Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251141	7.2	危険	NoMachine	-	NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-3977	2011-10-11 10:13	2011-08-5	Show	GitHub Exploit DB Packet Storm

251142	5	警告	IceWarp, Inc.	-	IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3580	2011-10-11 10:11	2011-09-30	Show	GitHub Exploit DB Packet Storm

251143	6.4	警告	IceWarp, Inc.	-	IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-3579	2011-10-11 10:10	2011-09-30	Show	GitHub Exploit DB Packet Storm

251144	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0554	2011-10-11 10:10	2011-09-29	Show	GitHub Exploit DB Packet Storm

251145	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0553	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

251146	4.3	警告	シマンテック	-	Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0552	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

251147	4	警告	株式会社アークウェブ	-	A-Form におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2676	2011-10-7 12:04	2011-10-7	Show	GitHub Exploit DB Packet Storm

251148	5	警告	utage.org	-	宴会くんにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2675	2011-10-7 12:03	2011-10-7	Show	GitHub Exploit DB Packet Storm

251149	2.6	注意	HTC Corporation	-	複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3975	2011-10-7 11:46	2011-10-3	Show	GitHub Exploit DB Packet Storm

251150	5	警告	FFmpeg	-	FFmpeg の decode_residual_inter 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-3974	2011-10-7 11:33	2011-10-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196601	8.4	HIGH Local	mcafee	endpoint_security	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic l…	CWE-269 Improper Privilege Management	CVE-2020-7265	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196602	8.4	HIGH Local	mcafee	endpoint_security	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manip…	CWE-269 Improper Privilege Management	CVE-2020-7264	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196603	7.8	HIGH Local	eaton	intelligent_power_manager	Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager (IPM) v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted reque…	CWE-269 Improper Privilege Management	CVE-2020-6652	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196604	7.3	HIGH Local	eaton	intelligent_power_manager	Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code e…	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-6651	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196605	5.5	MEDIUM Local	ledger	monero	A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-6861	2024-11-21 14:36	2020-05-6	Show	GitHub Exploit DB Packet Storm

196606	5.5	MEDIUM Local	zte	zenic_one_r22b	ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-6867	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196607	4.9	MEDIUM Network	zte	zxctn_6500_firmware	A ZTE product is impacted by a resource management error vulnerability. An attacker could exploit this vulnerability to cause a denial of service by issuing a specific command. This affects: ZXCTN 65…	NVD-CWE-noinfo	CVE-2020-6866	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196608	6.5	MEDIUM Network	zte	oscp	ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the inte…	CWE-200 Information Exposure	CVE-2020-6865	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196609	9.8	CRITICAL Network	hpe	smart_update_manager	A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vul…	NVD-CWE-noinfo	CVE-2020-7136	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196610	6.1	MEDIUM Network	mailbeez	mailbeez	Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to …	CWE-79 Cross-site Scripting	CVE-2020-6579	2024-11-21 14:36	2020-04-30	Show	GitHub Exploit DB Packet Storm