Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250281 7.5 危険 KMSoft - KMSoft Guestbook の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4987 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
250282 7.5 危険 FamilyCMS - Family Connections Who is Chatting における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4988 2011-12-9 14:33 2011-11-1 Show GitHub Exploit DB Packet Storm
250283 7.5 危険 Farsi CMS - Ziggurat Farsi CMS の main.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4989 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
250284 7.5 危険 B-Elektro - Joomla! 用 Front-edit Address Book コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4990 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
250285 7.5 危険 Ninja Forge - Joomla! 用 NinjaMonials コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4991 2011-12-9 14:27 2011-11-1 Show GitHub Exploit DB Packet Storm
250286 7.5 危険 Payments Plus - Joomla! 用 Payments Plus コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4992 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
250287 7.5 危険 Kay Messerschmidt - Joomla! 用 eventcal コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4993 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
250288 7.5 危険 Instant Php - Joomla! 用 Jobs Pro コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4994 2011-12-9 14:25 2011-11-1 Show GitHub Exploit DB Packet Storm
250289 7.5 危険 NeoJoomla - Joomla! 用 NeoRecruit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4995 2011-12-9 14:23 2011-11-1 Show GitHub Exploit DB Packet Storm
250290 7.5 危険 esoftpro - esoftpro Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4996 2011-12-9 14:22 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210891 7.5 HIGH
Network 		zoom meetings Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-11500 2024-11-21 13:58 2020-04-3 Show GitHub Exploit DB Packet Storm
210892 6.1 MEDIUM
Network 		firmware_analysis_and_comparison_tool_project firmware_analysis_and_comparison_tool Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFuncti… CWE-79
Cross-site Scripting 		CVE-2020-11499 2024-11-21 13:58 2020-04-3 Show GitHub Exploit DB Packet Storm
210893 8.8 HIGH
Network 		slack nebula Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tun_darwin.go or tun_windows.go. A user can… CWE-22
Path Traversal 		CVE-2020-11498 2024-11-21 13:58 2020-04-3 Show GitHub Exploit DB Packet Storm
210894 4.4 MEDIUM
Local 		linux
opensuse
debian
canonical 		linux_kernel
leap
debian_linux
ubuntu_linux 		An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive infor… CWE-908
CWE-909
 Use of Uninitialized Resource
 Missing Initialization of Resource 		CVE-2020-11494 2024-11-21 13:58 2020-04-3 Show GitHub Exploit DB Packet Storm
210895 4.9 MEDIUM
Network 		zevenet zen_load_balancer Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi. CWE-22
Path Traversal 		CVE-2020-11491 2024-11-21 13:58 2020-04-2 Show GitHub Exploit DB Packet Storm
210896 7.2 HIGH
Network 		zevenet zen_load_balancer Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi cert_issuer, cert_division, cert_organiz… CWE-78
OS Command  		CVE-2020-11490 2024-11-21 13:58 2020-04-2 Show GitHub Exploit DB Packet Storm
210897 6.1 MEDIUM
Network 		bell home_hub_3000_firmware An issue was discovered on Bell HomeHub 3000 SG48222070 devices. There is XSS related to the email field and the login page. CWE-79
Cross-site Scripting 		CVE-2020-11448 2024-11-21 13:57 2023-11-17 Show GitHub Exploit DB Packet Storm
210898 4.3 MEDIUM
Network 		bell home_hub_3000_firmware An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is … NVD-CWE-noinfo
CVE-2020-11447 2024-11-21 13:57 2023-11-17 Show GitHub Exploit DB Packet Storm
210899 8.2 HIGH
Local 		qualcomm ar8035_firmware
qca6390_firmware
qca6391_firmware
qca6426_firmware
qca6436_firmware
qca8337_firmware
qca9984_firmware
qcm2290_firmware
qcm4290_firmware
qcs2290_firmware
 An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-11263 2024-11-21 13:57 2022-01-3 Show GitHub Exploit DB Packet Storm
210900 8.6 HIGH
Network 		qualcomm apq8009_firmware
apq8053_firmware
apq8064au_firmware
apq8076_firmware
apq8092_firmware
apq8094_firmware
apq8096au_firmware
ar8031_firmware
csr6030_firmware
csra6620_firmwar… 		Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-11303 2024-11-21 13:57 2021-10-20 Show GitHub Exploit DB Packet Storm