Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252161 4.3 警告 マイクロソフト - Microsoft Windows の MHTML プロトコルハンドラにおけるクロスサイトスクリプティングを誘導される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1894 2011-06-23 11:27 2011-06-14 Show GitHub Exploit DB Packet Storm
252162 5.5 警告 ターボリナックス
Timo Sirainen
レッドハット		 - Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3707 2011-06-23 11:15 2010-10-2 Show GitHub Exploit DB Packet Storm
252163 4 警告 ターボリナックス
Timo Sirainen
レッドハット		 - Dovecot におけるサービス運用妨害 (master process outage) の脆弱性 CWE-Other
その他 		CVE-2010-3780 2011-06-23 11:14 2010-10-2 Show GitHub Exploit DB Packet Storm
252164 4.3 警告 Google - Android の Android ブラウザにおける SD カード上の情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4804 2011-06-21 07:53 2011-06-9 Show GitHub Exploit DB Packet Storm
252165 4.3 警告 株式会社カワイビジネスソフトウエア - WeblyGo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1330 2011-06-20 12:01 2011-06-20 Show GitHub Exploit DB Packet Storm
252166 - - Autonomy - Autonomy KeyView IDOL に複数の脆弱性 - - 2011-06-20 11:19 2011-06-8 Show GitHub Exploit DB Packet Storm
252167 7.6 危険 シスコシステムズ - Linux および Mac OS 上で稼働する Cisco AnyConnect Secure Mobility Client における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2040 2011-06-20 11:12 2011-06-1 Show GitHub Exploit DB Packet Storm
252168 7.6 危険 シスコシステムズ - Windows 上で稼働する Cisco AnyConnect Secure Mobility Client における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2039 2011-06-20 11:10 2011-06-1 Show GitHub Exploit DB Packet Storm
252169 9.3 危険 シスコシステムズ - Cisco WebEx WRF Player の atrpui.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2880 2011-06-17 11:28 2009-12-16 Show GitHub Exploit DB Packet Storm
252170 9.3 危険 シスコシステムズ - Cisco WebEx WRF Player の atas32.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2879 2011-06-17 11:25 2009-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209581 7.5 HIGH
Network 		genivia
fedoraproject 		gsoap
fedora 		A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP… CWE-476
 NULL Pointer Dereference 		CVE-2020-13574 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
209582 6.1 MEDIUM
Network 		open-emr
phpgacl_project 		openemr
phpgacl 		An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3.7, OpenEMR 5.0.2 and OpenEMR development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6… CWE-601
Open Redirect 		CVE-2020-13565 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
209583 8.8 HIGH
Network 		foxitsoftware foxit_reader In Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the … CWE-416
 Use After Free 		CVE-2020-13548 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
209584 7.8 HIGH
Local 		softmaker office_textmaker_2021 In SoftMaker Software GmbH SoftMaker Office TextMaker 2021 (revision 1014), a specially crafted document can cause the document parser to miscalculate a length used to allocate a buffer, later upon u… CWE-787
CWE-131
 Out-of-bounds Write
Incorrect Calculation of Buffer Size 		CVE-2020-13546 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
209585 5.7 MEDIUM
Adjacent 		tufin securetrack Insecure Direct Object Reference (IDOR) exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-13462 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
209586 4.3 MEDIUM
Adjacent 		tufin securetrack Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access… NVD-CWE-noinfo
CVE-2020-13461 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
209587 8.8 HIGH
Network 		tufin securetrack Multiple Cross-Site Request Forgery (CSRF) vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA. CWE-352
 Origin Validation Error 		CVE-2020-13460 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
209588 5.9 MEDIUM
Adjacent 		tufin securetrack Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or … CWE-79
Cross-site Scripting 		CVE-2020-13409 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
209589 5.9 MEDIUM
Adjacent 		tufin securetrack Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or … CWE-79
Cross-site Scripting 		CVE-2020-13408 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
209590 5.9 MEDIUM
Adjacent 		tufin securetrack Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or … CWE-79
Cross-site Scripting 		CVE-2020-13407 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm