Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251541 2.6 注意 Google - Google Chrome のオートコンプリート機能における脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3256 2011-06-7 11:55 2010-09-2 Show GitHub Exploit DB Packet Storm
251542 9.3 危険 Google
レッドハット		 - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3255 2011-06-7 11:53 2010-09-2 Show GitHub Exploit DB Packet Storm
251543 7.8 危険 日本ラドウェア - AppWall Web Application Firewall および Gateway におけるソースコードを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2301 2011-06-7 10:18 2009-07-2 Show GitHub Exploit DB Packet Storm
251544 7.8 危険 F5 Networks - 複数の F5 Networks BIG-IP 製品の bd daemon におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4420 2011-06-7 10:16 2009-12-24 Show GitHub Exploit DB Packet Storm
251545 4.3 警告 ModSecurity - ModSecurity の PDF XSS 保護機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2009-1903 2011-06-7 10:13 2009-03-12 Show GitHub Exploit DB Packet Storm
251546 7.8 危険 ModSecurity - ModSecurity の multipart processor におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-1902 2011-06-7 10:11 2009-03-12 Show GitHub Exploit DB Packet Storm
251547 5 警告 ModSecurity - ModSecurity モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5676 2011-06-7 10:08 2010-08-1 Show GitHub Exploit DB Packet Storm
251548 7.5 危険 Ecava - Ecava IntegraXor HMI における認証を回避される脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1562 2011-06-6 14:47 2011-04-5 Show GitHub Exploit DB Packet Storm
251549 6.8 警告 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4731 2011-06-6 14:46 2011-02-15 Show GitHub Exploit DB Packet Storm
251550 9 危険 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4732 2011-06-6 14:44 2011-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209921 9.8 CRITICAL
Network 		rukovoditel rukovoditel In Rukovoditel V2.5.2, attackers can upload an arbitrary file to the server just changing the the content-type value. As a result of that, an attacker can execute a command on the server. This specif… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11817 2024-11-21 13:58 2020-04-28 Show GitHub Exploit DB Packet Storm
209922 3.7 LOW
Network 		openvpn
debian
fedoraproject 		openvpn
debian_linux
fedora 		An issue was discovered in OpenVPN 2.4.x before 2.4.9. An attacker can inject a data channel v2 (P_DATA_V2) packet using a victim's peer-id. Normally such packets are dropped, but if this packet arri… CWE-362
Race Condition 		CVE-2020-11810 2024-11-21 13:58 2020-04-28 Show GitHub Exploit DB Packet Storm
209923 9.8 CRITICAL
Network 		squid-cache
debian
opensuse
fedoraproject
canonical 		squid
debian_linux
leap
fedora
ubuntu_linux 		An issue was discovered in Squid before 5.0.2. A remote attacker can replay a sniffed Digest Authentication nonce to gain access to resources that are otherwise forbidden. This occurs because the att… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-11945 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209924 7.5 HIGH
Network 		ntop ndpi In nDPI through 3.2 Stable, an out-of-bounds read in concat_hash_string in ssh.c can be exploited by a network-positioned attacker that can send malformed SSH protocol messages on a network segment m… CWE-125
Out-of-bounds Read 		CVE-2020-11940 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209925 9.8 CRITICAL
Network 		ntop ndpi In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows that result in a controlled remote heap overflow in concat_hash_string in ssh.c. Due to the granular natu… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-11939 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209926 5.9 MEDIUM
Network 		mailstore mailstore_server In MailStore Outlook Add-in (and Email Archive Outlook Add-in) through 12.1.2, the login process does not validate the validity of the certificate presented by the server. CWE-295
Improper Certificate Validation  		CVE-2020-11806 2024-11-21 13:58 2020-04-24 Show GitHub Exploit DB Packet Storm
209927 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab CE and EE 8.15 through 12.9.2. Members of a group could still have access after the group is deleted. CWE-306
Missing Authentication for Critical Function 		CVE-2020-11649 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209928 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling. CWE-444
HTTP Request Smuggling 		CVE-2020-11506 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209929 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and … CWE-444
HTTP Request Smuggling 		CVE-2020-11505 2024-11-21 13:58 2020-04-23 Show GitHub Exploit DB Packet Storm
209930 4.9 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity 2018.2 through 2019.2.1, a project administrator was able to see scrambled password parameters used in a project. The issue was resolved in 2019.2.2. NVD-CWE-noinfo
CVE-2020-11938 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm