Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250671	4.3	警告	Hotaru CMS	-	Hotaru CMS の Search プラグイン内にある Hotaru.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4709	2011-12-13 14:52	2011-12-8	Show	GitHub Exploit DB Packet Storm

250672	4.3	警告	IBM	-	IBM Rational Asset Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4708	2011-12-13 14:51	2011-05-5	Show	GitHub Exploit DB Packet Storm

250673	4.3	警告	SAP	-	SAP Netweaver の Virus Scan Interface におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4707	2011-12-13 14:50	2011-12-8	Show	GitHub Exploit DB Packet Storm

250674	5	警告	Igor Sysoev	-	nginx におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4315	2011-12-13 14:49	2011-11-15	Show	GitHub Exploit DB Packet Storm

250675	7.5	危険	Mambo Foundation	-	Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-2917	2011-12-13 14:41	2011-12-8	Show	GitHub Exploit DB Packet Storm

250676	6.8	警告	MIT Kerberos	-	MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1530	2011-12-13 14:40	2011-12-6	Show	GitHub Exploit DB Packet Storm

250677	6.4	警告	BlackBerry	-	BlackBerry Administration API におけるテキストファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-0287	2011-12-13 14:35	2011-07-12	Show	GitHub Exploit DB Packet Storm

250678	6.4	警告	Widelands	-	Widelands におけるパストラバーサル攻撃を誘発される脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4675	2011-12-12 18:21	2011-12-5	Show	GitHub Exploit DB Packet Storm

250679	5	警告	One Click Orgs	-	One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4678	2011-12-12 18:19	2011-12-6	Show	GitHub Exploit DB Packet Storm

250680	4	警告	One Click Orgs	-	One Click Orgs におけるサービス運用妨害 (ログイン障害) の脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4555	2011-12-12 18:18	2011-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210151	6.1	MEDIUM Network	monstaftp	monsta_ftp	Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding.	CWE-79 Cross-site Scripting	CVE-2020-14055	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

210152	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability	CWE-79 Cross-site Scripting	CVE-2020-14169	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210153	5.9	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails…	NVD-CWE-noinfo	CVE-2020-14168	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210154	7.5	HIGH Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impac…	NVD-CWE-noinfo	CVE-2020-14167	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210155	4.8	MEDIUM Network	atlassian	jira_service_desk	The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or …	CWE-79 Cross-site Scripting	CVE-2020-14166	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210156	5.3	MEDIUM Network	atlassian	jira jira_software_data_center	The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper au…	NVD-CWE-noinfo	CVE-2020-14165	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210157	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by…	CWE-79 Cross-site Scripting	CVE-2020-14164	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210158	6.5	MEDIUM Network	squid-cache	squid	An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop AB…	CWE-662 Improper Synchronization	CVE-2020-14059	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210159	7.5	HIGH Network	squid-cache fedoraproject netapp	squid fedora cloud_manager	An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due to use of a potentially dangerous function, Squid and the default certificate validation helper are vulnerable to a Denial of Se…	NVD-CWE-noinfo	CVE-2020-14058	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210160	5.9	MEDIUM Network	putty netapp fedoraproject	putty oncommand_unified_manager_core_package fedora	PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-14002	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm