Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251561	7.8	危険	アップルサイバートラスト株式会社 PNG Development Group Lunascape オラクル VMware フェンリル株式会社レッドハット	-	libpng における圧縮された補助チャンクの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-0205	2012-03-27 10:22	2010-03-4	Show	GitHub Exploit DB Packet Storm

251562	7.5	危険	クアンタムデル IBM	-	複数のテープライブラリ製品におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-1844	2012-03-26 18:12	2012-03-22	Show	GitHub Exploit DB Packet Storm

251563	5	警告	クアンタムデル	-	Quantum Scalar i500 および Dell ML6000 における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1841	2012-03-26 18:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

251564	5	警告	LG-Nortel	-	LG-Nortel ELO GS24M に複数の脆弱性	CWE-287 不適切な認証	CVE-2012-1838	2012-03-26 16:29	2012-03-22	Show	GitHub Exploit DB Packet Storm

251565	7.5	危険	Webglimpse	-	WebGlimpse に OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2012-1795	2012-03-26 16:24	2012-03-20	Show	GitHub Exploit DB Packet Storm

251566	7.5	危険	Pydio	-	AjaXplorer におけるログインのアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2012-1840	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

251567	7.5	危険	Pydio	-	AjaXplorer の Get Template 機能におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1839	2012-03-26 16:08	2012-03-22	Show	GitHub Exploit DB Packet Storm

251568	5	警告	IBM	-	IBM Tivoli Endpoint Manager における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-1837	2012-03-26 16:07	2012-03-22	Show	GitHub Exploit DB Packet Storm

251569	4.3	警告	IBM	-	IBM Tivoli Endpoint Manager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0719	2012-03-26 16:04	2012-03-22	Show	GitHub Exploit DB Packet Storm

251570	4.3	警告	ESET K7 Computing AVG Technologies トレンドマイクロ Ikarus Norman ソフォスマカフィー Beijing Rising International Software BitDefender VirusBlokAda フォーティネットカスペルスキー Emsisoft Authentium シマンテックエフ・セキュア Jiangmin	-	複数の製品の Gzip ファイルパーサにおけるマルウェア検知を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1461	2012-03-26 14:35	2012-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224381	8.8	HIGH Network	testlink	testlink	Multiple SQL injection vulnerabilities in TestLink through 1.9.19 allows remote authenticated users to execute arbitrary SQL commands via the (1) tproject_id parameter to keywordsView.php; the (2) re…	CWE-89 SQL Injection	CVE-2019-20107	2024-11-21 13:38	2020-03-5	Show	GitHub Exploit DB Packet Storm

224382	9.8	CRITICAL Network	netgear	wnr1000_firmware	An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. The web management interface (setup.cgi) has an authentication bypass and other problems that ultimately allow an attacker to remotely c…	CWE-287 Improper Authentication	CVE-2019-20489	2024-11-21 13:38	2020-03-3	Show	GitHub Exploit DB Packet Storm

224383	9.8	CRITICAL Network	netgear	wnr1000_firmware	An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple actions within the web management interface (setup.cgi) are vulnerable to command injection, allowing remote attackers to execu…	CWE-78 OS Command	CVE-2019-20488	2024-11-21 13:38	2020-03-3	Show	GitHub Exploit DB Packet Storm

224384	8.8	HIGH Network	netgear	wnr1000_firmware	An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple actions within the WNR1000V4 web management console are vulnerable to an unauthenticated GET request (exploitable directly or t…	CWE-352 Origin Validation Error	CVE-2019-20487	2024-11-21 13:38	2020-03-3	Show	GitHub Exploit DB Packet Storm

224385	6.1	MEDIUM Network	netgear	wnr1000_firmware	An issue was discovered on NETGEAR WNR1000V4 1.1.0.54 devices. Multiple pages (setup.cgi and adv_index.htm) within the web management console are vulnerable to stored XSS, as demonstrated by the conf…	CWE-79 Cross-site Scripting	CVE-2019-20486	2024-11-21 13:38	2020-03-3	Show	GitHub Exploit DB Packet Storm

224386	9.8	CRITICAL Network	miele	xgw_3000_zigbee_gateway_firmware	In MIELE XGW 3000 ZigBee Gateway before 2.4.0, the Password Change Function does not require knowledge of the old password. This can be exploited in conjunction with CVE-2019-20480.	CWE-287 Improper Authentication	CVE-2019-20481	2024-11-21 13:38	2020-02-25	Show	GitHub Exploit DB Packet Storm

224387	8.8	HIGH Network	miele	xgw_3000_zigbee_gateway_firmware	In MIELE XGW 3000 ZigBee Gateway before 2.4.0, a malicious website visited by an authenticated admin user or a malicious mail is allowed to make arbitrary changes in the "admin panel" because there i…	CWE-352 Origin Validation Error	CVE-2019-20480	2024-11-21 13:38	2020-02-25	Show	GitHub Exploit DB Packet Storm

224388	6.1	MEDIUM Network	openidc debian fedoraproject opensuse	mod_auth_openidc debian_linux fedora leap	A flaw was found in mod_auth_openidc before version 2.4.1. An open redirect issue exists in URLs with a slash and backslash at the beginning.	CWE-601 Open Redirect	CVE-2019-20479	2024-11-21 13:38	2020-02-20	Show	GitHub Exploit DB Packet Storm

224389	9.8	CRITICAL Network	ruamel.yaml_project	ruamel.yaml	In ruamel.yaml through 0.16.7, the load method allows remote code execution if the application calls this method with an untrusted argument. In other words, this issue affects developers who are unaw…	NVD-CWE-noinfo	CVE-2019-20478	2024-11-21 13:38	2020-02-19	Show	GitHub Exploit DB Packet Storm

224390	9.8	CRITICAL Network	pyyaml fedoraproject	pyyaml fedora	PyYAML 5.1 through 5.1.2 has insufficient restrictions on the load and load_all functions because of a class deserialization issue, e.g., Popen is a class in the subprocess module. NOTE: this issue e…	CWE-502 Deserialization of Untrusted Data	CVE-2019-20477	2024-11-21 13:38	2020-02-19	Show	GitHub Exploit DB Packet Storm