Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252441 4.6 警告 IBM - IBM WebSphere Application Server の iscdeploy におけるファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1376 2012-01-20 16:48 2012-01-18 Show GitHub Exploit DB Packet Storm
252442 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2317 2012-01-20 16:45 2012-01-17 Show GitHub Exploit DB Packet Storm
252443 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3524 2012-01-20 16:44 2012-01-17 Show GitHub Exploit DB Packet Storm
252444 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3514 2012-01-20 16:43 2012-01-17 Show GitHub Exploit DB Packet Storm
252445 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3509 2012-01-20 16:40 2012-01-17 Show GitHub Exploit DB Packet Storm
252446 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2326 2012-01-20 16:39 2012-01-17 Show GitHub Exploit DB Packet Storm
252447 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2325 2012-01-20 16:28 2012-01-17 Show GitHub Exploit DB Packet Storm
252448 4 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2321 2012-01-20 16:27 2012-01-17 Show GitHub Exploit DB Packet Storm
252449 5 警告 オラクル - Oracle JD Edwards Products の JD Edwards EnterpriseOne Tools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2324 2012-01-20 16:26 2012-01-17 Show GitHub Exploit DB Packet Storm
252450 3.5 注意 オラクル - Oracle E-Business Suite における Attachments / File Upload の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2271 2012-01-20 15:44 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208651 7.5 HIGH
Network 		dotplant dotplant2 An issue was discovered in DotPlant2 before 2020-09-14. In class Pay2PayPayment in payment/Pay2PayPayment.php, there is an XXE vulnerability in the checkResult function. The user input ($_POST['xml']… CWE-611
XXE 		CVE-2020-25750 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208652 8.1 HIGH
Network 		safervpn safervpn SaferVPN before 5.0.3.3 on Windows could allow low-privileged users to create or overwrite arbitrary files, which could cause a denial of service (DoS) condition, because a symlink from %LOCALAPPDATA… CWE-59
Link Following 		CVE-2020-25744 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208653 6.1 MEDIUM
Network 		webtareas_project webtareas webTareas through 2.1 allows XSS in clients/editclient.php, extensions/addextension.php, administration/add_announcement.php, administration/departments.php, administration/locations.php, expenses/cl… CWE-79
Cross-site Scripting 		CVE-2020-25735 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208654 5.3 MEDIUM
Network 		webtareas_project webtareas webTareas through 2.1 allows files/Default/ Directory Listing. CWE-22
Path Traversal 		CVE-2020-25734 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208655 7.5 HIGH
Network 		webtareas_project webtareas webTareas through 2.1 allows upload of the dangerous .exe and .shtml file types. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-25733 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208656 6.1 MEDIUM
Network 		zoneminder zoneminder ZoneMinder before 1.34.21 has XSS via the connkey parameter to download.php or export.php. CWE-79
Cross-site Scripting 		CVE-2020-25729 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208657 9.8 CRITICAL
Network 		sqreen python_mini_racer A heap overflow in Sqreen PyMiniRacer (aka Python Mini Racer) before 0.3.0 allows remote attackers to potentially exploit heap corruption. CWE-787
 Out-of-bounds Write 		CVE-2020-25489 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208658 8.8 HIGH
Network 		alfresco reset_password The Reset Password add-on before 1.2.0 for Alfresco has a broken algorithm (involving an increment) that allows a malicious user to change any user's account password include the admin account. CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2020-25728 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208659 7.5 HIGH
Network 		flexsolution reset_password The Reset Password add-on before 1.2.0 for Alfresco suffers from CMIS-SQL Injection, which allows a malicious user to inject a query within the email input field. CWE-89
SQL Injection 		CVE-2020-25727 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm
208660 7.3 HIGH
Network 		sqreen php_microagent Lack of cryptographic signature verification in the Sqreen PHP agent daemon before 1.16.0 makes it easier for remote attackers to inject rules for execution inside the virtual machine. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-25490 2024-11-21 14:18 2020-09-18 Show GitHub Exploit DB Packet Storm