Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250231	10	危険	ヒューレット・パッカード	-	HP CM8060 Color MFP その他の製品のデフォルト設定における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4161	2011-12-12 18:10	2011-11-30	Show	GitHub Exploit DB Packet Storm

250232	6.9	警告	マイクロソフト	-	Microsoft Windows 7 における Internet Explorer サンドボックスの制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2011-4695	2011-12-12 16:39	2011-12-7	Show	GitHub Exploit DB Packet Storm

250233	9.3	危険	アップルアドビシステムズマイクロソフト	-	Windows および Mac OS X 上で稼働する Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4694	2011-12-12 16:38	2011-12-7	Show	GitHub Exploit DB Packet Storm

250234	9.3	危険	アップルアドビシステムズマイクロソフト	-	Windows および Mac OS X 上で稼働する Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4693	2011-12-12 16:37	2011-12-7	Show	GitHub Exploit DB Packet Storm

250235	5	警告	アップル Google	-	WebKit におけるブラウザキャッシュ内の画像データの存在を推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4692	2011-12-12 16:36	2011-12-7	Show	GitHub Exploit DB Packet Storm

250236	5	警告	Google	-	Google Chrome におけるブラウザキャッシュ内の文書の存在を容易に推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4691	2011-12-12 16:34	2011-12-7	Show	GitHub Exploit DB Packet Storm

250237	5	警告	Opera Software ASA	-	Opera におけるブラウザキャッシュ内の文書の存在を容易に推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4690	2011-12-12 16:33	2011-12-7	Show	GitHub Exploit DB Packet Storm

250238	5	警告	マイクロソフト	-	Microsoft Internet Explorer における文書の存在を容易に推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4689	2011-12-12 16:33	2011-12-7	Show	GitHub Exploit DB Packet Storm

250239	5	警告	Mozilla Foundation	-	Mozilla Firefox におけるブラウザキャッシュ内の文書の存在を容易に推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4688	2011-12-12 16:31	2011-12-7	Show	GitHub Exploit DB Packet Storm

250240	4.3	警告	Mozilla Foundation	-	複数の Mozilla 製品のレイアウトエンジンにおける重要な情報を取得される脆弱性	CWE-362 競合状態	CVE-2010-5074	2011-12-12 16:22	2010-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211041	7.5	HIGH Network	windriver	vxworks	httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.	NVD-CWE-noinfo	CVE-2020-11440	2024-11-21 13:57	2020-07-23	Show	GitHub Exploit DB Packet Storm

211042	8.8	HIGH Network	librehealth	librehealth_ehr	LibreHealth EMR v2.0.0 is affected by a Local File Inclusion issue allowing arbitrary PHP to be included and executed within the EMR application.	CWE-22 Path Traversal	CVE-2020-11439	2024-11-21 13:57	2020-07-16	Show	GitHub Exploit DB Packet Storm

211043	8.8	HIGH Network	librehealth	librehealth_ehr	LibreHealth EMR v2.0.0 is affected by systemic CSRF.	CWE-352 Origin Validation Error	CVE-2020-11438	2024-11-21 13:57	2020-07-16	Show	GitHub Exploit DB Packet Storm

211044	4.3	MEDIUM Network	librehealth	librehealth_ehr	LibreHealth EMR v2.0.0 is affected by SQL injection allowing low-privilege authenticated users to enumerate the database.	CWE-89 SQL Injection	CVE-2020-11437	2024-11-21 13:57	2020-07-16	Show	GitHub Exploit DB Packet Storm

211045	9.0	CRITICAL Network	librehealth	librehealth_ehr	LibreHealth EMR v2.0.0 is vulnerable to XSS that results in the ability to force arbitrary actions on behalf of other users including administrators.	CWE-79 Cross-site Scripting	CVE-2020-11436	2024-11-21 13:57	2020-07-16	Show	GitHub Exploit DB Packet Storm

211046	9.1	CRITICAL Network	inetsoftware	pdfc helpdesk clear_reports	The documentation component in i-net Clear Reports 16.0 to 19.2, HelpDesk 8.0 to 8.3, and PDFC 4.3 to 6.2 allows a remote unauthenticated attacker to read arbitrary system files and directories on th…	CWE-22 Path Traversal	CVE-2020-11431	2024-11-21 13:57	2020-05-8	Show	GitHub Exploit DB Packet Storm

211047	7.5	HIGH Network	openvpn	openvpn_access_server	An issue was discovered in OpenVPN Access Server before 2.7.0 and 2.8.x before 2.8.3. With the full featured RPC2 interface enabled, it is possible to achieve a temporary DoS state of the management …	CWE-776 XML Entity Expansion	CVE-2020-11462	2024-11-21 13:57	2020-05-4	Show	GitHub Exploit DB Packet Storm

211048	8.1	HIGH Network	zoom	it_installer	The Zoom IT installer for Windows (ZoomInstallerFull.msi) prior to version 4.6.10 deletes files located in %APPDATA%\Zoom before installing an updated version of the client. Standard users are able t…	CWE-59 CWE-732 Link Following Incorrect Permission Assignment for Critical Resource	CVE-2020-11443	2024-11-21 13:57	2020-05-4	Show	GitHub Exploit DB Packet Storm

211049	7.8	HIGH Local	eset	internet_security nod32_antivirus smart_security endpoint_security endpoint_antivirus mail_security file_security antivirus_and_antispyware	ESET Antivirus and Antispyware Module module 1553 through 1560 allows a user with limited access rights to create hard links in some ESET directories and then force the product to write through these…	CWE-59 Link Following	CVE-2020-11446	2024-11-21 13:57	2020-04-29	Show	GitHub Exploit DB Packet Storm

211050	4.9	MEDIUM Network	sonatype	nexus_repository_manager	An issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.17 and 3.x before 3.22.1. Admin users can retrieve the LDAP server system username/password (as configured in nxrm) in cle…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-11415	2024-11-21 13:57	2020-04-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed