Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250551 5 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4767 2011-12-20 12:21 2011-12-16 Show GitHub Exploit DB Packet Storm
250552 4.3 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4765 2011-12-20 12:12 2011-12-16 Show GitHub Exploit DB Packet Storm
250553 4.3 警告 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4764 2011-12-20 12:11 2011-12-16 Show GitHub Exploit DB Packet Storm
250554 7.5 危険 Parallels - Parallels Plesk Small Business Panel の Site Editor 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4763 2011-12-20 12:11 2011-12-16 Show GitHub Exploit DB Packet Storm
250555 10 危険 Parallels - Parallels Plesk Small Business Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4762 2011-12-20 11:33 2011-12-16 Show GitHub Exploit DB Packet Storm
250556 10 危険 Parallels - Parallels Plesk Small Business Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4761 2011-12-20 11:33 2011-12-16 Show GitHub Exploit DB Packet Storm
250557 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4760 2011-12-20 11:31 2011-12-16 Show GitHub Exploit DB Packet Storm
250558 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4759 2011-12-20 11:30 2011-12-16 Show GitHub Exploit DB Packet Storm
250559 5 警告 Parallels - Parallels Plesk Small Business Panel における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-4758 2011-12-20 11:30 2011-12-16 Show GitHub Exploit DB Packet Storm
250560 10 危険 Parallels - Parallels Plesk Small Business Panel における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4757 2011-12-20 11:29 2011-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200561 6.5 MEDIUM
Network 		ffmpeg ffmpeg track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing. CWE-787
 Out-of-bounds Write 		CVE-2020-35964 2024-11-21 14:28 2021-01-4 Show GitHub Exploit DB Packet Storm
200562 7.8 HIGH
Local 		treasuredata fluent_bit flb_gzip_compress in flb_gzip.c in Fluent Bit before 1.6.4 has an out-of-bounds write because it does not use the correct calculation of the maximum gzip data-size expansion. CWE-787
 Out-of-bounds Write 		CVE-2020-35963 2024-11-21 14:28 2021-01-4 Show GitHub Exploit DB Packet Storm
200563 7.5 HIGH
Network 		loopring loopring The sellTokenForLRC function in the vault protocol in the smart contract implementation for Loopring (LRC), an Ethereum token, lacks access control for fee swapping and thus allows price manipulation. NVD-CWE-noinfo
CVE-2020-35962 2024-11-21 14:28 2021-01-3 Show GitHub Exploit DB Packet Storm
200564 6.5 MEDIUM
Network 		php-fusion php-fusion login.php in PHPFusion (aka PHP-Fusion) Andromeda 9.x before 2020-12-30 generates error messages that distinguish between incorrect username and incorrect password (i.e., not a single "Incorrect user… NVD-CWE-noinfo
CVE-2020-35952 2024-11-21 14:28 2021-01-3 Show GitHub Exploit DB Packet Storm
200565 9.9 CRITICAL
Network 		expresstech quiz_and_survey_master An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. It allows users to delete arbitrary files such as wp-config.php file, which could effectively take a site offl… CWE-306
Missing Authentication for Critical Function 		CVE-2020-35951 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
200566 8.8 HIGH
Network 		xcloner xcloner An issue was discovered in the XCloner Backup and Restore plugin before 4.2.153 for WordPress. It allows CSRF (via almost any endpoint). CWE-352
 Origin Validation Error 		CVE-2020-35950 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
200567 9.8 CRITICAL
Network 		expresstech quiz_and_survey_master An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. It made it possible for unauthenticated attackers to upload arbitrary files and achieve remote code execution.… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-35949 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
200568 8.8 HIGH
Network 		xcloner xcloner An issue was discovered in the XCloner Backup and Restore plugin before 4.2.13 for WordPress. It gave authenticated attackers the ability to modify arbitrary files, including PHP files. Doing so woul… CWE-863
 Incorrect Authorization 		CVE-2020-35948 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
200569 7.4 HIGH
Network 		pagelayer pagelayer An issue was discovered in the PageLayer plugin before 1.1.2 for WordPress. Nearly all of the AJAX action endpoints lacked permission checks, allowing these actions to be executed by anyone authentic… CWE-79
Cross-site Scripting 		CVE-2020-35947 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
200570 5.4 MEDIUM
Network 		semperplugins all_in_one_seo_pack An issue was discovered in the All in One SEO Pack plugin before 3.6.2 for WordPress. The SEO Description and Title fields are vulnerable to unsanitized input from a Contributor, leading to stored XS… CWE-79
Cross-site Scripting 		CVE-2020-35946 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm