Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251031	4.3	警告	Combodo	-	Combodo iTop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4275	2011-11-29 16:23	2011-11-26	Show	GitHub Exploit DB Packet Storm

251032	9.3	危険	SunPlus Electronics	-	DVR Remote ActiveX コントロールの DVRemoteAx.ax における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3828	2011-11-29 16:22	2011-11-26	Show	GitHub Exploit DB Packet Storm

251033	6.8	警告	IBM	-	IBM TS3100 および TS3200 テープ・ライブラリにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1372	2011-11-29 16:15	2011-11-23	Show	GitHub Exploit DB Packet Storm

251034	1.9	注意	ヒューレット・パッカード IBM	-	IBM WebSphere MQ における listener プロセス強制終了の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1378	2011-11-29 16:14	2011-11-26	Show	GitHub Exploit DB Packet Storm

251035	5	警告	シスコシステムズ	-	Cisco Secure Access Control System における任意のユーザのパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-0951	2011-11-29 10:38	2011-03-30	Show	GitHub Exploit DB Packet Storm

251036	5	警告	シスコシステムズ	-	Cisco Network Access Control Guest Server におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0963	2011-11-29 10:37	2011-03-30	Show	GitHub Exploit DB Packet Storm

251037	9.3	危険	シスコシステムズ	-	Cisco Secure Desktop における意図しないプログラムをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0925	2011-11-29 10:37	2011-02-28	Show	GitHub Exploit DB Packet Storm

251038	9.3	危険	シスコシステムズ	-	Cisco Secure Desktop における意図しないプログラムをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0926	2011-11-29 10:35	2011-02-25	Show	GitHub Exploit DB Packet Storm

251039	7.5	危険	シスコシステムズ	-	Cisco TelePresence Recording サーバにおける不特定な操作を実行される脆弱性	CWE-287 不適切な認証	CVE-2011-0392	2011-11-29 10:35	2011-02-23	Show	GitHub Exploit DB Packet Storm

251040	7.8	危険	シスコシステムズ	-	Cisco TelePresence Recording サーバデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0391	2011-11-29 10:34	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200941	7.8	HIGH Local	atlassian	bitbucket	The Microsoft Windows Installer for Atlassian Bitbucket Server and Data Center before version 6.10.9, 7.x before 7.6.4, and from version 7.7.0 before 7.10.1 allows local attackers to escalate privile…	CWE-276 Incorrect Default Permissions	CVE-2020-36233	2024-11-21 14:29	2021-02-19	Show	GitHub Exploit DB Packet Storm

200942	8.8	HIGH Adjacent	gramaddict	gramaddict	GramAddict through 1.2.3 allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port 7912, e.g., by being on the same W…	CWE-306 Missing Authentication for Critical Function	CVE-2020-36245	2024-11-21 14:29	2021-02-18	Show	GitHub Exploit DB Packet Storm

200943	5.3	MEDIUM Network	atlassian	jira data_center	Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view custom field options via an Information Disclosure vulnerability in the /rest/api/2/customFie…	NVD-CWE-noinfo	CVE-2020-36237	2024-11-21 14:29	2021-02-15	Show	GitHub Exploit DB Packet Storm

200944	6.1	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the ViewWorkflowSchemes.jspa…	CWE-79 Cross-site Scripting	CVE-2020-36236	2024-11-21 14:29	2021-02-15	Show	GitHub Exploit DB Packet Storm

200945	5.3	MEDIUM Network	atlassian	jira jira_software_data_center jira_server	Affected versions of Atlassian Jira Server and Data Center allow unauthenticated remote attackers to view custom field and custom SLA names via an Information Disclosure vulnerability in the mobile s…	NVD-CWE-noinfo	CVE-2020-36235	2024-11-21 14:29	2021-02-15	Show	GitHub Exploit DB Packet Storm

200946	4.8	MEDIUM Network	atlassian	jira data_center jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view. The …	CWE-79 Cross-site Scripting	CVE-2020-36234	2024-11-21 14:29	2021-02-15	Show	GitHub Exploit DB Packet Storm

200947	9.8	CRITICAL Network	genivi debian	diagnostic_log_and_trace debian_linux	The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon (versions prior to…	CWE-787 Out-of-bounds Write	CVE-2020-36244	2024-11-21 14:29	2021-02-10	Show	GitHub Exploit DB Packet Storm

200948	8.8	HIGH Network	open-emr	openemr	The Patient Portal of OpenEMR 5.0.2.1 is affected by a Command Injection vulnerability in /interface/main/backup.php. To exploit the vulnerability, an authenticated attacker can send a POST request t…	CWE-78 OS Command	CVE-2020-36243	2024-11-21 14:29	2021-02-8	Show	GitHub Exploit DB Packet Storm

200949	9.1	CRITICAL Network	cryptography.io fedoraproject oracle	cryptography fedora communications_cloud_native_core_network_function_cloud_native_environment	In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrate…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-36242	2024-11-21 14:29	2021-02-8	Show	GitHub Exploit DB Packet Storm

200950	5.5	MEDIUM Local	gnome fedoraproject	gnome-autoar fedora	autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's…	CWE-22 CWE-59 Path Traversal Link Following	CVE-2020-36241	2024-11-21 14:29	2021-02-5	Show	GitHub Exploit DB Packet Storm