Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250111	6.5	警告	Best Practical Solutions	-	Best Practical Solutions RT における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1686	2012-03-27 18:43	2011-04-14	Show	GitHub Exploit DB Packet Storm

250112	4.6	警告	Best Practical Solutions	-	Best Practical Solutions RT における任意のコードを実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1685	2012-03-27 18:43	2011-04-14	Show	GitHub Exploit DB Packet Storm

250113	6.8	警告	VideoLAN	-	VideoLAN VLC media player の MP4_ReadBox_skcr 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1684	2012-03-27 18:43	2011-04-7	Show	GitHub Exploit DB Packet Storm

250114	6.8	警告	IBM	-	IBM WAS におけるアプリケーションのアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1683	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250115	4.3	警告	Tincan	-	phpList におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1682	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250116	3.3	注意	VMware	-	VMware Open Virtual Machine Tools の vmware-hgfsmounter におけるファイルの破損を誘発される脆弱性	CWE-16 環境設定	CVE-2011-1681	2012-03-27 18:43	2011-04-9	Show	GitHub Exploit DB Packet Storm

250117	4.4	警告	ncpfs	-	ncpfs の ncpmount における詳細不明な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1680	2012-03-27 18:43	2011-04-9	Show	GitHub Exploit DB Packet Storm

250118	5	警告	metaways	-	Metaways Tine における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-1666	2012-03-27 18:43	2011-04-9	Show	GitHub Exploit DB Packet Storm

250119	5	警告	phpboost	-	PHPBoost におけるバックアップの SQL ファイルを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1665	2012-03-27 18:43	2011-04-9	Show	GitHub Exploit DB Packet Storm

250120	6.8	警告	icanlocalize	-	Translation Management モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1664	2012-03-27 18:43	2011-04-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209351	9.8	CRITICAL Network	xmlquery_project	xmlquery	xmlquery before 1.3.1 lacks a check for whether a LoadURL response is in the XML format, which allows attackers to cause a denial of service (SIGSEGV) at xmlquery.(*Node).InnerText or possibly have u…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2020-25614	2024-11-21 14:18	2020-09-17	Show	GitHub Exploit DB Packet Storm

209352	7.8	HIGH Local	gnuplot_project	gnuplot	gnuplot 5.5 is affected by double free when executing print_set_output. This may result in context-dependent arbitrary code execution.	CWE-415 Double Free	CVE-2020-25559	2024-11-21 14:18	2020-09-16	Show	GitHub Exploit DB Packet Storm

209353	9.8	CRITICAL Network	rand_project	rand	An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints.	CWE-704 Incorrect Type Conversion or Cast	CVE-2020-25576	2024-11-21 14:18	2020-09-15	Show	GitHub Exploit DB Packet Storm

209354	9.8	CRITICAL Network	failure_project	failure	An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce "compatibility hazards" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerab…	CWE-843 Type Confusion	CVE-2020-25575	2024-11-21 14:18	2020-09-15	Show	GitHub Exploit DB Packet Storm

209355	7.5	HIGH Network	hyper	http	An issue was discovered in the http crate before 0.1.20 for Rust. An integer overflow in HeaderMap::reserve() could result in denial of service (e.g., an infinite loop).	CWE-190 CWE-835 Integer Overflow or Wraparound Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-25574	2024-11-21 14:18	2020-09-15	Show	GitHub Exploit DB Packet Storm

209356	9.8	CRITICAL Network	linked-hash-map_project	linked-hash-map	An issue was discovered in the linked-hash-map crate before 0.5.3 for Rust. It creates an uninitialized NonNull pointer, which violates a non-null constraint.	CWE-824 Access of Uninitialized Pointer	CVE-2020-25573	2024-11-21 14:18	2020-09-15	Show	GitHub Exploit DB Packet Storm

209357	7.5	HIGH Network	thinkadmin	thinkadmin	ThinkAdmin v6 is affected by a directory traversal vulnerability. An unauthorized attacker can read arbitrarily file on a remote server via GET request encode parameter.	CWE-22 Path Traversal	CVE-2020-25540	2024-11-21 14:18	2020-09-14	Show	GitHub Exploit DB Packet Storm

209358	7.5	HIGH Network	webank	federated_ai_technology_enabler	An issue was discovered in function sync_tree in hetero_decision_tree_guest.py in WeBank FATE (Federated AI Technology Enabler) 0.1 through 1.4.2 allows attackers to read sensitive information during…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-25459	2024-11-21 14:17	2022-06-17	Show	GitHub Exploit DB Packet Storm

209359	6.5	MEDIUM Network	osisoft	pi_vision	OSIsoft PI Vision 2020 versions prior to 3.5.0 could disclose information to a user with insufficient privileges for an AF attribute.	-	CVE-2020-25167	2024-11-21 14:17	2022-04-19	Show	GitHub Exploit DB Packet Storm

209360	7.3	HIGH Network	osisoft	pi_vision	A remote attacker with write access to PI ProcessBook files could inject code that is imported into OSIsoft PI Vision 2020 versions prior to 3.5.0. Unauthorized information disclosure, modification, …	-	CVE-2020-25163	2024-11-21 14:17	2022-04-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed