Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251351	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0655	2011-05-6 10:56	2011-04-12	Show	GitHub Exploit DB Packet Storm

251352	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0980	2011-05-6 10:55	2011-02-10	Show	GitHub Exploit DB Packet Storm

251353	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0104	2011-05-6 10:54	2011-04-12	Show	GitHub Exploit DB Packet Storm

251354	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0103	2011-05-6 10:52	2011-04-12	Show	GitHub Exploit DB Packet Storm

251355	9.3	危険	マイクロソフト	-	複数の Microsoft 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0105	2011-05-2 14:19	2011-04-12	Show	GitHub Exploit DB Packet Storm

251356	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0979	2011-05-2 14:17	2011-02-10	Show	GitHub Exploit DB Packet Storm

251357	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0978	2011-05-2 14:16	2011-02-10	Show	GitHub Exploit DB Packet Storm

251358	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0097	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

251359	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0034	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

251360	9.3	危険	マイクロソフト	-	Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0663	2011-05-2 14:13	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210131	2.2	LOW Network	freerdp canonical debian	freerdp ubuntu_linux debian_linux	In FreeRDP after 1.1 and before 2.0.0, a stream out-of-bounds seek in rdp_read_font_capability_set could lead to a later out-of-bounds read. As a result, a manipulated client or server might force a …	-	CVE-2020-11058	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

210132	8.8	HIGH Network	xwiki	xwiki	In XWiki Platform 7.2 through 11.10.2, registered users without scripting/programming permissions are able to execute python/groovy scripts while editing personal dashboards. This has been fixed 11.3…	CWE-94 Code Injection	CVE-2020-11057	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

210133	5.4	MEDIUM Network	glpi-project	glpi	In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6.	CWE-79 Cross-site Scripting	CVE-2020-11062	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

210134	8.8	HIGH Network	glpi-project	glpi	In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. Theoretically, this vulnerability can be exploited by an attacker without a valid account by using a…	CWE-352 Origin Validation Error	CVE-2020-11060	2024-11-21 13:56	2020-05-13	Show	GitHub Exploit DB Packet Storm

210135	8.6	HIGH Network	simpleledger	slp-validate	In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow…	CWE-697 Incorrect Comparison	CVE-2020-11072	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

210136	8.6	HIGH Network	simpleledger	slpjs	SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet c…	CWE-697 Incorrect Comparison	CVE-2020-11071	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

210137	8.8	HIGH Network	pi-hole	pi-hole	The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Al…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-11108	2024-11-21 13:56	2020-05-12	Show	GitHub Exploit DB Packet Storm

210138	5.4	MEDIUM Network	shopizer	shopizer	In Shopizer before version 2.11.0, a script can be injected in various forms and saved in the database, then executed when information is fetched from backend. This has been patched in version 2.11.0.	CWE-79 Cross-site Scripting	CVE-2020-11006	2024-11-21 13:56	2020-05-9	Show	GitHub Exploit DB Packet Storm

210139	8.0	HIGH Adjacent	tp-link	tl-wa855re_firmware	This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P1[20191213-rel60361] Wi-Fi extenders. Al…	CWE-287 Improper Authentication	CVE-2020-10916	2024-11-21 13:56	2020-05-8	Show	GitHub Exploit DB Packet Storm

210140	6.3	MEDIUM Network	barrelstrengthdesign	sprout_forms	In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This ha…	CWE-74 Injection	CVE-2020-11056	2024-11-21 13:56	2020-05-8	Show	GitHub Exploit DB Packet Storm