Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251211	4.3	警告	MantisBT Group	-	MantisBT の config_defaults_inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3356	2011-09-27 11:12	2011-07-31	Show	GitHub Exploit DB Packet Storm

251212	10	危険	シスコシステムズ	-	Cisco Identity Services Engine における設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-3290	2011-09-27 11:07	2011-09-20	Show	GitHub Exploit DB Packet Storm

251213	4.3	警告	Roundcube.net	-	Roundcube Webmail の UI メッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2937	2011-09-27 11:05	2011-08-9	Show	GitHub Exploit DB Packet Storm

251214	6.8	警告	AmmSoft	-	AmmSoft ScriptFTP にバッファオーバーフローの脆弱性	-	CVE-2011-3976	2011-09-27 10:58	2011-09-21	Show	GitHub Exploit DB Packet Storm

251215	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3490	2011-09-26 15:59	2011-09-16	Show	GitHub Exploit DB Packet Storm

251216	4.6	警告	レッドハット	-	Red Hat Enterprise MRG の Cumin における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2925	2011-09-26 15:43	2011-09-7	Show	GitHub Exploit DB Packet Storm

251217	5	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の encryptPassword 関数における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-1509	2011-09-26 15:42	2011-09-20	Show	GitHub Exploit DB Packet Storm

251218	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の SolutionSearch.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1510	2011-09-26 15:41	2011-09-20	Show	GitHub Exploit DB Packet Storm

251219	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3496	2011-09-26 15:40	2011-09-7	Show	GitHub Exploit DB Packet Storm

251220	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意の DLL を実行される脆弱性	CWE-200 情報漏えい	CVE-2011-3497	2011-09-26 15:40	2011-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196531	9.8	CRITICAL Network	hp	intelligent_management_center	A eventinfo_content expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7142	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

196532	9.8	CRITICAL Network	hp	intelligent_management_center	A adddevicetoview expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2020-7141	2024-11-21 14:36	2020-10-20	Show	GitHub Exploit DB Packet Storm

196533	5.5	MEDIUM Local	blackberry	unified_endpoint_manager	An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause…	CWE-20 Improper Input Validation	CVE-2020-6933	2024-11-21 14:36	2020-10-14	Show	GitHub Exploit DB Packet Storm

196534	9.8	CRITICAL Network	zte	zxone_19700_snpe_firmware	A ZTE product is impacted by the improper access control vulnerability. Due to lack of an authentication protection mechanism in the program, attackers could use this vulnerability to gain access rig…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6875	2024-11-21 14:36	2020-10-6	Show	GitHub Exploit DB Packet Storm

196535	5.3	MEDIUM Network	php fedoraproject debian opensuse canonical netapp tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when PHP is processing incoming HTTP cookie values, the cookie names are url-decoded. This may lead to cookies with pref…	CWE-565 Reliance on Cookies without Validation and Integrity Checking	CVE-2020-7070	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

196536	6.5	MEDIUM Network	php fedoraproject debian opensuse canonical netapp oracle tenable	php fedora debian_linux leap ubuntu_linux clustered_data_ontap communications_diameter_signaling_router tenable.sc	In PHP versions 7.2.x below 7.2.34, 7.3.x below 7.3.23 and 7.4.x below 7.4.11, when AES-CCM mode is used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV is actually use…	CWE-326 Inadequate Encryption Strength	CVE-2020-7069	2024-11-21 14:36	2020-10-3	Show	GitHub Exploit DB Packet Storm

196537	7.8	HIGH Local	eaton	9000x_programming_and_configuration_software	A DLL Hijacking vulnerability in Eaton's 9000x Programming and Configuration Software v 2.0.38 and prior allows an attacker to execute arbitrary code by replacing the required DLLs with malicious DLL…	CWE-427 CWE-426 Uncontrolled Search Path Element Untrusted Search Path	CVE-2020-6654	2024-11-21 14:36	2020-10-1	Show	GitHub Exploit DB Packet Storm

196538	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7122	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

196539	7.5	HIGH Network	arubanetworks	cx_6200f_firmware cx_6300_firmware cx_6400_firmware cx_8320_firmware cx_8325_firmware cx_8400_firmware	Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local D…	CWE-787 Out-of-bounds Write	CVE-2020-7121	2024-11-21 14:36	2020-09-23	Show	GitHub Exploit DB Packet Storm

196540	7.4	HIGH Network	bosch	smart_home	Improper certificate validation for certain connections in the Bosch Smart Home System App for iOS prior to version 9.17.1 potentially allows to intercept video contents by performing a man-in-the-mi…	CWE-295 Improper Certificate Validation	CVE-2020-6781	2024-11-21 14:36	2020-09-17	Show	GitHub Exploit DB Packet Storm