Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252521 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0136 2012-02-20 18:04 2012-02-14 Show GitHub Exploit DB Packet Storm
252522 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0137 2012-02-20 18:03 2012-02-14 Show GitHub Exploit DB Packet Storm
252523 9.3 危険 マイクロソフト - Microsoft Visio Viewer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0138 2012-02-20 18:01 2012-02-14 Show GitHub Exploit DB Packet Storm
252524 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0014 2012-02-20 17:29 2012-02-14 Show GitHub Exploit DB Packet Storm
252525 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0015 2012-02-20 17:27 2012-02-14 Show GitHub Exploit DB Packet Storm
252526 4.3 警告 シスコシステムズ - Cisco IronPort Encryption Appliance の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0340 2012-02-20 16:38 2012-02-13 Show GitHub Exploit DB Packet Storm
252527 7.8 危険 シスコシステムズ - 複数の Cisco Nexus スイッチの Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0352 2012-02-20 16:27 2012-02-15 Show GitHub Exploit DB Packet Storm
252528 10 危険 アドビシステムズ - Adobe Flash Player の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0751 2012-02-20 16:21 2012-02-15 Show GitHub Exploit DB Packet Storm
252529 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-DesignError
CVE-2011-3025 2012-02-20 14:43 2012-02-15 Show GitHub Exploit DB Packet Storm
252530 5 警告 Google - Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3024 2012-02-20 14:42 2012-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208421 5.5 MEDIUM
Local 		upx_project upx A Segmentaation fault was found in UPX in invert_pt_dynamic() function in p_lx_elf.cpp. An attacker with a crafted input file allows invalid memory address access that could lead to a denial of servi… NVD-CWE-noinfo
CVE-2020-27787 2024-11-21 14:21 2022-08-19 Show GitHub Exploit DB Packet Storm
208422 5.4 MEDIUM
Network 		galaxkey galaxkey Persistent XSS in Galaxkey Secure Mail Client in Galaxkey up to 5.6.11.5 allows an attacker to perform an account takeover by intercepting the HTTP Post request when sending an email and injecting a … CWE-79
Cross-site Scripting 		CVE-2020-27509 2024-11-21 14:21 2022-06-26 Show GitHub Exploit DB Packet Storm
208423 8.8 HIGH
Adjacent 		drtrustusa icheck_connect_bp_monitor_bp_testing_118_firmware Dr Trust USA iCheck Connect BP Monitor BP Testing 118 version 1.2.1 is vulnerable to Missing Authentication. CWE-306
Missing Authentication for Critical Function 		CVE-2020-27376 2024-11-21 14:21 2022-04-7 Show GitHub Exploit DB Packet Storm
208424 6.5 MEDIUM
Adjacent 		drtrustusa icheck_connect_bp_monitor_bp_testing_118_firmware Dr Trust USA iCheck Connect BP Monitor BP Testing 118 version 1.2.1 is vulnerable to Transmitting Write Requests and Chars. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-27375 2024-11-21 14:21 2022-04-7 Show GitHub Exploit DB Packet Storm
208425 7.5 HIGH
Adjacent 		drtrustusa icheck_connect_bp_monitor_bp_testing_118_firmware Dr Trust USA iCheck Connect BP Monitor BP Testing 118 1.2.1 is vulnerable to a Replay Attack to BP Monitoring. CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-27374 2024-11-21 14:21 2022-04-7 Show GitHub Exploit DB Packet Storm
208426 8.8 HIGH
Adjacent 		drtrustusa icheck_connect_bp_monitor_bp_testing_118_firmware Dr Trust USA iCheck Connect BP Monitor BP Testing 118 1.2.1 is vulnerable to Plain text command over BLE. CWE-78
OS Command  		CVE-2020-27373 2024-11-21 14:21 2022-04-7 Show GitHub Exploit DB Packet Storm
208427 7.5 HIGH
Network 		processwire processwire A Directory Traversal vulnerability exits in Processwire CMS before 2.7.1 via the download parameter to index.php. CWE-22
Path Traversal 		CVE-2020-27467 2024-11-21 14:21 2022-02-25 Show GitHub Exploit DB Packet Storm
208428 6.1 MEDIUM
Network 		mit scratch-svg-renderer A DOM-based cross-site scripting (XSS) vulnerability in Scratch-Svg-Renderer v0.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted sb3 file. CWE-79
Cross-site Scripting 		CVE-2020-27428 2024-11-21 14:21 2022-01-6 Show GitHub Exploit DB Packet Storm
208429 9.8 CRITICAL
Network 		mahadiscom mahavitaran Mahavitaran android application 7.50 and prior are affected by account takeover due to improper OTP validation, allows remote attackers to control a users account. CWE-613
 Insufficient Session Expiration 		CVE-2020-27416 2024-11-21 14:21 2021-12-9 Show GitHub Exploit DB Packet Storm
208430 5.4 MEDIUM
Network 		debug_meta_data_project debug_meta_data The debug-meta-data plugin 1.1.2 for WordPress allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-27356 2024-11-21 14:21 2021-12-8 Show GitHub Exploit DB Packet Storm