Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252311 4.3 警告 SIMHL - STHS v2 Web Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1217 2012-02-22 15:24 2012-02-21 Show GitHub Exploit DB Packet Storm
252312 6 警告 PBBoard - PBBoard の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1216 2012-02-22 15:23 2012-02-21 Show GitHub Exploit DB Packet Storm
252313 7.5 危険 Dolibarr ERP & CRM - Dolibarr CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1226 2012-02-22 14:37 2012-02-21 Show GitHub Exploit DB Packet Storm
252314 7.5 危険 Dolibarr ERP & CRM - Dolibarr CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1225 2012-02-22 14:35 2012-02-21 Show GitHub Exploit DB Packet Storm
252315 4.3 警告 ContentLion - ContentLion Alpha の system/classes/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1224 2012-02-22 14:34 2012-02-21 Show GitHub Exploit DB Packet Storm
252316 5 警告 RabidHamster - RabidHamster R2/Extreme における PIN number を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1223 2012-02-22 14:32 2012-02-21 Show GitHub Exploit DB Packet Storm
252317 8.5 危険 RabidHamster - RabidHamster R2/Extreme におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1222 2012-02-22 14:31 2012-02-21 Show GitHub Exploit DB Packet Storm
252318 5 警告 RabidHamster - RabidHamster R2/Extreme の telnet サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1221 2012-02-22 14:30 2012-02-21 Show GitHub Exploit DB Packet Storm
252319 4.3 警告 Yoono - Firefox 用 Yoono エクステンションの Add friends モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1215 2012-02-22 11:38 2012-02-21 Show GitHub Exploit DB Packet Storm
252320 4.3 警告 Yoono - Yoono Desktop Application の Add friends モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1214 2012-02-22 11:37 2012-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202581 9.8 CRITICAL
Network 		moxa pt-7528-24tx-hv_firmware
pt-7528-24tx-hv-hv_firmware
pt-7528-24tx-wv_firmware
pt-7528-24tx-wv-hv_firmware
pt-7528-24tx-wv-wv_firmware
pt-7528-12msc-12tx-4gsfp-hv_firmware
pt-7528-12… 		In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, a buffer overflow in the web server allows remote attackers to cause a denial-of-service cond… CWE-787
 Out-of-bounds Write 		CVE-2020-6989 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
202582 7.5 HIGH
Network 		moxa pt-7528-24tx-hv_firmware
pt-7528-24tx-hv-hv_firmware
pt-7528-24tx-wv_firmware
pt-7528-24tx-wv-hv_firmware
pt-7528-24tx-wv-wv_firmware
pt-7528-12msc-12tx-4gsfp-hv_firmware
pt-7528-12… 		In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a weak cryptographic algorithm, which may allow confidential inform… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-6987 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
202583 7.5 HIGH
Network 		moxa pt-7528-24tx-hv_firmware
pt-7528-24tx-hv-hv_firmware
pt-7528-24tx-wv_firmware
pt-7528-24tx-wv-hv_firmware
pt-7528-24tx-wv-wv_firmware
pt-7528-12msc-12tx-4gsfp-hv_firmware
pt-7528-12… 		In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a hard-coded cryptographic key, which increases the possibility tha… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-6983 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
202584 7.5 HIGH
Network 		moxa iologik_2512_firmware
iologik_2512-t_firmware
iologik_2512-hspa_firmware
iologik_2512-hspa-t_firmware
iologik_2512-wl1-eu_firmware
iologik_2512-wl1-eu-t_firmware
iologik_2512-wl1-us… 		In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is transmitted over some web applications in clear text. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-7003 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
202585 9.1 CRITICAL
Network 		honeywell notifier_webserver In Notifier Web Server (NWS) Version 3.50 and earlier, the Honeywell Fire Web Server’s authentication may be bypassed by a capture-replay attack from a web browser. CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-6972 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
202586 9.8 CRITICAL
Network 		rockwellautomation factorytalk_services_platform In Rockwell Automation all versions of FactoryTalk Diagnostics software, a subsystem of the FactoryTalk Services Platform, FactoryTalk Diagnostics exposes a .NET Remoting endpoint via RNADiagnosticsS… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-6967 2024-11-21 14:36 2020-03-24 Show GitHub Exploit DB Packet Storm
202587 8.8 HIGH
Adjacent 		eaton ups_companion UPS companion software v1.05 & Prior is affected by ‘Eval Injection’ vulnerability. The software does not neutralize or incorrectly neutralizes code syntax before using the input in a dynamic evaluat… CWE-94
Code Injection 		CVE-2020-6650 2024-11-21 14:36 2020-03-23 Show GitHub Exploit DB Packet Storm
202588 8.4 HIGH
Network 		systech nds\/5008rm_firmware
nds-5000_firmware 		Systech Corporation NDS-5000 Terminal Server, NDS/5008 (8 Port, RJ45), firmware Version 02D.30. Successful exploitation of this vulnerability could allow information disclosure, limit system availabi… CWE-79
Cross-site Scripting 		CVE-2020-7006 2024-11-21 14:36 2020-03-20 Show GitHub Exploit DB Packet Storm
202589 4.8 MEDIUM
Network 		mcafee network_security_manager Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-7258 2024-11-21 14:36 2020-03-19 Show GitHub Exploit DB Packet Storm
202590 4.8 MEDIUM
Network 		mcafee network_security_manager Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-7256 2024-11-21 14:36 2020-03-19 Show GitHub Exploit DB Packet Storm