Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250221	4.3	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4567	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

250222	4.3	警告	SquirrelMail Project	-	SquirrelMail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4555	2012-03-27 18:42	2011-07-11	Show	GitHub Exploit DB Packet Storm

250223	4.3	警告	SquirrelMail Project	-	SquirrelMail の functions/page_header.php におけるクリックジャック攻撃を誘発する脆弱性	CWE-20 不適切な入力確認	CVE-2010-4554	2012-03-27 18:42	2011-07-12	Show	GitHub Exploit DB Packet Storm

250224	9.3	危険	Opera Software ASA	-	Opera における詳細不明の脆弱性	CWE-DesignError	CVE-2010-4587	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250225	10	危険	Opera Software ASA	-	Opera のデフォルト設定における脆弱性	CWE-16 環境設定	CVE-2010-4586	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250226	5	警告	Opera Software ASA	-	Opera の自動更新機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-4585	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250227	2.6	注意	Opera Software ASA	-	Opera における信頼されるコンテンツを偽造される脆弱性	CWE-310 暗号の問題	CVE-2010-4584	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250228	2.6	注意	Opera Software ASA	-	Opera における信頼されるコンテンツを偽造される脆弱性	CWE-DesignError	CVE-2010-4583	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250229	5	警告	Opera Software ASA	-	Opera におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4582	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250230	10	危険	Opera Software ASA	-	Opera における詳細不明の脆弱性	CWE-noinfo 情報不足	CVE-2010-4581	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214011	8.8	HIGH Network	xwiki	xwiki	In XWiki Platform 7.2 through 11.10.2, registered users without scripting/programming permissions are able to execute python/groovy scripts while editing personal dashboards. This has been fixed 11.3…	CWE-94 Code Injection	CVE-2020-11057	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

214012	5.4	MEDIUM Network	glpi-project	glpi	In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6.	CWE-79 Cross-site Scripting	CVE-2020-11062	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

214013	8.8	HIGH Network	glpi-project	glpi	In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. Theoretically, this vulnerability can be exploited by an attacker without a valid account by using a…	CWE-352 Origin Validation Error	CVE-2020-11060	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

214014	8.6	HIGH Network	simpleledger	slp-validate	In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow…	CWE-697 Incorrect Comparison	CVE-2020-11072	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

214015	8.6	HIGH Network	simpleledger	slpjs	SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet c…	CWE-697 Incorrect Comparison	CVE-2020-11071	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

214016	8.8	HIGH Network	pi-hole	pi-hole	The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Al…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-11108	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

214017	5.4	MEDIUM Network	shopizer	shopizer	In Shopizer before version 2.11.0, a script can be injected in various forms and saved in the database, then executed when information is fetched from backend. This has been patched in version 2.11.0.	CWE-79 Cross-site Scripting	CVE-2020-11006	2024-11-21 13:56	2020-05-9	Show	GitHub Exploit DB Packet Storm

214018	8.0	HIGH Adjacent	tp-link	tl-wa855re_firmware	This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P1[20191213-rel60361] Wi-Fi extenders. Al…	CWE-287 Improper Authentication	CVE-2020-10916	2024-11-21 13:56	2020-05-8	Show	GitHub Exploit DB Packet Storm

214019	6.3	MEDIUM Network	barrelstrengthdesign	sprout_forms	In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This ha…	CWE-74 Injection	CVE-2020-11056	2024-11-21 13:56	2020-05-8	Show	GitHub Exploit DB Packet Storm

214020	8.1	HIGH Network	java-websocket_project	java-websocket	In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched …	CWE-295 Improper Certificate Validation	CVE-2020-11050	2024-11-21 13:56	2020-05-8	Show	GitHub Exploit DB Packet Storm