Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251441 5 警告 オラクル
CUPS		 - CUPS の cupsDoAuthentication 関数におけるサービス運用妨害 (無限ループ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2432 2011-04-21 17:49 2010-03-3 Show GitHub Exploit DB Packet Storm
251442 4.3 警告 The PHP Group - PHP の zip_stream.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-1471 2011-04-21 17:45 2011-03-17 Show GitHub Exploit DB Packet Storm
251443 4.3 警告 The PHP Group - PHP の Zip 拡張モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1470 2011-04-21 16:47 2011-03-17 Show GitHub Exploit DB Packet Storm
251444 4.3 警告 The PHP Group - PHP の Streams コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-1469 2011-04-21 16:46 2011-03-17 Show GitHub Exploit DB Packet Storm
251445 4.3 警告 The PHP Group - PHP の OpenSSL 拡張モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1468 2011-04-21 16:44 2011-03-17 Show GitHub Exploit DB Packet Storm
251446 5 警告 The PHP Group - PHP の NumberFormatter::setSymbol 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-1467 2011-04-21 16:43 2011-03-17 Show GitHub Exploit DB Packet Storm
251447 5 警告 The PHP Group - PHP の SdnToJulian 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1466 2011-04-21 16:42 2011-03-17 Show GitHub Exploit DB Packet Storm
251448 5 警告 The PHP Group - PHP の grapheme_extract 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-0420 2011-04-21 16:40 2011-01-6 Show GitHub Exploit DB Packet Storm
251449 4.3 警告 The PHP Group - PHP の Zip 拡張モジュール内にある _zip_name_locate 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0421 2011-04-21 12:25 2011-03-17 Show GitHub Exploit DB Packet Storm
251450 4.3 警告 The PHP Group - 64-bit プラットフォーム上で稼働している PHP の exif.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-0708 2011-04-21 12:24 2011-03-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200011 7.2 HIGH
Network 		paloaltonetworks pan-os An OS Command Injection vulnerability in PAN-OS management server allows authenticated administrators to execute arbitrary OS commands with root privileges when uploading a new certificate in FIPS-CC… CWE-78
OS Command  		CVE-2020-2028 2024-11-21 14:24 2020-06-11 Show GitHub Exploit DB Packet Storm
200012 7.2 HIGH
Network 		paloaltonetworks pan-os A buffer overflow vulnerability in the authd component of the PAN-OS management server allows authenticated administrators to disrupt system processes and potentially execute arbitrary code with root… CWE-787
 Out-of-bounds Write 		CVE-2020-2027 2024-11-21 14:24 2020-06-11 Show GitHub Exploit DB Packet Storm
200013 8.8 HIGH
Local 		katacontainers
fedoraproject 		runtime
fedora 		A malicious guest compromised before a container creation (e.g. a malicious guest image or a guest running multiple containers) can trick the kata runtime into mounting the untrusted container filesy… CWE-59
Link Following 		CVE-2020-2026 2024-11-21 14:24 2020-06-11 Show GitHub Exploit DB Packet Storm
200014 6.3 MEDIUM
Local 		katacontainers runtime Kata Containers doesn't restrict containers from accessing the guest's root filesystem device. Malicious containers can exploit this to gain code execution on the guest and masquerade as the kata-age… NVD-CWE-noinfo
CVE-2020-2023 2024-11-21 14:24 2020-06-11 Show GitHub Exploit DB Packet Storm
200015 8.8 HIGH
Network 		jenkins play_framework Jenkins Play Framework Plugin 1.0.2 and earlier lets users specify the path to the `play` command on the Jenkins master for a form validation endpoint, resulting in an OS command injection vulnerabil… CWE-78
OS Command  		CVE-2020-2200 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm
200016 6.1 MEDIUM
Network 		jenkins subversion_partial_release_manager Jenkins Subversion Partial Release Manager Plugin 1.0.1 and earlier does not escape the error message for the repository URL field form validation, resulting in a reflected cross-site scripting vulne… CWE-79
Cross-site Scripting 		CVE-2020-2199 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm
200017 6.5 MEDIUM
Network 		jenkins project_inheritance Jenkins Project Inheritance Plugin 19.08.02 and earlier does not redact encrypted secrets in the 'getConfigAsXML' API URL when transmitting job config.xml data to users without Job/Configure. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-2198 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm
200018 4.3 MEDIUM
Network 		jenkins project_inheritance Jenkins Project Inheritance Plugin 19.08.02 and earlier does not require users to have Job/ExtendedRead permission to access Inheritance Project job configurations in XML format. CWE-276
Incorrect Default Permissions  		CVE-2020-2197 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm
200019 8.0 HIGH
Network 		jenkins selenium Jenkins Selenium Plugin 3.141.59 and earlier has no CSRF protection for its HTTP endpoints, allowing attackers to perform all administrative actions provided by the plugin. CWE-352
 Origin Validation Error 		CVE-2020-2196 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm
200020 5.4 MEDIUM
Network 		jenkins compact_columns Jenkins Compact Columns Plugin 1.11 and earlier displays the unprocessed job description in tooltips, resulting in a stored cross-site scripting vulnerability that can be exploited by users with Job/… CWE-79
Cross-site Scripting 		CVE-2020-2195 2024-11-21 14:24 2020-06-3 Show GitHub Exploit DB Packet Storm