Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250291 4.3 警告 Theme4Press - WordPress 用 EvoLve テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3852 2012-03-5 11:03 2011-09-28 Show GitHub Exploit DB Packet Storm
250292 4.3 警告 DevPress - WordPress 用 News テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3851 2012-03-5 11:03 2011-09-28 Show GitHub Exploit DB Packet Storm
250293 4.3 警告 Bytes For All - WordPress 用 Atahualpa テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3850 2012-03-5 11:02 2011-09-28 Show GitHub Exploit DB Packet Storm
250294 5.1 警告 Mozilla Foundation - Bugzilla の xmlrpc.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0453 2012-03-2 15:18 2012-02-9 Show GitHub Exploit DB Packet Storm
250295 9.3 危険 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおける設定を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0371 2012-03-2 15:04 2012-02-29 Show GitHub Exploit DB Packet Storm
250296 7.8 危険 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0370 2012-03-2 15:03 2012-02-29 Show GitHub Exploit DB Packet Storm
250297 7.8 危険 シスコシステムズ - Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0369 2012-03-2 15:02 2012-02-29 Show GitHub Exploit DB Packet Storm
250298 7.8 危険 シスコシステムズ - Cisco Unity Connection におけるサービス運用妨害 (サービスクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0367 2012-03-2 14:25 2012-02-29 Show GitHub Exploit DB Packet Storm
250299 9 危険 シスコシステムズ - Cisco Unity Connection における管理者のパスワードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0366 2012-03-2 14:25 2012-02-29 Show GitHub Exploit DB Packet Storm
250300 7.8 危険 シスコシステムズ - Cisco Cius におけるサービス運用妨害 (デバイスクラッシュまたはハング) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0359 2012-03-2 14:24 2012-02-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210301 10.0 CRITICAL
Network 		hms-networks ecatcher HMS Industrial Networks AB eCatcher all versions prior to 6.5.5 is vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2020-14498 2024-11-21 14:03 2020-08-26 Show GitHub Exploit DB Packet Storm
210302 9.8 CRITICAL
Network 		softing opc Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely exe… CWE-787
 Out-of-bounds Write 		CVE-2020-14524 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210303 7.5 HIGH
Network 		softing opc Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to uncontrolled resource consumption, which may allow an attacker to cause a… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-14522 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210304 7.5 HIGH
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product uses a weak hash type, which may allow an attacker to view user passwords. CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-14512 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210305 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-14510 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210306 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product is vulnerable to an off-by-one error, which may allow an attacker to remotely execute arbitrary code or cause a denial-of-service condition. CWE-193
 Off-by-one Error 		CVE-2020-14508 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210307 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data. CWE-476
 NULL Pointer Dereference 		CVE-2020-14500 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210308 6.0 MEDIUM
Local 		tuxfamily
fedoraproject
canonical 		chrony
fedora
ubuntu_linux 		A flaw was found in chrony versions before 3.5.1 when creating the PID file under the /var/run/chrony folder. The file is created during chronyd startup while still running as the root user, and when… CWE-59
Link Following 		CVE-2020-14367 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
210309 7.3 HIGH
Local 		postgresql
debian
opensuse
canonical 		postgresql
debian_linux
leap
ubuntu_linux 		It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into exe… CWE-426
 Untrusted Search Path 		CVE-2020-14350 2024-11-21 14:03 2020-08-24 Show GitHub Exploit DB Packet Storm
210310 7.1 HIGH
Network 		postgresql
opensuse 		postgresql
leap 		It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in … CWE-89
CWE-427
SQL Injection
 Uncontrolled Search Path Element 		CVE-2020-14349 2024-11-21 14:03 2020-08-24 Show GitHub Exploit DB Packet Storm