Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252561 4.3 警告 Juergen Furrer - TYPO3 用 Additional TCA Forms エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5080 2012-02-17 14:27 2012-02-14 Show GitHub Exploit DB Packet Storm
252562 5 警告 NetSarang - NetSarang の Xlpd および Xmanager Enterprise におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-1009 2012-02-17 11:54 2012-02-14 Show GitHub Exploit DB Packet Storm
252563 4.3 警告 Instant Php - lknSupport の module/kb/search_word におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1069 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
252564 4.3 警告 mg12 - WordPress 用 WP-RecentComments プラグインの rc_ajax 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1068 2012-02-17 11:17 2012-02-14 Show GitHub Exploit DB Packet Storm
252565 7.5 危険 mg12 - WordPress 用 WP-RecentComments プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1067 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
252566 4.3 警告 SmartyCMS - SmartyCMS の template モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1066 2012-02-17 11:16 2012-02-14 Show GitHub Exploit DB Packet Storm
252567 4.3 警告 2X Software - 2X ApplicationServer の TuxScripting.dll における任意のファイルを作成される脆弱性 CWE-Other
その他 		CVE-2012-1065 2012-02-17 11:00 2012-02-14 Show GitHub Exploit DB Packet Storm
252568 9.3 危険 マイクロソフト
AB Team		 - Microsoft Windows XP で利用される Indeo コーデックにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3138 2012-02-16 16:14 2010-08-27 Show GitHub Exploit DB Packet Storm
252569 4.4 警告 マイクロソフト - Microsoft Windows Server 2008 の colorcpl.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-5082 2012-02-16 16:04 2012-01-17 Show GitHub Exploit DB Packet Storm
252570 9.3 危険 アップル
マイクロソフト		 - Microsoft Windows 7 Professional 64-bit におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5046 2012-02-16 11:40 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208481 7.5 HIGH
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity… NVD-CWE-Other
CVE-2020-27779 2024-11-21 14:21 2021-03-4 Show GitHub Exploit DB Packet Storm
208482 6.7 MEDIUM
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporar… - CVE-2020-27749 2024-11-21 14:21 2021-03-4 Show GitHub Exploit DB Packet Storm
208483 5.5 MEDIUM
Local 		gnu
netapp
oracle
debian 		glibc
ontap_select_deploy_administration_utility
a250_firmware
500f_firmware
h410c_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_firmware
h7… 		The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails t… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-27618 2024-11-21 14:21 2021-02-27 Show GitHub Exploit DB Packet Storm
208484 7.5 HIGH
Network 		restify-paginate_project restify-paginate The restify-paginate package 0.0.5 for Node.js allows remote attackers to cause a Denial-of-Service by omitting the HTTP Host header. A Restify-based web service would crash with an uncaught exceptio… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-27543 2024-11-21 14:21 2021-02-26 Show GitHub Exploit DB Packet Storm
208485 7.5 HIGH
Network 		redhat jboss_fuse
openshift_application_runtimes
undertow 		A flaw was found in the Undertow AJP connector. Malicious requests and abrupt connection closes could be triggered by an attacker using query strings with non-RFC compliant characters resulting in a … - CVE-2020-27782 2024-11-21 14:21 2021-02-24 Show GitHub Exploit DB Packet Storm
208486 5.5 MEDIUM
Local 		libxls_project libxls An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It cou… - CVE-2020-27819 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
208487 3.3 LOW
Local 		imagemagick
debian 		imagemagick
debian_linux 		In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0. - CVE-2020-27768 2024-11-21 14:21 2021-02-23 Show GitHub Exploit DB Packet Storm
208488 8.8 HIGH
Network 		solarwinds network_performance_monitor This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this… - CVE-2020-27869 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
208489 9.8 CRITICAL
Network 		qognify ocularis This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specifi… - CVE-2020-27868 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm
208490 6.8 MEDIUM
Adjacent 		netgear ac2100_firmware
ac2400_firmware
ac2600_firmware
r6700_firmware
r6800_firmware
r6900_firmware
r7200_firmware
r7350_firmware
r7400_firmware
r7450_firmware
r6220_firmware 		This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6020, R6080, R6120, R6220, R6260, R6700v2, R6800, R6900v2, R7450, JNR3210, WNR2020… - CVE-2020-27867 2024-11-21 14:21 2021-02-12 Show GitHub Exploit DB Packet Storm