Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250711	4.3	警告	alberto pittoni	-	AlGuest におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4407	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250712	6.8	警告	brunetton	-	Brunetton LittlePhpGallery の gallery.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4406	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250713	4.3	警告	anything-digital	-	Joomla! の Yannick Gaultier コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4405	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250714	7.5	危険	anything-digital	-	Joomla! の Yannick Gaultier コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4404	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250715	5	警告	devbits	-	WordPress の Register Plus プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4403	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250716	4.3	警告	devbits	-	WordPress の wp-login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4402	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250717	5	警告	dynpg	-	DynPG CMS の languages.inc.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4401	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250718	7.5	危険	dynpg	-	DynPG CMS の in _rights.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4400	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250719	4.3	警告	dynpg	-	DynPG CMS の languages.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4399	2012-03-27 18:42	2010-12-6	Show	GitHub Exploit DB Packet Storm

250720	4.3	警告	Nullsoft	-	Winamp の in_mkv プラグインにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4374	2012-03-27 18:42	2010-11-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214741	4.3	MEDIUM Network	br-automation	gatemanager_9250_firmware gatemanager_4260_firmware gatemanager_8250_firmware	A log information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to view log information reserve…	NVD-CWE-Other	CVE-2020-11646	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214742	6.5	MEDIUM Network	br-automation	gatemanager_9250_firmware gatemanager_4260_firmware gatemanager_8250_firmware	A denial of service vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to limit availability of GateManager ins…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-11645	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214743	6.5	MEDIUM Network	br-automation	gatemanager_9250_firmware gatemanager_4260_firmware gatemanager_8250_firmware	The information disclosure vulnerability present in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to generate fake audit lo…	NVD-CWE-Other	CVE-2020-11644	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214744	6.5	MEDIUM Network	br-automation	gatemanager_9250_firmware gatemanager_4260_firmware gatemanager_8250_firmware	An information disclosure vulnerability in B&R GateManager 4260 and 9250 versions <9.0.20262 and GateManager 8250 versions <9.2.620236042 allows authenticated users to view information of devices bel…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-11643	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214745	6.5	MEDIUM Network	br-automation	sitemanager	The local file inclusion vulnerability present in B&R SiteManager versions <9.2.620236042 allows authenticated users to impact availability of SiteManager instances.	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-11642	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214746	6.5	MEDIUM Network	br-automation	sitemanager	A local file inclusion vulnerability in B&R SiteManager versions <9.2.620236042 allows authenticated users to read sensitive files from SiteManager instances.	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-11641	2024-11-21 13:58	2020-10-16	Show	GitHub Exploit DB Packet Storm

214747	9.8	CRITICAL Network	zabbix opensuse debian	zabbix leap backports_sle debian_linux	Zabbix Server 2.2.x and 3.0.x before 3.0.31, and 3.2 allows remote attackers to execute arbitrary code.	NVD-CWE-noinfo	CVE-2020-11800	2024-11-21 13:58	2020-10-8	Show	GitHub Exploit DB Packet Storm

214748	9.8	CRITICAL Network	pexip	reverse_proxy_and_turn_server pexip_infinity	Pexip Reverse Proxy and TURN Server before 6.1.0 has Incorrect UDP Access Control via TURN.	CWE-20 Improper Input Validation	CVE-2020-11805	2024-11-21 13:58	2020-09-25	Show	GitHub Exploit DB Packet Storm

214749	9.8	CRITICAL Network	microfocus	operation_bridge_reporter	Arbitrary code execution vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow remote attackers to execute arbitrary code on affec…	CWE-306 Missing Authentication for Critical Function	CVE-2020-11856	2024-11-21 13:58	2020-09-23	Show	GitHub Exploit DB Packet Storm

214750	9.8	CRITICAL Network	microfocus	operation_bridge_reporter	An Authorization Bypass vulnerability on Micro Focus Operation Bridge Reporter, affecting version 10.40 and earlier. The vulnerability could allow remote attackers to access the OBR host as a non-adm…	CWE-798 Use of Hard-coded Credentials	CVE-2020-11857	2024-11-21 13:58	2020-09-22	Show	GitHub Exploit DB Packet Storm