Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250091 4.3 警告 Parallels - Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4850 2011-12-20 14:12 2011-12-16 Show GitHub Exploit DB Packet Storm
250092 4.3 警告 Parallels - Parallels Plesk Panel の Control Panel における Cookie をキャプチャされる脆弱性 CWE-200
情報漏えい 		CVE-2011-4849 2011-12-20 14:11 2011-12-16 Show GitHub Exploit DB Packet Storm
250093 4.3 警告 Parallels - Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4848 2011-12-20 14:10 2011-12-16 Show GitHub Exploit DB Packet Storm
250094 7.5 危険 Parallels - Parallels Plesk Panel の Control Panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4847 2011-12-20 12:23 2011-12-16 Show GitHub Exploit DB Packet Storm
250095 4.3 警告 Parallels - Parallels Plesk Panel の Site Editor 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4777 2011-12-20 12:23 2011-12-16 Show GitHub Exploit DB Packet Storm
250096 4.3 警告 Parallels - Parallels Plesk Panel の Control Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4776 2011-12-20 12:22 2011-12-16 Show GitHub Exploit DB Packet Storm
250097 10 危険 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4768 2011-12-20 12:21 2011-12-16 Show GitHub Exploit DB Packet Storm
250098 5 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4767 2011-12-20 12:21 2011-12-16 Show GitHub Exploit DB Packet Storm
250099 4.3 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4765 2011-12-20 12:12 2011-12-16 Show GitHub Exploit DB Packet Storm
250100 4.3 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4764 2011-12-20 12:11 2011-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197521 7.8 HIGH
Local 		druva insync inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permi… CWE-276
CWE-354
Incorrect Default Permissions 
 Improper Validation of Integrity Check Value 		CVE-2020-5798 2024-11-21 14:34 2020-12-7 Show GitHub Exploit DB Packet Storm
197522 7.5 HIGH
Network 		mitsubishielectric gt2107-wtbd_firmware
gt2107-wtsd_firmware
gt2104-rtbd_firmware
gt2104-pmbd_firmware
gt2103-pmbd_firmware
gs2110-wtbd_firmware
gs2107-wtbd_firmware
le7-40gu-l_firmware
gs2110-w… 		Out-of-bounds read vulnerability in GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 an… CWE-125
Out-of-bounds Read 		CVE-2020-5675 2024-11-21 14:34 2020-12-4 Show GitHub Exploit DB Packet Storm
197523 7.8 HIGH
Local 		checkpoint endpoint_security Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-6021 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197524 9.8 CRITICAL
Network 		valvesoftware game_networking_sockets Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long unreliable segments in function SNP_ReceiveUnreliableSegment() when configured to support plain-text messages, leading … CWE-787
 Out-of-bounds Write 		CVE-2020-6017 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197525 7.5 HIGH
Network 		ec-cube ec-cube Improper input validation vulnerability in EC-CUBE versions from 3.0.5 to 3.0.18 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vector. CWE-20
 Improper Input Validation  		CVE-2020-5680 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197526 6.1 MEDIUM
Network 		ec-cube ec-cube Improper restriction of rendered UI layers or frames in EC-CUBE versions from 3.0.0 to 3.0.18 leads to clickjacking attacks. If a user accesses a specially crafted page while logged into the administ… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-5679 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197527 6.1 MEDIUM
Network 		weseek growi Stored cross-site scripting vulnerability in GROWI v3.8.1 and earlier allows remote attackers to inject arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5678 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197528 6.1 MEDIUM
Network 		weseek growi Reflected cross-site scripting vulnerability in GROWI v4.0.0 and earlier allows remote attackers to inject arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5677 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197529 7.5 HIGH
Network 		weseek growi GROWI v4.1.3 and earlier allow remote attackers to obtain information which is not allowed to access via unspecified vectors. CWE-200
Information Exposure 		CVE-2020-5676 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm
197530 6.1 MEDIUM
Network 		desknets neo Cross-site scripting vulnerability in desknet's NEO (desknet's NEO Small License V5.5 R1.5 and earlier, and desknet's NEO Enterprise License V5.5 R1.5 and earlier) allows remote attackers to inject a… CWE-79
Cross-site Scripting 		CVE-2020-5638 2024-11-21 14:34 2020-12-3 Show GitHub Exploit DB Packet Storm