Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251351 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0655 2011-05-6 10:56 2011-04-12 Show GitHub Exploit DB Packet Storm
251352 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0980 2011-05-6 10:55 2011-02-10 Show GitHub Exploit DB Packet Storm
251353 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0104 2011-05-6 10:54 2011-04-12 Show GitHub Exploit DB Packet Storm
251354 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0103 2011-05-6 10:52 2011-04-12 Show GitHub Exploit DB Packet Storm
251355 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0105 2011-05-2 14:19 2011-04-12 Show GitHub Exploit DB Packet Storm
251356 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0979 2011-05-2 14:17 2011-02-10 Show GitHub Exploit DB Packet Storm
251357 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0978 2011-05-2 14:16 2011-02-10 Show GitHub Exploit DB Packet Storm
251358 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0097 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
251359 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0034 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
251360 9.3 危険 マイクロソフト - Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0663 2011-05-2 14:13 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199801 9.8 CRITICAL
Network 		nagios fusion Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code Execution as root via vectors related to corrupt component installation in cmd_subsys.php. CWE-77
Command Injection 		CVE-2020-28901 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
199802 9.8 CRITICAL
Network 		nagios fusion
nagios_xi 		Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-28900 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
199803 6.1 MEDIUM
Network 		projectworlds travel_management_system XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field CWE-79
Cross-site Scripting 		CVE-2020-29205 2024-11-21 14:23 2021-05-18 Show GitHub Exploit DB Packet Storm
199804 5.4 MEDIUM
Network 		deskpro deskpro Deskpro Cloud Platform and on-premise 2020.2.3.48207 from 2020-07-30 contains a cross-site scripting (XSS) vulnerability that can lead to an account takeover via custom email templates. CWE-79
Cross-site Scripting 		CVE-2020-28722 2024-11-21 14:23 2021-05-13 Show GitHub Exploit DB Packet Storm
199805 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.4 and earlier allows XSS via crafted content to reach an undocumented feature, such as ![](http://onerror=Function.constructor, in a Notes item. CWE-79
Cross-site Scripting 		CVE-2020-28945 2024-11-21 14:23 2021-05-4 Show GitHub Exploit DB Packet Storm
199806 7.5 HIGH
Network 		open-xchange ox_guard OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-28944 2024-11-21 14:23 2021-05-1 Show GitHub Exploit DB Packet Storm
199807 6.5 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.4 and earlier allows SSRF via a snippet. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-28943 2024-11-21 14:23 2021-05-1 Show GitHub Exploit DB Packet Storm
199808 7.5 HIGH
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface. Someone can use this vulnerability to obtain sensitive inform… CWE-287
Improper Authentication 		CVE-2020-28973 2024-11-21 14:23 2021-04-22 Show GitHub Exploit DB Packet Storm
199809 5.3 MEDIUM
Network 		resourcexpress resourcexpress In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation. CWE-20
 Improper Input Validation  		CVE-2020-28898 2024-11-21 14:23 2021-04-16 Show GitHub Exploit DB Packet Storm
199810 9.8 CRITICAL
Network 		monitorr monitorr An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/_installation/_register.php allows an unauthorized person to create valid credentials. CWE-863
 Incorrect Authorization 		CVE-2020-28872 2024-11-21 14:23 2021-04-12 Show GitHub Exploit DB Packet Storm