Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251131 7.8 危険 Imperva Inc. - Imperva SecureSphere の Web Application Firewall および Database Firewall における intrusion-prevention 機能を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1329 2011-06-6 14:29 2010-04-5 Show GitHub Exploit DB Packet Storm
251132 4.3 警告 Imperva Inc. - Imperva SecureSphere MX Management Server の management GUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1463 2011-06-6 14:27 2008-03-18 Show GitHub Exploit DB Packet Storm
251133 6.5 警告 バラクーダネットワークス - Barracuda Spam Firewall の Account View ページ内にある index.cgi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1094 2011-06-6 14:23 2008-12-15 Show GitHub Exploit DB Packet Storm
251134 3.5 注意 バラクーダネットワークス - 複数の Barracuda 製品の index.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0971 2011-06-6 14:21 2008-12-15 Show GitHub Exploit DB Packet Storm
251135 4.3 警告 バラクーダネットワークス - Barracuda Spam Firewall の ldap_test.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2333 2011-06-6 14:20 2008-05-22 Show GitHub Exploit DB Packet Storm
251136 10 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System の logText 関数における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-1568 2011-06-6 14:19 2011-04-5 Show GitHub Exploit DB Packet Storm
251137 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-0075 2011-06-6 13:56 2011-04-28 Show GitHub Exploit DB Packet Storm
251138 5 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Windows 上で稼働する複数の Mozilla 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-0071 2011-06-6 10:36 2011-04-28 Show GitHub Exploit DB Packet Storm
251139 5 警告 サイバートラスト株式会社
Mozilla Foundation		 - Mozilla Firefox および SeaMonkey におけるフォームの入力履歴を読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0067 2011-06-6 10:35 2011-04-28 Show GitHub Exploit DB Packet Storm
251140 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0073 2011-06-6 10:34 2011-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199711 7.8 HIGH
Local 		apple ipados
watchos
tvos
iphone_os
mac_os_x
icloud
macos 		An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS… CWE-787
 Out-of-bounds Write 		CVE-2020-29611 2024-11-21 14:24 2021-04-3 Show GitHub Exploit DB Packet Storm
199712 5.5 MEDIUM
Local 		apple ipados
watchos
tvos
iphone_os
mac_os_x
macos 		An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.… CWE-125
Out-of-bounds Read 		CVE-2020-29610 2024-11-21 14:24 2021-04-3 Show GitHub Exploit DB Packet Storm
199713 5.5 MEDIUM
Local 		apple ipados
watchos
tvos
iphone_os
mac_os_x
macos 		An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, tvOS 14.3, macOS Big … CWE-125
Out-of-bounds Read 		CVE-2020-29608 2024-11-21 14:24 2021-04-3 Show GitHub Exploit DB Packet Storm
199714 8.8 HIGH
Network 		getgrav grav_cms The Scheduler in Grav CMS through 1.7.0-rc.17 allows an attacker to execute a system command by tricking an admin into visiting a malicious website (CSRF). CWE-352
 Origin Validation Error 		CVE-2020-29553 2024-11-21 14:24 2021-03-16 Show GitHub Exploit DB Packet Storm
199715 5.5 MEDIUM
Local 		getgrav grav_cms The Backup functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to read arbitrary local files on the underlying server by exploiting a path-traversal technique. (This vulner… CWE-22
Path Traversal 		CVE-2020-29556 2024-11-21 14:24 2021-03-16 Show GitHub Exploit DB Packet Storm
199716 8.1 HIGH
Network 		getgrav grav_cms The BackupDelete functionality in Grav CMS through 1.7.0-rc.17 allows an authenticated attacker to delete arbitrary files on the underlying server by exploiting a path-traversal technique. (This vuln… CWE-22
Path Traversal 		CVE-2020-29555 2024-11-21 14:24 2021-03-16 Show GitHub Exploit DB Packet Storm
199717 9.8 CRITICAL
Network 		zohocorp manageengine_applications_control_plus Zoho ManageEngine Application Control Plus before 100523 has an insecure SSL configuration setting for Nginx, leading to Privilege Escalation. NVD-CWE-noinfo
CVE-2020-29658 2024-11-21 14:24 2021-03-5 Show GitHub Exploit DB Packet Storm
199718 5.3 MEDIUM
Network 		atlassian data_center
jira_server
jira_data_center 		The CachingResourceDownloadRewriteRule class in Jira Server and Jira Data Center before version 8.5.11, from 8.6.0 before 8.13.3, and from 8.14.0 before 8.15.0 allowed unauthenticated remote attacker… CWE-22
Path Traversal 		CVE-2020-29453 2024-11-21 14:24 2021-02-23 Show GitHub Exploit DB Packet Storm
199719 5.3 MEDIUM
Network 		atlassian confluence_server
confluence_data_center 		The ConfluenceResourceDownloadRewriteRule class in Confluence Server and Confluence Data Center before version 6.13.18, from 6.14.0 before 7.4.6, and from 7.5.0 before 7.8.3 allowed unauthenticated r… NVD-CWE-noinfo
CVE-2020-29448 2024-11-21 14:24 2021-02-23 Show GitHub Exploit DB Packet Storm
199720 7.8 HIGH
Local 		dji mavic_2_firmware A command injection issue in dji_sys in DJI Mavic 2 Remote Controller before firmware version 01.00.0510 allows for code execution via a malicious firmware upgrade packet. CWE-78
OS Command  		CVE-2020-29664 2024-11-21 14:24 2021-02-18 Show GitHub Exploit DB Packet Storm