Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250461	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 9 におけるデータを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-0012	2012-02-20 18:20	2012-02-14	Show	GitHub Exploit DB Packet Storm

250462	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0155	2012-02-20 18:18	2012-02-14	Show	GitHub Exploit DB Packet Storm

250463	4.3	警告	マイクロソフト	-	Microsoft SharePoint Foundation 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0017	2012-02-20 18:16	2012-02-14	Show	GitHub Exploit DB Packet Storm

250464	4.3	警告	マイクロソフト	-	Microsoft Office SharePoint の themeweb.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0144	2012-02-20 18:14	2012-02-14	Show	GitHub Exploit DB Packet Storm

250465	4.3	警告	マイクロソフト	-	Microsoft Office SharePoint の wizardlist.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0145	2012-02-20 18:12	2012-02-14	Show	GitHub Exploit DB Packet Storm

250466	9.3	危険	マイクロソフト	-	Microsoft Windows の msvcrt.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-0150	2012-02-20 18:10	2012-02-14	Show	GitHub Exploit DB Packet Storm

250467	9.3	危険	マイクロソフト	-	Microsoft Visio Viewer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0019	2012-02-20 18:08	2012-02-14	Show	GitHub Exploit DB Packet Storm

250468	9.3	危険	マイクロソフト	-	Microsoft Visio Viewer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0020	2012-02-20 18:06	2012-02-14	Show	GitHub Exploit DB Packet Storm

250469	9.3	危険	マイクロソフト	-	Microsoft Visio Viewer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0136	2012-02-20 18:04	2012-02-14	Show	GitHub Exploit DB Packet Storm

250470	9.3	危険	マイクロソフト	-	Microsoft Visio Viewer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0137	2012-02-20 18:03	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210211	5.4	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple 2.2.14 allows XSS via a Search Term to the admin/moduleinterface.php?mact=ModuleManager page.	CWE-79 Cross-site Scripting	CVE-2020-14926	2024-11-21 14:04	2020-06-20	Show	GitHub Exploit DB Packet Storm

210212	3.2	LOW Local	qemu fedoraproject redhat	qemu fedora extra_packages_for_enterprise_linux enterprise_linux openstack_platform	An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Block (TRB) Ring. This flaw allows a privileged guest user to hang the …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-14394	2024-11-21 14:03	2022-08-18	Show	GitHub Exploit DB Packet Storm

210213	5.6	MEDIUM Local	redhat	jboss_a-mq	A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker's configuration files, leading to denial of service and information disclosure.	CWE-611 XXE	CVE-2020-14379	2024-11-21 14:03	2022-08-17	Show	GitHub Exploit DB Packet Storm

210214	7.5	HIGH Network	moodle	moodle	In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-14322	2024-11-21 14:03	2022-08-17	Show	GitHub Exploit DB Packet Storm

210215	8.8	HIGH Network	moodle	moodle	In Moodle before 3.9.1, 3.8.4, 3.7.7 and 3.5.13, teachers of a course were able to assign themselves the manager role within that course.	CWE-863 Incorrect Authorization	CVE-2020-14321	2024-11-21 14:03	2022-08-17	Show	GitHub Exploit DB Packet Storm

210216	6.1	MEDIUM Network	moodle	moodle	In Moodle before 3.9.1, 3.8.4 and 3.7.7, the filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.	CWE-79 Cross-site Scripting	CVE-2020-14320	2024-11-21 14:03	2022-08-17	Show	GitHub Exploit DB Packet Storm

210217	9.8	CRITICAL Network	mitsubishielectric	m_commdtm-hart gx_works3 gx_works2 gx_logviewer gt_softgot2000 gt_softgot1000 gt_designer3 fr_configurator2 ezsocket data_transfer cw_configurator cpu_module_logging_…	Successful exploitation of this vulnerability for multiple Mitsubishi Electric Factory Automation Engineering Software Products of various versions could allow an attacker to escalate privilege and e…	NVD-CWE-noinfo	CVE-2020-14496	2024-11-21 14:03	2022-05-20	Show	GitHub Exploit DB Packet Storm

210218	5.3	MEDIUM Network	inductiveautomation	ignition	Sensitive information can be obtained through the handling of serialized data. The issue results from the lack of proper authentication required to query the server	CWE-306 Missing Authentication for Critical Function	CVE-2020-14479	2024-11-21 14:03	2022-04-2	Show	GitHub Exploit DB Packet Storm

210219	5.3	MEDIUM Network	rockwellautomation	1734-aentr_point_i\/o_dual_port_network_adaptor_series_b_firmware 1734-aentr_point_i\/o_dual_port_network_adaptor_series_c_firmware	The web interface of the 1734-AENTR communication module mishandles authentication for HTTP POST requests. A remote, unauthenticated attacker can send a crafted request that may allow for modificatio…	CWE-287 Improper Authentication	CVE-2020-14504	2024-11-21 14:03	2022-02-25	Show	GitHub Exploit DB Packet Storm

210220	6.1	MEDIUM Network	rockwellautomation	1734-aentr_point_i\/o_dual_port_network_adaptor_series_b_firmware 1734-aentr_point_i\/o_dual_port_network_adaptor_series_c_firmware	The web interface of the 1734-AENTR communication module is vulnerable to stored XSS. A remote, unauthenticated attacker could store a malicious script within the web interface that, when executed, c…	CWE-79 Cross-site Scripting	CVE-2020-14502	2024-11-21 14:03	2022-02-25	Show	GitHub Exploit DB Packet Storm