Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250671	4.3	警告	ヒューレット・パッカード	-	HP VCRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3994	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250672	6.4	警告	ヒューレット・パッカード	-	HP Insight Control Server Migration における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-3993	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250673	9	危険	ヒューレット・パッカード	-	HP Insight Control Server Migration における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-3992	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250674	10	危険	Novell	-	SUSE Linux Enterprise の supportconfig スクリプトにおける脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-3912	2012-03-27 18:42	2011-01-12	Show	GitHub Exploit DB Packet Storm

250675	4.3	警告	ヒューレット・パッカード	-	HP Insight Control Server Migration におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3991	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250676	5	警告	ヒューレット・パッカード	-	HP Virtual Server Environment における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-3990	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250677	6.8	警告	ヒューレット・パッカード	-	HP Insight Control Virtual Machine Management におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3989	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250678	5	警告	ヒューレット・パッカード	-	HP Insight Control Virtual Machine Management におけるアクセス制限を回避する脆弱性	CWE-noinfo 情報不足	CVE-2010-3988	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250679	4.3	警告	ヒューレット・パッカード	-	HP Insight Control Virtual Machine Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3987	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

250680	5	警告	ヒューレット・パッカード	-	HP VCEM における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2010-3986	2012-03-27 18:42	2010-10-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214511	4.9	MEDIUM Network	sonatype	nexus_repository_manager	An issue was discovered in Sonatype Nexus Repository Manager 2.x before 2.14.17 and 3.x before 3.22.1. Admin users can retrieve the LDAP server system username/password (as configured in nxrm) in cle…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-11415	2024-11-21 13:57	2020-04-28	Show	GitHub Exploit DB Packet Storm

214512	6.5	MEDIUM Network	abb generex	cs141_firmware	UPS Adapter CS141 before 1.90 allows Directory Traversal. An attacker with Admin or Engineer login credentials could exploit the vulnerability by manipulating variables that reference files and by do…	CWE-22 Path Traversal	CVE-2020-11420	2024-11-21 13:57	2020-04-27	Show	GitHub Exploit DB Packet Storm

214513	5.4	MEDIUM Network	jetbrains	space	JetBrains Space through 2020-04-22 allows stored XSS in Chats.	CWE-79 Cross-site Scripting	CVE-2020-11416	2024-11-21 13:57	2020-04-22	Show	GitHub Exploit DB Packet Storm

214514	8.8	HIGH Network	sonatype	nexus	Sonatype Nexus Repository Manager 3.x up to and including 3.21.2 has Incorrect Access Control.	CWE-276 Incorrect Default Permissions	CVE-2020-11444	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214515	5.3	MEDIUM Network	microstrategy	microstrategy_web	Microstrategy Web 10.4 is vulnerable to Server-Side Request Forgery in the Test Web Service functionality exposed through the path /MicroStrategyWS/. The functionality requires no authentication and,…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-11453	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214516	4.3	MEDIUM Network	microstrategy	microstrategy_web	Microstrategy Web 10.4 includes functionality to allow users to import files or data from external resources such as URLs or databases. By providing an external URL under attacker control, it's possi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-11452	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214517	5.4	MEDIUM Network	microstrategy	microstrategy_web	Microstrategy Web 10.4 is vulnerable to Stored XSS in the HTML Container and Insert Text features in the window, allowing for the creation of a new dashboard. In order to exploit this vulnerability, …	CWE-79 Cross-site Scripting	CVE-2020-11454	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214518	7.2	HIGH Network	microstrategy	microstrategy_web	The Upload Visualization plugin in the Microstrategy Web 10.4 admin panel allows an administrator to upload a ZIP archive containing files with arbitrary extensions and data. (This is also exploitabl…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-11451	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214519	7.5	HIGH Network	microstrategy	microstrategy_web	Microstrategy Web 10.4 exposes the JVM configuration, CPU architecture, installation folder, and other information through the URL /MicroStrategyWS/happyaxis.jsp. An attacker could use this vulnerabi…	NVD-CWE-noinfo	CVE-2020-11450	2024-11-21 13:57	2020-04-3	Show	GitHub Exploit DB Packet Storm

214520	4.9	MEDIUM Network	misp	misp	app/Model/feed.php in MISP before 2.4.124 allows administrators to choose arbitrary files that should be ingested by MISP. This does not cause a leak of the full contents of a file, but does cause a …	NVD-CWE-noinfo	CVE-2020-11458	2024-11-21 13:57	2020-04-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed