUM Network	cmsmadesimple	cms_made_simple	Cross Site Scripting (XSS) vulnerability in the Showtime2 Slideshow module in CMS Made Simple (CMSMS) 2.2.4.	CWE-79 Cross-site Scripting	CVE-2020-20138	2024-11-21 14:11	2020-12-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed