Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250451 10 危険 Avid Technology - Avid Media Composer の Phonetic Indexer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5003 2011-12-28 14:27 2011-12-25 Show GitHub Exploit DB Packet Storm
250452 10 危険 Final Draft - Final Draft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5002 2011-12-28 14:24 2011-12-25 Show GitHub Exploit DB Packet Storm
250453 10 危険 Attachmate - Reflection FTP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5012 2011-12-28 11:44 2011-12-25 Show GitHub Exploit DB Packet Storm
250454 4.3 警告 xt:Commerce - xt:Commerce におけるクロスサイトリクエストフォージェリの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5011 2011-12-28 11:41 2011-12-25 Show GitHub Exploit DB Packet Storm
250455 10 危険 Ctek, Inc. - Ctek SkyRouter の apps/a3/cfg_ethping.cgi における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5010 2011-12-28 11:40 2011-12-25 Show GitHub Exploit DB Packet Storm
250456 5 警告 3S-Smart Software Solutions - 3S CoDeSys におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性 CWE-Other
その他 		CVE-2011-5009 2011-12-28 11:36 2011-12-25 Show GitHub Exploit DB Packet Storm
250457 7.5 危険 3S-Smart Software Solutions - 3S CoDeSys の GatewayService コンポーネントにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-5008 2011-12-28 11:35 2011-12-25 Show GitHub Exploit DB Packet Storm
250458 10 危険 3S-Smart Software Solutions - 3S CoDeSys におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5007 2011-12-28 11:34 2011-12-25 Show GitHub Exploit DB Packet Storm
250459 7.5 危険 Wuzly - Wuzly の管理機能における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3839 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
250460 7.5 危険 Wuzly - Wuzly における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-3838 2011-12-28 11:31 2011-12-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210471 5.4 MEDIUM
Network 		openstack
canonical 		keystone
ubuntu_linux 		An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then … CWE-347
CWE-294
 Improper Verification of Cryptographic Signature
Authentication Bypass by Capture-replay  		CVE-2020-12692 2024-11-21 14:00 2020-05-7 Show GitHub Exploit DB Packet Storm
210472 8.8 HIGH
Network 		openstack
canonical 		keystone
ubuntu_linux 		An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that they have a specified role on, and then … CWE-863
 Incorrect Authorization 		CVE-2020-12691 2024-11-21 14:00 2020-05-7 Show GitHub Exploit DB Packet Storm
210473 8.8 HIGH
Network 		openstack keystone An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The list of roles provided for an OAuth1 access token is silently ignored. Thus, when an access token is used to request a key… CWE-613
 Insufficient Session Expiration 		CVE-2020-12690 2024-11-21 14:00 2020-05-7 Show GitHub Exploit DB Packet Storm
210474 8.8 HIGH
Network 		openstack
canonical 		keystone
ubuntu_linux 		An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any user authenticated within a limited scope (trust/oauth/application credential) can create an EC2 credential with an escala… CWE-269
 Improper Privilege Management 		CVE-2020-12689 2024-11-21 14:00 2020-05-7 Show GitHub Exploit DB Packet Storm
210475 8.8 HIGH
Network 		dolibarr dolibarr core/get_menudiv.php in Dolibarr before 11.0.4 allows remote authenticated attackers to bypass intended access restrictions via a non-alphanumeric menu parameter. CWE-20
 Improper Input Validation  		CVE-2020-12669 2024-11-21 14:00 2020-05-7 Show GitHub Exploit DB Packet Storm
210476 7.5 HIGH
Network 		graphicsmagick
debian
opensuse 		graphicsmagick
debian_linux
leap
backports_sle 		GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c. CWE-787
 Out-of-bounds Write 		CVE-2020-12672 2024-11-21 14:00 2020-05-6 Show GitHub Exploit DB Packet Storm
210477 6.1 MEDIUM
Network 		go-macaron
fedoraproject 		macaron
fedora 		macaron before 1.3.7 has an open redirect in the static handler, as demonstrated by the http://127.0.0.1:4000//example.com/ URL. CWE-601
Open Redirect 		CVE-2020-12666 2024-11-21 14:00 2020-05-6 Show GitHub Exploit DB Packet Storm
210478 6.7 MEDIUM
Local 		linux
netapp 		linux_kernel
cloud_backup
steelstore_cloud_integrated_storage
solidfire_\&_hci_management_node
active_iq_unified_manager
solidfire_baseboard_management_controller
hci_baseboard_… 		An issue was discovered in the Linux kernel before 5.6.7. xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write (by a user with the CAP_NET_ADMIN capability) because of a lack of headroom val… CWE-787
 Out-of-bounds Write 		CVE-2020-12659 2024-11-21 14:00 2020-05-5 Show GitHub Exploit DB Packet Storm
210479 7.8 HIGH
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body. CWE-416
 Use After Free 		CVE-2020-12657 2024-11-21 14:00 2020-05-5 Show GitHub Exploit DB Packet Storm
210480 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel through 5.6.10. Attackers may trigger a sync of excessive duration via an XFS v5 image with crafted metadata… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-12655 2024-11-21 14:00 2020-05-5 Show GitHub Exploit DB Packet Storm