Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250111	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4757	2012-03-27 18:42	2011-03-15	Show	GitHub Exploit DB Packet Storm

250112	4	警告	GNU Project	-	GNU C Library の glob 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4756	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250113	4	警告	OpenBSD FreeBSD NetBSD	-	OpenSSH の remote_glob 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4755	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250114	4	警告	OpenBSD アップル FreeBSD NetBSD	-	FreeBSD などで使用される libc の glob 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4754	2012-03-27 18:42	2011-03-2	Show	GitHub Exploit DB Packet Storm

250115	4.3	警告	blogcms	-	BLOG:CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4749	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

250116	4.3	警告	PmWiki	-	PmWiki の pmwiki.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4748	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

250117	4.3	警告	ahmattox WordPress.org	-	WordPress の wordpress-processing-embed/data/popup.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4747	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

250118	5	警告	Fedora Project	-	389 Directory Server の正規化機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4746	2012-03-27 18:42	2011-02-23	Show	GitHub Exploit DB Packet Storm

250119	4.3	警告	gareth watts	-	PHPXref の nav.html におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4745	2012-03-27 18:42	2011-02-21	Show	GitHub Exploit DB Packet Storm

250120	10	危険	moinejf	-	abcm2ps における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-4744	2012-03-27 18:42	2011-02-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214091	7.5	HIGH Network	puma fedoraproject debian	puma fedora debian_linux	In Puma (RubyGem) before 4.3.4 and 3.12.5, an attacker could smuggle an HTTP response, by using an invalid transfer-encoding header. The problem has been fixed in Puma 3.12.5 and Puma 4.3.4.	-	CVE-2020-11076	2024-11-21 13:56	2020-05-23	Show	GitHub Exploit DB Packet Storm

214092	7.5	HIGH Network	puma fedoraproject debian opensuse	puma fedora debian_linux leap	In Puma (RubyGem) before 4.3.5 and 3.12.6, a client could smuggle a request through a proxy, causing the proxy to send a response back to another unknown client. If the proxy uses persistent connecti…	-	CVE-2020-11077	2024-11-21 13:56	2020-05-23	Show	GitHub Exploit DB Packet Storm

214093	6.8	MEDIUM Network	httplib2_project fedoraproject debian	httplib2 fedora debian_linux	In httplib2 before version 0.18.0, an attacker controlling unescaped part of uri for `httplib2.Http.request()` could change request headers and body, send additional hidden requests to same server. T…	-	CVE-2020-11078	2024-11-21 13:56	2020-05-21	Show	GitHub Exploit DB Packet Storm

214094	7.5	HIGH Network	powerdns fedoraproject debian opensuse	recursor fedora debian_linux leap backports_sle	PowerDNS Recursor from 4.1.0 up to and including 4.3.0 does not sufficiently defend against amplification attacks. An issue in the DNS protocol has been found that allow malicious parties to use recu…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-10995	2024-11-21 13:56	2020-05-20	Show	GitHub Exploit DB Packet Storm

214095	5.3	MEDIUM Network	dovecot	dovecot	In Dovecot before 2.3.10.1, remote unauthenticated attackers can crash the lmtp or submission process by sending mail with an empty localpart.	CWE-20 Improper Input Validation	CVE-2020-10967	2024-11-21 13:56	2020-05-19	Show	GitHub Exploit DB Packet Storm

214096	5.3	MEDIUM Network	dovecot	dovecot	In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an unauthenticated use-after-free bug in submission-login, submission, or lmtp, and can lead to a crash under circumstances involving …	CWE-416 Use After Free	CVE-2020-10958	2024-11-21 13:56	2020-05-18	Show	GitHub Exploit DB Packet Storm

214097	7.5	HIGH Network	dovecot	dovecot	In Dovecot before 2.3.10.1, unauthenticated sending of malformed parameters to a NOOP command causes a NULL Pointer Dereference and crash in submission-login, submission, or lmtp.	CWE-476 NULL Pointer Dereference	CVE-2020-10957	2024-11-21 13:56	2020-05-18	Show	GitHub Exploit DB Packet Storm

214098	8.8	HIGH Network	typo3	typo3	In TYPO3 CMS 9.0.0 through 9.5.16 and 10.0.0 through 10.4.1, it has been discovered that backend user settings (in $BE_USER->uc) are vulnerable to insecure deserialization. In combination with vulner…	CWE-502 Deserialization of Untrusted Data	CVE-2020-11067	2024-11-21 13:56	2020-05-14	Show	GitHub Exploit DB Packet Storm

214099	5.4	MEDIUM Network	typo3	typo3	In TYPO3 CMS greater than or equal to 9.5.12 and less than 9.5.17, and greater than or equal to 10.2.0 and less than 10.4.2, it has been discovered that link tags generated by typolink functionality …	CWE-79 Cross-site Scripting	CVE-2020-11065	2024-11-21 13:56	2020-05-14	Show	GitHub Exploit DB Packet Storm

214100	8.8	HIGH Network	typo3	typo3	In TYPO3 CMS 9.0.0 through 9.5.16 and 10.0.0 through 10.4.1, it has been discovered that the backend user interface and install tool are vulnerable to a same-site request forgery. A backend user can …	NVD-CWE-Other	CVE-2020-11069	2024-11-21 13:56	2020-05-14	Show	GitHub Exploit DB Packet Storm