Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250991	4.3	警告	One Designs	-	WordPress 用 Cover WP テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3860	2012-03-5 11:07	2011-09-28	Show	GitHub Exploit DB Packet Storm

250992	4.3	警告	ThemeHybrid	-	WordPress 用 Trending テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3859	2012-03-5 11:06	2011-09-28	Show	GitHub Exploit DB Packet Storm

250993	4.3	警告	zespia	-	WordPress 用 Pixiv Custom テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3858	2012-03-5 11:06	2011-09-28	Show	GitHub Exploit DB Packet Storm

250994	4.3	警告	Antisocial Media LLC	-	WordPress 用 Antisnews テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3857	2012-03-5 11:05	2011-09-28	Show	GitHub Exploit DB Packet Storm

250995	4.3	警告	A Tasty Pixel	-	WordPress 用 Elegant Grunge テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3856	2012-03-5 11:05	2011-09-28	Show	GitHub Exploit DB Packet Storm

250996	4.3	警告	Graph Paper Press	-	WordPress 用 F8 Lite テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3855	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

250997	4.3	警告	Quirm	-	WordPress 用 ZenLite テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3854	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

250998	4.3	警告	ThemeHybrid	-	WordPress 用 Hybrid テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3853	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

250999	4.3	警告	Theme4Press	-	WordPress 用 EvoLve テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3852	2012-03-5 11:03	2011-09-28	Show	GitHub Exploit DB Packet Storm

251000	4.3	警告	DevPress	-	WordPress 用 News テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3851	2012-03-5 11:03	2011-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214781	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on th…	NVD-CWE-noinfo	CVE-2020-0770	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214782	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows CSC Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim syste…	NVD-CWE-noinfo	CVE-2020-0769	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214783	7.5	HIGH Network	microsoft	chakracore internet_explorer edge	A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is un…	CWE-787 Out-of-bounds Write	CVE-2020-0768	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214784	5.5	MEDIUM Local	microsoft	remote_desktop_connection_manager	An information disclosure vulnerability exists in the Remote Desktop Connection Manager (RDCMan) application when it improperly parses XML input containing a reference to an external entity, aka 'Rem…	NVD-CWE-noinfo	CVE-2020-0765	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214785	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the syst…	NVD-CWE-noinfo	CVE-2020-0763	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214786	7.8	HIGH Local	microsoft	windows_10 windows_server_2016	An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the syst…	NVD-CWE-noinfo	CVE-2020-0762	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214787	7.5	HIGH Network	microsoft	azure_devops_server team_foundation_server	An elevation of privilege vulnerability exists when Azure DevOps Server and Team Foundation Services improperly handle pipeline job tokens, aka 'Azure DevOps Server and Team Foundation Services Eleva…	NVD-CWE-noinfo	CVE-2020-0758	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214788	5.4	MEDIUM Network	microsoft	team_foundation_server azure_devops_server	A Cross-site Scripting (XSS) vulnerability exists when Azure DevOps Server does not properly sanitize user provided input, aka 'Azure DevOps Server Cross-site Scripting Vulnerability'.	CWE-79 Cross-site Scripting	CVE-2020-0700	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214789	9.8	CRITICAL Network	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory, aka 'DirectX Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2020-0690	2024-11-21 13:54	2020-03-13	Show	GitHub Exploit DB Packet Storm

214790	9.8	CRITICAL Network	twistedmatrix fedoraproject debian canonical	twisted fedora debian_linux ubuntu_linux	In Twisted Web through 19.10.0, there was an HTTP request splitting vulnerability. When presented with a content-length and a chunked encoding header, the content-length took precedence and the remai…	CWE-444 HTTP Request Smuggling	CVE-2020-10109	2024-11-21 13:54	2020-03-12	Show	GitHub Exploit DB Packet Storm