Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252381	4.3	警告	VideoLAN	-	VLC media player におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0904	2012-01-25 10:54	2012-01-20	Show	GitHub Exploit DB Packet Storm

252382	4.3	警告	VMware	-	VMware Zimbra Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0903	2012-01-25 10:51	2012-01-20	Show	GitHub Exploit DB Packet Storm

252383	5	警告	AirTies	-	AirTies Air 4450 におけるサービス運用妨害 (リブート) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0902	2012-01-25 10:43	2012-01-20	Show	GitHub Exploit DB Packet Storm

252384	4.3	警告	attenzione	-	WordPress 用 YouSayToo auto-publishing プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0901	2012-01-25 10:39	2012-01-20	Show	GitHub Exploit DB Packet Storm

252385	4.3	警告	Beehive Forum	-	Beehive Forum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0900	2012-01-25 10:35	2012-01-20	Show	GitHub Exploit DB Packet Storm

252386	4.3	警告	Annuaire PHP	-	Annuaire PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0899	2012-01-25 10:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

252387	5	警告	camaleo	-	WordPress 用 myEASYbackup プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0898	2012-01-25 10:30	2012-01-20	Show	GitHub Exploit DB Packet Storm

252388	5	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0896	2012-01-25 10:23	2012-01-20	Show	GitHub Exploit DB Packet Storm

252389	4.3	警告	Tom Braider	-	WordPress 用 Count Per Day モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0895	2012-01-25 10:21	2012-01-20	Show	GitHub Exploit DB Packet Storm

252390	9.3	危険	IBM	-	IBM Lotus Symphony の vclmi.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0192	2012-01-24 16:45	2012-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208381	6.8	MEDIUM Physics	solokeys nitrokey	solo_firmware somu_firmware fido2_firmware	The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade …	CWE-326 Inadequate Encryption Strength	CVE-2020-27208	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

208382	7.5	HIGH Network	micro-ecc_project	micro-ecc	The ECDSA operation of the micro-ecc library 1.0 is vulnerable to simple power analysis attacks which allows an adversary to extract the private ECC key.	NVD-CWE-noinfo	CVE-2020-27209	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

208383	7.5	HIGH Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices. Successfully exploiting the vulnerability could enable attackers to read authentication data, …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-27185	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208384	5.9	MEDIUM Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-th…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-27184	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208385	7.5	HIGH Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-…	NVD-CWE-noinfo	CVE-2020-27150	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208386	6.5	MEDIUM Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration chan…	NVD-CWE-noinfo	CVE-2020-27149	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208387	7.5	HIGH Network	kaspersky	password_manager	Password generator feature in Kaspersky Password Manager was not completely cryptographically strong and potentially allowed an attacker to predict generated passwords in some cases. An attacker woul…	CWE-326 Inadequate Encryption Strength	CVE-2020-27020	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208388	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoComment parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authen…	CWE-89 SQL Injection	CVE-2020-27246	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

208389	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenti…	CWE-89 SQL Injection	CVE-2020-27245	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

208390	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoCode parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authentic…	CWE-89 SQL Injection	CVE-2020-27244	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm