Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251391 2.1 注意 アップル - Apple Mac OS X の CarbonCore における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0178 2011-04-25 10:25 2011-03-23 Show GitHub Exploit DB Packet Storm
251392 6.8 警告 アップル - Apple Mac OS X の Apple Type Services サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0177 2011-04-25 10:24 2011-03-23 Show GitHub Exploit DB Packet Storm
251393 6.8 警告 アップル - Apple Mac OS X の Apple Type Services におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0176 2011-04-25 10:23 2011-03-23 Show GitHub Exploit DB Packet Storm
251394 6.8 警告 アップル - Apple Mac OS X の Apple Type Services におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0175 2011-04-25 10:23 2011-03-23 Show GitHub Exploit DB Packet Storm
251395 6.8 警告 アップル - Apple Mac OS X の Apple Type Services におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0174 2011-04-25 10:22 2011-03-23 Show GitHub Exploit DB Packet Storm
251396 6.8 警告 アップル - Apple Mac OS X における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-0173 2011-04-25 10:21 2011-03-23 Show GitHub Exploit DB Packet Storm
251397 4.9 警告 アップル - Apple Mac OS X におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-0172 2011-04-25 10:20 2011-03-23 Show GitHub Exploit DB Packet Storm
251398 7.5 危険 アップル
ClamAV		 - ClamAV の libclamav の pdf.c における任意のコードを実行される脆弱性性 CWE-noinfo
情報不足 		CVE-2010-4479 2011-04-25 10:19 2010-12-7 Show GitHub Exploit DB Packet Storm
251399 7.5 危険 アップル
ClamAV		 - ClamAV の libclamav の pe_icons.c 内にある icon_cb 関数における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4261 2011-04-25 10:17 2010-12-7 Show GitHub Exploit DB Packet Storm
251400 5 警告 アップル
ClamAV		 - ClamAV の libclamav の pdf.c における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4260 2011-04-21 18:57 2010-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199801 9.8 CRITICAL
Network 		nagios fusion Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code Execution as root via vectors related to corrupt component installation in cmd_subsys.php. CWE-77
Command Injection 		CVE-2020-28901 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
199802 9.8 CRITICAL
Network 		nagios fusion
nagios_xi 		Insufficient Verification of Data Authenticity in Nagios Fusion 4.1.8 and earlier and Nagios XI 5.7.5 and earlier allows for Escalation of Privileges or Code Execution as root via vectors related to … CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-28900 2024-11-21 14:23 2021-05-24 Show GitHub Exploit DB Packet Storm
199803 6.1 MEDIUM
Network 		projectworlds travel_management_system XSS in signup form in Project Worlds Online Examination System 1.0 allows remote attacker to inject arbitrary code via the name field CWE-79
Cross-site Scripting 		CVE-2020-29205 2024-11-21 14:23 2021-05-18 Show GitHub Exploit DB Packet Storm
199804 5.4 MEDIUM
Network 		deskpro deskpro Deskpro Cloud Platform and on-premise 2020.2.3.48207 from 2020-07-30 contains a cross-site scripting (XSS) vulnerability that can lead to an account takeover via custom email templates. CWE-79
Cross-site Scripting 		CVE-2020-28722 2024-11-21 14:23 2021-05-13 Show GitHub Exploit DB Packet Storm
199805 6.1 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.4 and earlier allows XSS via crafted content to reach an undocumented feature, such as ![](http://onerror=Function.constructor, in a Notes item. CWE-79
Cross-site Scripting 		CVE-2020-28945 2024-11-21 14:23 2021-05-4 Show GitHub Exploit DB Packet Storm
199806 7.5 HIGH
Network 		open-xchange ox_guard OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-28944 2024-11-21 14:23 2021-05-1 Show GitHub Exploit DB Packet Storm
199807 6.5 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.4 and earlier allows SSRF via a snippet. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-28943 2024-11-21 14:23 2021-05-1 Show GitHub Exploit DB Packet Storm
199808 7.5 HIGH
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware The ABUS Secvest wireless alarm system FUAA50000 (v3.01.17) fails to properly authenticate some requests to its built-in HTTPS interface. Someone can use this vulnerability to obtain sensitive inform… CWE-287
Improper Authentication 		CVE-2020-28973 2024-11-21 14:23 2021-04-22 Show GitHub Exploit DB Packet Storm
199809 5.3 MEDIUM
Network 		resourcexpress resourcexpress In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation. CWE-20
 Improper Input Validation  		CVE-2020-28898 2024-11-21 14:23 2021-04-16 Show GitHub Exploit DB Packet Storm
199810 9.8 CRITICAL
Network 		monitorr monitorr An authorization bypass vulnerability in Monitorr v1.7.6m in Monitorr/assets/config/_installation/_register.php allows an unauthorized person to create valid credentials. CWE-863
 Incorrect Authorization 		CVE-2020-28872 2024-11-21 14:23 2021-04-12 Show GitHub Exploit DB Packet Storm