Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250751 7.5 危険 IBM - IBM Tivoli Provisioning Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0199 2012-03-7 14:53 2012-03-6 Show GitHub Exploit DB Packet Storm
250752 9.3 危険 IBM - IBM Tivoli Provisioning Manager Express におけるスタックベースのバッファオーバーフローの脆弱性 CWE-DesignError
CVE-2012-0198 2012-03-7 14:53 2012-03-6 Show GitHub Exploit DB Packet Storm
250753 4 警告 シックス・アパート株式会社 - Movable Type のデフォルト設定におけるディレクトリトラバーサル攻撃の脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1497 2012-03-6 15:22 2012-03-3 Show GitHub Exploit DB Packet Storm
250754 4.3 警告 シックス・アパート株式会社 - Movable Type の cgi-bin/mt/mt-wizard.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1262 2012-03-6 15:20 2012-03-3 Show GitHub Exploit DB Packet Storm
250755 4.3 警告 IBM - 複数の IBM 製品の Gantt applet viewer におけるクロスサイトスクリプティングの脆弱性 - CVE-2012-0715 2012-03-6 14:44 2012-03-2 Show GitHub Exploit DB Packet Storm
250756 7.8 危険 IBM - IBM AIX および VIOS におけるサービス運用妨害 (システムクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1385 2012-03-6 14:42 2012-02-24 Show GitHub Exploit DB Packet Storm
250757 7.5 危険 Novell - Novell GroupWise のクライアントにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4189 2012-03-6 14:42 2012-02-23 Show GitHub Exploit DB Packet Storm
250758 9.3 危険 IBM - IBM Personal Communications の pcsws.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0201 2012-03-5 15:26 2011-02-20 Show GitHub Exploit DB Packet Storm
250759 7.5 危険 アップル - Apple Safari で使用される WebKit における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3443 2012-03-5 15:26 2012-03-2 Show GitHub Exploit DB Packet Storm
250760 4.3 警告 ES APP Group - ES ファイルエクスプローラーにおけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0322 2012-03-5 12:02 2012-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209571 7.6 HIGH
Network 		mozilla vpn An OAuth session fixation vulnerability existed in the VPN login flow, where an attacker could craft a custom login URL, convince a VPN user to login via that URL, and obtain authenticated access as … CWE-384
 Session Fixation 		CVE-2020-15679 2024-11-21 14:06 2022-12-23 Show GitHub Exploit DB Packet Storm
209572 5.3 MEDIUM
Network 		fedoraproject supybot-fedora supybot-fedora implements the command 'refresh', that refreshes the cache of all users from FAS. This takes quite a while to run, and zodbot stops responding to requests during this time. NVD-CWE-noinfo
CVE-2020-15853 2024-11-21 14:06 2022-10-18 Show GitHub Exploit DB Packet Storm
209573 6.1 MEDIUM
Network 		redhat bodhi Two cross-site scripting vulnerabilities were fixed in Bodhi 5.6.1. CWE-79
Cross-site Scripting 		CVE-2020-15855 2024-11-21 14:06 2022-10-8 Show GitHub Exploit DB Packet Storm
209574 7.5 HIGH
Network 		lemonldap-ng
debian 		lemonldap\
debian_linux 		In LemonLDAP::NG (aka lemonldap-ng) through 2.0.8, validity of the X.509 certificate is not checked by default when connecting to remote LDAP backends, because the default configuration of the Net::L… CWE-295
Improper Certificate Validation  		CVE-2020-16093 2024-11-21 14:06 2022-07-18 Show GitHub Exploit DB Packet Storm
209575 6.5 MEDIUM
Local 		emerson openenterprise_scada_server Inadequate encryption may allow the credentials used by Emerson OpenEnterprise, up through version 3.3.5, to access field devices and external systems to be obtained. CWE-326
Inadequate Encryption Strength 		CVE-2020-16235 2024-11-21 14:06 2022-05-20 Show GitHub Exploit DB Packet Storm
209576 8.8 HIGH
Network 		bachmann mx207_firmware
mx213_firmware
mx220_firmware
mc206_firmware
mc212_firmware
mc220_firmware
mh230_firmware
mc205_firmware
mc210_firmware
mh212_firmware
me203_firmware
c… 		The affected Bachmann Electronic M-Base Controllers of version MSYS v1.06.14 and later use weak cryptography to protect device passwords. Affected controllers that are actively supported include MX20… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-16231 2024-11-21 14:06 2022-05-20 Show GitHub Exploit DB Packet Storm
209577 9.8 CRITICAL
Network 		fieldcommgroup hipserver
hart-ip_developer_kit_firmware 		A malicious attacker could exploit the interface of the Fieldcomm Group HART-IP (release 1.0.0.0) by constructing messages with sufficiently large payloads to overflow the internal buffer and crash t… - CVE-2020-16209 2024-11-21 14:06 2022-05-20 Show GitHub Exploit DB Packet Storm
209578 9.8 CRITICAL
Network 		yokogawa widefield3 In Yokogawa WideField3 R1.01 - R4.03, a buffer overflow could be caused when a user loads a maliciously crafted project file. CWE-120
Classic Buffer Overflow 		CVE-2020-16232 2024-11-21 14:06 2022-03-19 Show GitHub Exploit DB Packet Storm
209579 4.5 MEDIUM
Adjacent 		fortinet fortios A improper input validation in Fortinet FortiGate version 6.4.3 and below, version 6.2.5 and below, version 6.0.11 and below, version 5.6.13 and below allows attacker to disclose sensitive informatio… CWE-20
 Improper Input Validation  		CVE-2020-15936 2024-11-21 14:06 2022-03-2 Show GitHub Exploit DB Packet Storm
209580 5.3 MEDIUM
Network 		fortinet fortimail A exposure of sensitive information to an unauthorized actor in Fortinet FortiMail versions 6.0.9 and below, FortiMail versions 6.2.4 and below FortiMail versions 6.4.1 and 6.4.0 allows attacker to o… CWE-200
Information Exposure 		CVE-2020-15933 2024-11-21 14:06 2022-01-5 Show GitHub Exploit DB Packet Storm