Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251541	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2813	2011-10-19 11:17	2011-10-12	Show	GitHub Exploit DB Packet Storm

251542	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2811	2011-10-19 11:15	2011-10-12	Show	GitHub Exploit DB Packet Storm

251543	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2338	2011-10-19 11:14	2011-10-12	Show	GitHub Exploit DB Packet Storm

251544	7.6	危険	アップル	-	Apple iTunes で使用される WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-3244	2011-10-19 11:14	2011-10-12	Show	GitHub Exploit DB Packet Storm

251545	9.3	危険	アップル	-	Apple iTunes で使用される CoreAudio におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3252	2011-10-19 11:13	2011-10-12	Show	GitHub Exploit DB Packet Storm

251546	9.3	危険	アドビシステムズ	-	Adobe Reader および Acrobat の image-parsing ライブラリにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2438	2011-10-18 16:28	2011-09-13	Show	GitHub Exploit DB Packet Storm

251547	9.3	危険	アドビシステムズ	-	Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2437	2011-10-18 16:28	2011-09-13	Show	GitHub Exploit DB Packet Storm

251548	9.3	危険	アドビシステムズ	-	Adobe Reader および Acrobat の image-parsing ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2436	2011-10-18 16:28	2011-09-13	Show	GitHub Exploit DB Packet Storm

251549	9.3	危険	アドビシステムズ	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2435	2011-10-18 16:27	2011-09-13	Show	GitHub Exploit DB Packet Storm

251550	9.3	危険	アドビシステムズ	-	Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2434	2011-10-18 16:27	2011-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209581	5.3	MEDIUM Network	powerdns	recursor	In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.	CWE-863 Incorrect Authorization	CVE-2020-14196	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

209582	9.8	CRITICAL Network	monstaftp	monsta_ftp	Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to gain remote code exec…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2020-14057	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

209583	9.8	CRITICAL Network	monstaftp	monsta_ftp	Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-14056	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

209584	6.1	MEDIUM Network	monstaftp	monsta_ftp	Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding.	CWE-79 Cross-site Scripting	CVE-2020-14055	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

209585	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability	CWE-79 Cross-site Scripting	CVE-2020-14169	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

209586	5.9	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails…	NVD-CWE-noinfo	CVE-2020-14168	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

209587	7.5	HIGH Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impac…	NVD-CWE-noinfo	CVE-2020-14167	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

209588	4.8	MEDIUM Network	atlassian	jira_service_desk	The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or …	CWE-79 Cross-site Scripting	CVE-2020-14166	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

209589	5.3	MEDIUM Network	atlassian	jira jira_software_data_center	The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper au…	NVD-CWE-noinfo	CVE-2020-14165	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

209590	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by…	CWE-79 Cross-site Scripting	CVE-2020-14164	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm