Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250381	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Intercompany Media Engine における脆弱性	CWE-noinfo 情報不足	CVE-2011-2563	2011-12-1 11:23	2011-08-24	Show	GitHub Exploit DB Packet Storm

250382	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (サービス停止) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2562	2011-12-1 11:23	2011-08-24	Show	GitHub Exploit DB Packet Storm

250383	7.1	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (サービス停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2561	2011-12-1 11:22	2011-08-24	Show	GitHub Exploit DB Packet Storm

250384	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2560	2011-12-1 11:21	2011-08-24	Show	GitHub Exploit DB Packet Storm

250385	10	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco Unified Presence Server における脆弱性	CWE-200 情報漏えい	CVE-2011-1643	2011-12-1 11:21	2011-08-24	Show	GitHub Exploit DB Packet Storm

250386	5.4	警告	シスコシステムズ	-	Cisco IOS におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2011-1625	2011-12-1 11:20	2011-08-18	Show	GitHub Exploit DB Packet Storm

250387	7.8	危険	シスコシステムズ	-	Cisco IOS におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1624	2011-12-1 11:19	2011-08-18	Show	GitHub Exploit DB Packet Storm

250388	10	危険	シスコシステムズ	-	Cisco TelePresence Recording Server における設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-2555	2011-12-1 11:18	2011-07-29	Show	GitHub Exploit DB Packet Storm

250389	7.8	危険	シスコシステムズ	-	Cisco IOS XR におけるサービス運用妨害 (line-card reload) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2549	2011-12-1 11:18	2011-07-20	Show	GitHub Exploit DB Packet Storm

250390	9	危険	シスコシステムズ	-	Cisco SA 500 series security appliances における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2547	2011-12-1 11:17	2011-07-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210781	5.5	MEDIUM Local	openexr fedoraproject canonical opensuse debian apple	openexr fedora ubuntu_linux leap debian_linux mac_os_x tvos iphone_os icloud itunes watchos ipados	An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h.	CWE-125 Out-of-bounds Read	CVE-2020-11758	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

210782	5.5	MEDIUM Local	cellebrite	ufed_firmware	Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when perfor…	CWE-798 Use of Hard-coded Credentials	CVE-2020-11723	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm

210783	5.5	MEDIUM Local	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to ma…	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2020-11740	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210784	7.5	HIGH Network	snapcreek	duplicator	The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.	CWE-22 Path Traversal	CVE-2020-11738	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210785	3.9	LOW Local	gnome debian canonical	file-roller debian_linux ubuntu_linux	fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during extraction because it lacks a check of whether a file's parent is a symlink to a directory outside of the…	CWE-22 CWE-59 Path Traversal Link Following	CVE-2020-11736	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210786	6.1	MEDIUM Network	cybersolutions	cybermail	cgi-bin/go in CyberSolutions CyberMail 5 or later allows XSS via the ACTION parameter.	CWE-79 Cross-site Scripting	CVE-2020-11734	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210787	9.8	CRITICAL Network	total-soft	responsive_poll	An issue was discovered in the Responsive Poll through 1.3.4 for Wordpress. It allows an unauthenticated user to manipulate polls, e.g., delete, clone, or view a hidden poll. This is due to the usage…	CWE-306 Missing Authentication for Critical Function	CVE-2020-11673	2024-11-21 13:58	2020-04-14	Show	GitHub Exploit DB Packet Storm

210788	7.5	HIGH Network	davidlingren	media_library_assistant	The Media Library Assistant plugin before 2.82 for Wordpress suffers from a Local File Inclusion vulnerability in mla_gallery link=download.	NVD-CWE-noinfo	CVE-2020-11732	2024-11-21 13:58	2020-04-13	Show	GitHub Exploit DB Packet Storm

210789	6.1	MEDIUM Network	davidlingren	media_library_assistant	The Media Library Assistant plugin before 2.82 for Wordpress suffers from multiple XSS vulnerabilities in all Settings/Media Library Assistant tabs, which allow remote authenticated users to execute …	CWE-79 Cross-site Scripting	CVE-2020-11731	2024-11-21 13:58	2020-04-13	Show	GitHub Exploit DB Packet Storm

210790	7.5	HIGH Network	openresty debian	openresty debian_linux	An issue was discovered in OpenResty before 1.15.8.4. ngx_http_lua_subrequest.c allows HTTP request smuggling, as demonstrated by the ngx.location.capture API.	CWE-444 HTTP Request Smuggling	CVE-2020-11724	2024-11-21 13:58	2020-04-13	Show	GitHub Exploit DB Packet Storm