Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252331	5	警告	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2362	2012-01-27 16:25	2011-06-21	Show	GitHub Exploit DB Packet Storm

252332	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird の nsXULCommandDispatcher 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0085	2012-01-27 16:23	2011-06-21	Show	GitHub Exploit DB Packet Storm

252333	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハットオラクル	-	Mozilla Firefox および Thunderbird の nsSVGPathSegList::ReplaceItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0083	2012-01-27 16:22	2011-06-21	Show	GitHub Exploit DB Packet Storm

252334	4.3	警告	シマンテック	-	Symantec pcAnywhere 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3479	2012-01-27 16:20	2012-01-22	Show	GitHub Exploit DB Packet Storm

252335	10	危険	シマンテック	-	Symantec pcAnywhere 製品における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2011-3478	2012-01-27 16:18	2012-01-22	Show	GitHub Exploit DB Packet Storm

252336	4.3	警告	Digium	-	Asterisk Open Source の chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0885	2012-01-27 15:44	2012-01-15	Show	GitHub Exploit DB Packet Storm

252337	4.3	警告	Google	-	Android の Bluetooth サービスにおける連絡先データを取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4276	2012-01-27 15:43	2011-10-28	Show	GitHub Exploit DB Packet Storm

252338	5.8	警告	Tencent	-	Android 用 Tencent QQPhoto における連絡先情報およびパスワードハッシュを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4867	2012-01-27 15:18	2012-01-25	Show	GitHub Exploit DB Packet Storm

252339	6.4	警告	Kaixin001	-	Android 用 Kaixin001 における連絡先情報および平文パスワードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-4866	2012-01-27 15:18	2012-01-25	Show	GitHub Exploit DB Packet Storm

252340	5.8	警告	Tencent	-	Android 用 Tencent WBlog および MicroBlogPad におけるドラフトメッセージおよび検索キーワードを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4865	2012-01-27 15:12	2012-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208451	4.3	MEDIUM Network	marmind	marmind	An Authorization Bypass vulnerability in the Marmind web application with version 4.1.141.0 allows users with lower privileges to gain control to files uploaded by administrative users. The accessed …	CWE-670 CWE-863 Always-Incorrect Control Flow Implementation Incorrect Authorization	CVE-2020-26506	2024-11-21 14:19	2020-11-6	Show	GitHub Exploit DB Packet Storm

208452	8.0	HIGH Network	databaseschemareader_project	dbschemareader	DatabaseSchemaViewer before version 2.7.4.3 is vulnerable to arbitrary code execution if a user is tricked into opening a specially crafted `.dbschema` file. The patch was released in v2.7.4.3. As a …	-	CVE-2020-26207	2024-11-21 14:19	2020-11-5	Show	GitHub Exploit DB Packet Storm

208453	9.8	CRITICAL Network	thedaylightstudio	fuel_cms	In FUEL CMS 11.4.12 and before, the page preview feature allows an anonymous user to take complete ownership of any account including an administrator one.	NVD-CWE-noinfo	CVE-2020-26167	2024-11-21 14:19	2020-11-5	Show	GitHub Exploit DB Packet Storm

208454	8.7	HIGH Network	bookstackapp	bookstack	In BookStack before version 0.30.4, a user with permissions to edit a page could insert JavaScript code through the use of `javascript:` URIs within a link or form which would run, within the context…	-	CVE-2020-26211	2024-11-21 14:19	2020-11-4	Show	GitHub Exploit DB Packet Storm

208455	8.7	HIGH Network	bookstackapp	bookstack	In BookStack before version 0.30.4, a user with permissions to edit a page could add an attached link which would execute untrusted JavaScript code when clicked by a viewer of the page. Dangerous con…	-	CVE-2020-26210	2024-11-21 14:19	2020-11-4	Show	GitHub Exploit DB Packet Storm

208456	5.4	MEDIUM Network	sal_project	sal	Sal is a multi-tenanted reporting dashboard for Munki with the ability to display information from Facter. In Sal through version 4.1.6 there is an XSS vulnerability on the machine_list view.	-	CVE-2020-26205	2024-11-21 14:19	2020-10-30	Show	GitHub Exploit DB Packet Storm

208457	7.8	HIGH Local	dual_dhcp_dns_server_project	dual_dhcp_dns_server	An issue was discovered in Dual DHCP DNS Server 7.40. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the DualServer.exe…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26133	2024-11-21 14:19	2020-10-29	Show	GitHub Exploit DB Packet Storm

208458	7.8	HIGH Local	home_dns_server_project	home_dns_server	An issue was discovered in Home DNS Server 0.10. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the HomeDNSServer.exe b…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26132	2024-11-21 14:19	2020-10-29	Show	GitHub Exploit DB Packet Storm

208459	7.8	HIGH Local	open_dhcp_server_project	open_dhcp_server	Issues were discovered in Open DHCP Server (Regular) 1.75 and Open DHCP Server (LDAP Based) 0.1Beta. Due to insufficient access restrictions in the default installation directory, an attacker can ele…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26131	2024-11-21 14:19	2020-10-29	Show	GitHub Exploit DB Packet Storm

208460	7.8	HIGH Local	open_tftp_server_project	open_tftp_server	Issues were discovered in Open TFTP Server multithreaded 1.66 and Open TFTP Server single port 1.66. Due to insufficient access restrictions in the default installation directory, an attacker can ele…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-26130	2024-11-21 14:19	2020-10-29	Show	GitHub Exploit DB Packet Storm