Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252021	4.3	警告	MantisBT Group	-	MantisBT の config_defaults_inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3356	2011-09-27 11:12	2011-07-31	Show	GitHub Exploit DB Packet Storm

252022	10	危険	シスコシステムズ	-	Cisco Identity Services Engine における設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-3290	2011-09-27 11:07	2011-09-20	Show	GitHub Exploit DB Packet Storm

252023	4.3	警告	Roundcube.net	-	Roundcube Webmail の UI メッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2937	2011-09-27 11:05	2011-08-9	Show	GitHub Exploit DB Packet Storm

252024	6.8	警告	AmmSoft	-	AmmSoft ScriptFTP にバッファオーバーフローの脆弱性	-	CVE-2011-3976	2011-09-27 10:58	2011-09-21	Show	GitHub Exploit DB Packet Storm

252025	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3490	2011-09-26 15:59	2011-09-16	Show	GitHub Exploit DB Packet Storm

252026	4.6	警告	レッドハット	-	Red Hat Enterprise MRG の Cumin における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2925	2011-09-26 15:43	2011-09-7	Show	GitHub Exploit DB Packet Storm

252027	5	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の encryptPassword 関数における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-1509	2011-09-26 15:42	2011-09-20	Show	GitHub Exploit DB Packet Storm

252028	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の SolutionSearch.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1510	2011-09-26 15:41	2011-09-20	Show	GitHub Exploit DB Packet Storm

252029	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3496	2011-09-26 15:40	2011-09-7	Show	GitHub Exploit DB Packet Storm

252030	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe における任意の DLL を実行される脆弱性	CWE-200 情報漏えい	CVE-2011-3497	2011-09-26 15:40	2011-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209501	5.4	MEDIUM Network	bludit	bludit	Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php.	CWE-79 Cross-site Scripting	CVE-2020-15006	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209502	8.1	HIGH Network	f-secure	safe	An issue was discovered in F-Secure SAFE 17.7 on macOS. Due to incorrect client version verification, an attacker can connect to a privileged XPC service, and execute privileged commands on the syste…	NVD-CWE-noinfo	CVE-2020-14978	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209503	8.1	HIGH Network	f-secure	safe	An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC services use the PID to identify the connecting client, which allows an attacker to perform a PID reuse attack and connect to a privile…	NVD-CWE-noinfo	CVE-2020-14977	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209504	5.5	MEDIUM Local	gns3	ubridge	GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration …	CWE-269 Improper Privilege Management	CVE-2020-14976	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209505	7.8	HIGH Local	iobit	iobit_unlocker	The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to delete, move, or copy arbitrary files via IOCTL code 0x222124.	NVD-CWE-noinfo	CVE-2020-14975	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209506	7.1	HIGH Local	iobit	iobit_unlocker	The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes (even ones running as SYSTEM) that hold a handle, via IOCTL code 0x222124.	NVD-CWE-noinfo	CVE-2020-14974	2024-11-21 14:04	2020-06-24	Show	GitHub Exploit DB Packet Storm

209507	7.8	HIGH Local	pi-hole	pi-hole	Pi-hole through 5.0 allows code injection in piholedhcp (the Static DHCP Leases section) by modifying Teleporter backup files and then restoring them. This occurs in settings.php. To exploit this, an…	CWE-862 Missing Authorization	CVE-2020-14971	2024-11-21 14:04	2020-06-23	Show	GitHub Exploit DB Packet Storm

209508	4.8	MEDIUM Network	tp-link	tl-wr740n_firmware tl-wr740nd_firmware	On TP-Link TL-WR740N v4 and TL-WR740ND v4 devices, an attacker with access to the admin panel can inject HTML code and change the HTML context of the target pages and stations in the access-control s…	CWE-79 Cross-site Scripting	CVE-2020-14965	2024-11-21 14:04	2020-06-23	Show	GitHub Exploit DB Packet Storm

209509	9.8	CRITICAL Network	draytek	vigor300b_firmware vigor2960_firmware vigor3900_firmware	A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authu…	CWE-787 Out-of-bounds Write	CVE-2020-14993	2024-11-21 14:04	2020-06-23	Show	GitHub Exploit DB Packet Storm

209510	7.5	HIGH Network	herac	tuxguitar	An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files.	CWE-611 XXE	CVE-2020-14940	2024-11-21 14:04	2020-06-23	Show	GitHub Exploit DB Packet Storm