Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250081	6	警告	simploo	-	Simploo CMS における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0635	2012-03-27 18:42	2011-01-22	Show	GitHub Exploit DB Packet Storm

250082	4.3	警告	Gisle Aas	-	WWW::Mechanize などの製品で使用される LWP の Net::HTTPS モジュールにおけるサーバをなりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0633	2012-03-27 18:42	2011-03-27	Show	GitHub Exploit DB Packet Storm

250083	6.8	警告	シマンテック	-	SEP の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0551	2012-03-27 18:42	2011-08-10	Show	GitHub Exploit DB Packet Storm

250084	4.3	警告	シマンテック	-	Symantec SEP の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0550	2012-03-27 18:42	2011-08-10	Show	GitHub Exploit DB Packet Storm

250085	7.5	危険	シマンテック	-	Symantec Web Gateway の forget.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0549	2012-03-27 18:42	2011-07-7	Show	GitHub Exploit DB Packet Storm

250086	10	危険	シマンテック	-	Symantec Veritas Enterprise Administrator サービスの vxsvc.exe における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0547	2012-03-27 18:42	2011-07-26	Show	GitHub Exploit DB Packet Storm

250087	6.8	警告	シマンテック	-	Symantec LUA の adduser.do におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0545	2012-03-27 18:42	2011-03-21	Show	GitHub Exploit DB Packet Storm

250088	3.3	注意	FUSE	-	fuse の fusermount の特定の legacy 機能におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0543	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

250089	3.3	注意	FUSE	-	fuse の fusermount における任意のディレクトリをアンマウントされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0542	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

250090	3.3	注意	FUSE	-	fuse における任意のディレクトリをアンマウントされる脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0541	2012-03-27 18:42	2011-09-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201221	7.4	HIGH Network	f5	nginx_controller	In versions of NGINX Controller prior to 3.2.0, communication between NGINX Controller and NGINX Plus instances skip TLS verification by default.	CWE-295 Improper Certificate Validation	CVE-2020-5864	2024-11-21 14:34	2020-04-24	Show	GitHub Exploit DB Packet Storm

201222	7.5	HIGH Network	sharp	aquos_sh-m02_firmware aquos_sh-rm02_firmware aquos_mini_sh-m03_firmware aquos_l2_firmware aquos_sense_lite_sh-m05_firmware aquos_sense_firmware aquos_compact_sh-m06_firmware aquo…	SHARP AQUOS series (AQUOS SH-M02 build number 01.00.05 and earlier, AQUOS SH-RM02 build number 01.00.04 and earlier, AQUOS mini SH-M03 build number 01.00.04 and earlier, AQUOS Keitai SH-N01 build num…	CWE-200 Information Exposure	CVE-2020-5571	2024-11-21 14:34	2020-04-23	Show	GitHub Exploit DB Packet Storm

201223	7.8	HIGH Local	plex	media_server	Improper Input Validation in Plex Media Server on Windows allows a local, unauthenticated attacker to execute arbitrary Python code with SYSTEM privileges.	CWE-427 Uncontrolled Search Path Element	CVE-2020-5740	2024-11-21 14:34	2020-04-23	Show	GitHub Exploit DB Packet Storm

201224	8.4	HIGH Local	toshiba	password_tool_for_windows	An unquoted search path vulnerability exists in HDD Password tool (for Windows) version 1.20.6620 and earlier which is stored in CANVIO PREMIUM 3TB(HD-MB30TY, HD-MA30TY, HD-MB30TS, HD-MA30TS), CANVIO…	CWE-428 Unquoted Search Path or Element	CVE-2020-5569	2024-11-21 14:34	2020-04-20	Show	GitHub Exploit DB Packet Storm

201225	5.4	MEDIUM Network	tenable	tenable.sc	Stored XSS in Tenable.Sc before 5.14.0 could allow an authenticated remote attacker to craft a request to execute arbitrary script code in a user's browser session. Updated input validation technique…	CWE-79 Cross-site Scripting	CVE-2020-5737	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm

201226	6.1	MEDIUM Network	openmrs	openmrs	In OpenMRS 2.9 and prior, the export functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user attempts to access it. This allows the export of…	CWE-601 Open Redirect	CVE-2020-5733	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm

201227	6.1	MEDIUM Network	openmrs	openmrs	In OpenMRS 2.9 and prior, he import functionality of the Data Exchange Module does not properly redirect to a login page when an unauthenticated user attempts to access it. This allows unauthenticate…	CWE-601 Open Redirect	CVE-2020-5732	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm

201228	6.1	MEDIUM Network	openmrs	openmrs	In OpenMRS 2.9 and prior, the app parameter for the ActiveVisit's page is vulnerable to cross-site scripting.	CWE-79 Cross-site Scripting	CVE-2020-5731	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm

201229	6.1	MEDIUM Network	openmrs	openmrs	In OpenMRS 2.9 and prior, the sessionLocation parameter for the login page is vulnerable to cross-site scripting.	CWE-79 Cross-site Scripting	CVE-2020-5730	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm

201230	6.1	MEDIUM Network	openmrs	openmrs	In OpenMRS 2.9 and prior, the UI Framework Error Page reflects arbitrary, user-supplied input back to the browser, which can result in XSS. Any page that is able to trigger a UI Framework Error is su…	CWE-79 Cross-site Scripting	CVE-2020-5729	2024-11-21 14:34	2020-04-18	Show	GitHub Exploit DB Packet Storm