Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250101	7.5	危険	ColdGen	-	ColdGen ColdUserGroup の index.cfm における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4916	2012-02-28 10:50	2011-10-8	Show	GitHub Exploit DB Packet Storm

250102	7.5	危険	ColdGen	-	ColdGen ColdBookmarks の index.cfm における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4915	2012-02-28 10:47	2011-10-8	Show	GitHub Exploit DB Packet Storm

250103	7.5	危険	DeltaScripts	-	PHP Classifieds の tools/phpmailer/class.phpmailer.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4914	2012-02-28 10:43	2011-10-8	Show	GitHub Exploit DB Packet Storm

250104	4.3	警告	ColdGen	-	ColdGen ColdUserGroup の search 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4913	2012-02-28 10:41	2011-10-8	Show	GitHub Exploit DB Packet Storm

250105	7.5	危険	Discuz	-	UCenter Home の shop.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4912	2012-02-28 10:40	2011-10-8	Show	GitHub Exploit DB Packet Storm

250106	7.5	危険	Sell@Site	-	PHP Classifieds Ads の classi/detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4911	2012-02-28 10:39	2011-10-8	Show	GitHub Exploit DB Packet Storm

250107	7.5	危険	ColdGen	-	ColdGen ColdCalendar の index.cfm におけるSQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4910	2012-02-28 10:37	2011-10-8	Show	GitHub Exploit DB Packet Storm

250108	4.3	警告	Mechbunny	-	PaysiteReviewCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4909	2012-02-28 10:36	2011-10-8	Show	GitHub Exploit DB Packet Storm

250109	7.5	危険	Virtue Netz	-	Virtue Shopping Mall の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4908	2012-02-28 10:35	2011-10-8	Show	GitHub Exploit DB Packet Storm

250110	4.3	警告	Powie	-	Powie pFile の pfile/kommentar.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1211	2012-02-27 17:12	2012-02-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210691	5.5	MEDIUM Local	amd	epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware …	A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification.	NVD-CWE-Other	CVE-2020-12954	2024-11-21 14:00	2021-11-17	Show	GitHub Exploit DB Packet Storm

210692	7.0	HIGH Local	amd	epyc_7003_firmware epyc_7002_firmware epyc_7001_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware …	Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM (System Management Mode) operations.	CWE-362 Race Condition	CVE-2020-12951	2024-11-21 14:00	2021-11-17	Show	GitHub Exploit DB Packet Storm

210693	7.1	HIGH Local	amd	epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7h12_firmware epyc_7742_firmware epyc_7702_firmware epyc_7702p_firmware epyc_7662_firmware epyc_7642_firmware …	Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service.	CWE-20 Improper Input Validation	CVE-2020-12946	2024-11-21 14:00	2021-11-17	Show	GitHub Exploit DB Packet Storm

210694	7.8	HIGH Local	amd	epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware	Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution.	CWE-20 Improper Input Validation	CVE-2020-12944	2024-11-21 14:00	2021-11-17	Show	GitHub Exploit DB Packet Storm

210695	7.8	HIGH Local	amd	radeon_software	Escape call interface in the AMD Graphics Driver for Windows may cause privilege escalation.	NVD-CWE-noinfo	CVE-2020-12962	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

210696	5.5	MEDIUM Local	amd	radeon_software	AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS).	CWE-20 Improper Input Validation	CVE-2020-12960	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

210697	5.5	MEDIUM Local	amd	radeon_software	Out of Bounds Read in AMD Graphics Driver for Windows 10 in Escape 0x3004403 may lead to arbitrary information disclosure.	CWE-125 Out-of-bounds Read	CVE-2020-12905	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

210698	7.8	HIGH Local	amd	radeon_software	Out of Bounds Write and Read in AMD Graphics Driver for Windows 10 in Escape 0x6002d03 may lead to escalation of privilege or denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-12903	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

210699	5.5	MEDIUM Local	amd	radeon_software	Arbitrary Free After Use in AMD Graphics Driver for Windows 10 may lead to KASLR bypass or information disclosure.	CWE-416 Use After Free	CVE-2020-12901	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

210700	7.1	HIGH Local	amd	radeon_software	Arbitrary Write in AMD Graphics Driver for Windows 10 in Escape 0x40010d may lead to arbitrary write to kernel memory or denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-12894	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm