Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251051 5 警告 マイクロソフト - Microsoft Internet Explorer における文書の存在を容易に推測される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4689 2011-12-12 16:33 2011-12-7 Show GitHub Exploit DB Packet Storm
251052 5 警告 Mozilla Foundation - Mozilla Firefox におけるブラウザキャッシュ内の文書の存在を容易に推測される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4688 2011-12-12 16:31 2011-12-7 Show GitHub Exploit DB Packet Storm
251053 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品のレイアウトエンジンにおける重要な情報を取得される脆弱性 CWE-362
競合状態 		CVE-2010-5074 2011-12-12 16:22 2010-03-31 Show GitHub Exploit DB Packet Storm
251054 5 警告 Google - Google Chrome の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5073 2011-12-12 16:21 2011-12-7 Show GitHub Exploit DB Packet Storm
251055 5 警告 Opera Software ASA - Opera の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5072 2011-12-12 16:20 2011-12-7 Show GitHub Exploit DB Packet Storm
251056 5 警告 マイクロソフト - Microsoft Internet Explorer の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5071 2011-12-12 16:19 2011-12-7 Show GitHub Exploit DB Packet Storm
251057 5 警告 アップル - Apple Safari の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-5070 2011-12-12 16:17 2011-12-7 Show GitHub Exploit DB Packet Storm
251058 4.3 警告 Google - Google Chrome の Cascading Style Sheets 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-5069 2011-12-12 16:16 2011-12-7 Show GitHub Exploit DB Packet Storm
251059 4.3 警告 Opera Software ASA - Opera の Cascading Style Sheets (CSS) 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-5068 2011-12-12 16:14 2011-12-7 Show GitHub Exploit DB Packet Storm
251060 5 警告 Mozilla Foundation - 複数の Mozilla 製品の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2002-2437 2011-12-12 16:12 2011-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201051 5.4 MEDIUM
Network 		baby_care_system_project baby_care_system Baby Care System 1.0 is affected by a cross-site scripting (XSS) vulnerability in the Edit Page tab through the Post title parameter. CWE-79
Cross-site Scripting 		CVE-2020-35752 2024-11-21 14:28 2021-03-11 Show GitHub Exploit DB Packet Storm
201052 7.2 HIGH
Network 		zenphoto zenphoto Zenphoto through 1.5.7 is affected by authenticated arbitrary file upload, leading to remote code execution. The attacker must navigate to the uploader plugin, check the elFinder box, and then drag a… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-36079 2024-11-21 14:28 2021-02-27 Show GitHub Exploit DB Packet Storm
201053 6.1 MEDIUM
Network 		getgist chatbox Chatbox is affected by cross-site scripting (XSS). An attacker has to upload any XSS payload with SVG, XML file in Chatbox. There is no restriction on file upload in Chatbox which leads to stored XSS. CWE-79
Cross-site Scripting 		CVE-2020-35852 2024-11-21 14:28 2021-02-23 Show GitHub Exploit DB Packet Storm
201054 6.5 MEDIUM
Network 		digium asterisk A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses. CWE-120
Classic Buffer Overflow 		CVE-2020-35776 2024-11-21 14:28 2021-02-19 Show GitHub Exploit DB Packet Storm
201055 7.5 HIGH
Network 		online_book_store_project online_book_store The id parameter in detail.php of Online Book Store v1.0 is vulnerable to union-based blind SQL injection, which leads to the ability to retrieve all databases. CWE-89
SQL Injection 		CVE-2020-36003 2024-11-21 14:28 2021-02-18 Show GitHub Exploit DB Packet Storm
201056 7.5 HIGH
Network 		seat-reservation-system_project seat-reservation-system Seat-Reservation-System 1.0 has a SQL injection vulnerability in index.php in the id parameter where attackers can obtain sensitive database information. CWE-89
SQL Injection 		CVE-2020-36002 2024-11-21 14:28 2021-02-18 Show GitHub Exploit DB Packet Storm
201057 9.8 CRITICAL
Network 		citsmart citsmart CITSmart before 9.1.2.23 allows LDAP Injection. CWE-74
Injection 		CVE-2020-35775 2024-11-21 14:28 2021-02-16 Show GitHub Exploit DB Packet Storm
201058 6.5 MEDIUM
Network 		imagely nextgen_gallery A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload. (It is possible to bypass CSRF protection by simply not including a nonce parame… CWE-352
 Origin Validation Error 		CVE-2020-35943 2024-11-21 14:28 2021-02-10 Show GitHub Exploit DB Packet Storm
201059 8.8 HIGH
Network 		imagely nextgen_gallery A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload and Local File Inclusion via settings modification, leading to Remote Code Execut… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2020-35942 2024-11-21 14:28 2021-02-10 Show GitHub Exploit DB Packet Storm
201060 8.8 HIGH
Network 		symonics
fedoraproject 		libmysofa
fedora 		Buffer overflow in readDataVar in hdf/dataobject.c in Symonics libmysofa 0.5 - 1.1 allows attackers to execute arbitrary code via a crafted SOFA. CWE-120
Classic Buffer Overflow 		CVE-2020-36152 2024-11-21 14:28 2021-02-9 Show GitHub Exploit DB Packet Storm