Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251571 1.9 注意 Tembria - Tembria Server Monitor における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-3685 2011-10-3 14:54 2011-09-27 Show GitHub Exploit DB Packet Storm
251572 4.3 警告 Tembria - Tembria Server Monitor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3684 2011-10-3 14:52 2011-09-27 Show GitHub Exploit DB Packet Storm
251573 7.5 危険 Newgen Software Technologies Limited - Newgen OmniDocs におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3645 2011-10-3 14:48 2011-09-27 Show GitHub Exploit DB Packet Storm
251574 7.5 危険 AliBabaClone.com - Alibaba Clone B2B の countrydetails.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4849 2011-09-30 14:24 2011-09-27 Show GitHub Exploit DB Packet Storm
251575 4.3 警告 Diferior - Diferior におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4850 2011-09-30 14:22 2011-09-27 Show GitHub Exploit DB Packet Storm
251576 7.5 危険 Eclime - Eclime における複数の SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4851 2011-09-30 14:19 2011-09-27 Show GitHub Exploit DB Packet Storm
251577 4.3 警告 Eclime - Eclime の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4852 2011-09-30 14:15 2011-09-27 Show GitHub Exploit DB Packet Storm
251578 7.5 危険 Zoho Corporation - ManageEngine EventLog Analyzer の Syslog サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4840 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
251579 4.3 警告 Zoho Corporation - ManageEngine EventLog Analyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4841 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
251580 4.3 警告 AXScripts - AXScripts AxsLinks の addlink.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4848 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209591 6.5 MEDIUM
Network 		squid-cache squid An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop AB… CWE-662
 Improper Synchronization 		CVE-2020-14059 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
209592 7.5 HIGH
Network 		squid-cache
fedoraproject
netapp 		squid
fedora
cloud_manager 		An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due to use of a potentially dangerous function, Squid and the default certificate validation helper are vulnerable to a Denial of Se… NVD-CWE-noinfo
CVE-2020-14058 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
209593 5.9 MEDIUM
Network 		putty
netapp
fedoraproject 		putty
oncommand_unified_manager_core_package
fedora 		PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-14002 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209594 5.3 MEDIUM
Network 		maipu mp1800x-50_firmware The web interface of Maipu MP1800X-50 7.5.3.14(R) devices allows remote attackers to obtain sensitive information via the form/formDeviceVerGet URI, such as system id, hardware model, hardware versio… NVD-CWE-noinfo
CVE-2020-13896 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209595 5.9 MEDIUM
Network 		openbsd
netapp 		openssh
aff_a700s_firmware
steelstore_cloud_integrated_storage
ontap_select_deploy_administration_utility
active_iq_unified_manager
solidfire
hci_management_node
hci_storage_node… 		The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connect… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-14145 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209596 9.8 CRITICAL
Network 		mk-auth mk-auth An issue was discovered in MK-AUTH 19.01. It allows command execution as root via shell metacharacters to /auth admin scripts. CWE-78
OS Command  		CVE-2020-14072 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209597 6.1 MEDIUM
Network 		mk-auth mk-auth An issue was discovered in MK-AUTH 19.01. XSS vulnerabilities in admin and client scripts allow an attacker to execute arbitrary JavaScript code. CWE-79
Cross-site Scripting 		CVE-2020-14071 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209598 9.8 CRITICAL
Network 		mk-auth mk-auth An issue was discovered in MK-AUTH 19.01. There is authentication bypass in the web login functionality because guessable credentials to admin/executar_login.php result in admin access. CWE-287
Improper Authentication 		CVE-2020-14070 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209599 6.8 MEDIUM
Physics 		mk-auth mk-auth An issue was discovered in MK-AUTH 19.01. There are SQL injection issues in mkt/ PHP scripts, as demonstrated by arp.php, dhcp.php, hotspot.php, ip.php, pgaviso.php, pgcorte.php, pppoe.php, queues.ph… CWE-89
SQL Injection 		CVE-2020-14069 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm
209600 9.8 CRITICAL
Network 		mk-auth mk-auth An issue was discovered in MK-AUTH 19.01. The web login functionality allows an attacker to bypass authentication and gain client privileges via SQL injection in central/executar_login.php. CWE-89
SQL Injection 		CVE-2020-14068 2024-11-21 14:02 2020-06-30 Show GitHub Exploit DB Packet Storm