Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 250281 | 7.5 | 危険 | Janguo Joomla! |
- | Joomla! の Jimtawl コンポーネントにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4769 | 2012-03-27 18:42 | 2011-03-23 | Show | GitHub Exploit DB Packet Storm |
| 250282 | 6 | 警告 | OTRS プロジェクト | - | OTRS における待ち行列アクセス制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4768 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250283 | 5 | 警告 | OTRS プロジェクト | - | OTRS におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4767 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250284 | 4.3 | 警告 | OTRS プロジェクト | - | OTRS の AgentTicketForward 機能における重要な画像情報を取得される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4766 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250285 | 4.9 | 警告 | OTRS プロジェクト | - | OTRS の Kernel::System::Main::FileWrite メソッドにおける icketCounter.log のデータを破損される脆弱性 |
CWE-362
競合状態 |
CVE-2010-4765 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250286 | 5 | 警告 | OTRS プロジェクト | - | OTRS における電子メール通信をなりすまされる脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2010-4764 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250287 | 6.5 | 警告 | OTRS プロジェクト | - | OTRS の ACL 顧客ステータスチケットタイプ設定における ACL 制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4763 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250288 | 3.5 | 注意 | OTRS プロジェクト | - | OTRS のリッチテキストエディタコンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4762 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250289 | 4 | 警告 | OTRS プロジェクト | - | OTRS の顧客インターフェースチケット印刷ダイアログにおける重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4761 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
| 250290 | 3.5 | 注意 | OTRS プロジェクト | - | OTRS における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-4760 | 2012-03-27 18:42 | 2011-03-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 201251 | 7.5 |
HIGH
Network |
mitsubishielectric |
cr800-q_firmware fx3g_firmware fx3gc_firmware fx3s_firmware fx3u_firmware fx3uc_firmware fx5u_firmware fx5uc_firmware fx5uj_firmware l02cpu_firmware l02cpu-p_firmware
When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC iQ-R series (all versions), MELSEC iQ-F series (all versions), MELSEC Q series (all versions), MELSEC L series (all versions), an…
|
CWE-400
|
Uncontrolled Resource Consumption
CVE-2020-5527
|
2024-11-21 14:34 |
2020-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 201252 | 8.8 |
HIGH
Adjacent |
toyota | display_control_unit | Toyota 2017 Model Year DCU (Display Control Unit) allows an unauthenticated attacker within Bluetooth range to cause a denial of service attack and/or execute an arbitrary command. The affected DCUs … |
CWE-276
Incorrect Default Permissions |
CVE-2020-5551 | 2024-11-21 14:34 | 2020-03-30 | Show | GitHub Exploit DB Packet Storm |
| 201253 | 8.6 |
HIGH
Network |
f5 netapp |
nginx_controller cloud_backup |
In NGINX Controller versions prior to 3.2.0, an unauthenticated attacker with network access to the Controller API can create unprivileged user accounts. The user which is created is only able to upl… |
NVD-CWE-noinfo
|
CVE-2020-5863 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201254 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP 15.1.0-15.1.0.1, 15.0.0-15.0.1.1, and 14.1.0-14.1.2.2, under certain conditions, TMM may crash or stop processing new traffic with the DPDK/ENA driver on AWS systems while sending traffic. … |
NVD-CWE-noinfo
|
CVE-2020-5862 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201255 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP 15.1.0.1, specially formatted HTTP/3 messages may cause TMM to produce a core file. |
NVD-CWE-noinfo
|
CVE-2020-5859 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201256 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP 12.1.0-12.1.5, the TMM process may produce a core file in some cases when Ram Cache incorrectly optimizes stored data resulting in memory errors. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-5861 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201257 | 8.1 |
HIGH
Network |
f5 |
big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager… |
On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, in a High Availability (HA) network failover in Devic… |
CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information |
CVE-2020-5860 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201258 | 7.8 |
HIGH
Local |
f5 |
big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager… |
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest … |
NVD-CWE-noinfo
|
CVE-2020-5858 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201259 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP behavior may lead to a denial of service. |
NVD-CWE-noinfo
|
CVE-2020-5857 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 201260 | 9.8 |
CRITICAL
Network |
keijiban_tsumiki_project | keijiban_tsumiki | Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors. |
CWE-78
OS Command |
CVE-2020-5561 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |