Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252101	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2099	2011-06-29 12:05	2011-06-14	Show	GitHub Exploit DB Packet Storm

252102	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2098	2011-06-29 12:04	2011-06-14	Show	GitHub Exploit DB Packet Storm

252103	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2097	2011-06-29 12:02	2011-06-14	Show	GitHub Exploit DB Packet Storm

252104	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2096	2011-06-29 12:00	2011-06-14	Show	GitHub Exploit DB Packet Storm

252105	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2095	2011-06-29 11:55	2011-06-14	Show	GitHub Exploit DB Packet Storm

252106	4	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-3835	2011-06-29 10:25	2010-09-10	Show	GitHub Exploit DB Packet Storm

252107	4	警告	アップルターボリナックス MySQL AB	-	MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3834	2011-06-29 10:24	2010-09-10	Show	GitHub Exploit DB Packet Storm

252108	5	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3833	2011-06-29 10:17	2010-09-10	Show	GitHub Exploit DB Packet Storm

252109	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3790	2011-06-29 10:15	2010-11-16	Show	GitHub Exploit DB Packet Storm

252110	4	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3682	2011-06-29 10:14	2010-07-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209521	8.8	HIGH Network	dolibarr	dolibarr	Dolibarr before 11.0.5 allows low-privilege users to upload files of dangerous types, leading to arbitrary code execution. This occurs because .pht and .phar files can be uploaded. Also, a .htaccess …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-14209	2024-11-21 14:02	2020-09-3	Show	GitHub Exploit DB Packet Storm

209522	5.9	MEDIUM Network	apache netapp	cassandra oncommand_insight	In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to m…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-13946	2024-11-21 14:02	2020-09-2	Show	GitHub Exploit DB Packet Storm

209523	7.5	HIGH Network	atlassian	jira jira_software_data_center jira_server jira_data_center	Affected versions of Atlassian Jira Server and Data Center allow remote attackers to enumerate project keys via an Information Disclosure vulnerability in the /browse.PROJECTKEY endpoint. The affecte…	NVD-CWE-noinfo	CVE-2020-14178	2024-11-21 14:02	2020-09-1	Show	GitHub Exploit DB Packet Storm

209524	8.1	HIGH Network	mitel	micollab	The SAS portal of Mitel MiCollab before 9.1.3 could allow an attacker to access user data by performing a header injection in HTTP responses, due to the improper handling of input parameters. A succe…	CWE-74 Injection	CVE-2020-13863	2024-11-21 14:02	2020-08-27	Show	GitHub Exploit DB Packet Storm

209525	6.1	MEDIUM Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Cross Site Scripting (XSS) vulnerability was found in Codiad v1.7.8 and later. The vulnerability occurs because of improper sanitization of the folder's na…	CWE-79 Cross-site Scripting	CVE-2020-14042	2024-11-21 14:02	2020-08-26	Show	GitHub Exploit DB Packet Storm

209526	7.2	HIGH Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Server-Side Request Forgery (SSRF) vulnerability was found in Codiad v1.7.8 and later. A user with admin privileges could use the plugin install feature to…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-14044	2024-11-21 14:02	2020-08-25	Show	GitHub Exploit DB Packet Storm

209527	8.8	HIGH Network	codiad	codiad	PRODUCT NOT SUPPORTED WHEN ASSIGNED A Cross Side Request Forgery (CSRF) vulnerability was found in Codiad v1.7.8 and later. The request to download a plugin from the marketplace is only availab…	CWE-352 Origin Validation Error	CVE-2020-14043	2024-11-21 14:02	2020-08-25	Show	GitHub Exploit DB Packet Storm

209528	6.5	MEDIUM Network	dolibarr	dolibarr	Dolibarr CRM before 11.0.5 allows privilege escalation. This could allow remote authenticated attackers to upload arbitrary files via societe/document.php in which "disabled" is changed to "enabled" …	NVD-CWE-noinfo	CVE-2020-14201	2024-11-21 14:02	2020-08-22	Show	GitHub Exploit DB Packet Storm

209529	7.5	HIGH Network	zulip	zulip_server	Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.	CWE-269 Improper Privilege Management	CVE-2020-14215	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm

209530	5.4	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.5 allows reverse tabnapping via a topic header link.	CWE-269 Improper Privilege Management	CVE-2020-14194	2024-11-21 14:02	2020-08-21	Show	GitHub Exploit DB Packet Storm