Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252731 4 警告 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4634 2011-05-31 10:35 2008-10-17 Show GitHub Exploit DB Packet Storm
252732 5 警告 アドビシステムズ - Adobe Flash Media Server におけるサービス運用妨害 (XML データ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0612 2011-05-27 11:19 2011-05-12 Show GitHub Exploit DB Packet Storm
252733 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Audition におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0615 2011-05-27 10:50 2011-05-12 Show GitHub Exploit DB Packet Storm
252734 9.3 危険 アドビシステムズ - Windows 上で稼働する Adobe Audition におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0614 2011-05-27 10:49 2011-05-12 Show GitHub Exploit DB Packet Storm
252735 5 警告 レッドハット
Avahi
オラクル		 - Avahi の avahi-core/socket.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1002 2011-05-27 10:33 2011-02-22 Show GitHub Exploit DB Packet Storm
252736 5 警告 Squid-cache.org
レッドハット		 - Squid の string-comparison 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3072 2011-05-27 10:05 2010-09-3 Show GitHub Exploit DB Packet Storm
252737 6 警告 Walrus,Digit. - WalRack におけるアップロードファイルの取扱いに関する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1329 2011-05-26 11:06 2011-05-26 Show GitHub Exploit DB Packet Storm
252738 6.9 警告 Linux
レッドハット		 - Linux kernel の Radeon GPU ドライバにおける任意のメモリロケーションへ書き込みされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1016 2011-05-26 10:45 2011-02-28 Show GitHub Exploit DB Packet Storm
252739 6.9 警告 Linux
レッドハット		 - Linux kernel の drm_modeset_ctl 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1013 2011-05-26 10:43 2011-05-9 Show GitHub Exploit DB Packet Storm
252740 6.2 警告 Linux
レッドハット		 - Linux kernel の caiaq Native Instruments USB オーディオ機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0712 2011-05-26 10:21 2011-02-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209451 5.4 MEDIUM
Network 		django_two-factor_authentication_project django_two-factor_authentication Django Two-Factor Authentication before 1.12, stores the user's password in clear text in the user session (base64-encoded). The password is stored in the session when the user submits their username… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-15105 2024-11-21 14:04 2020-07-11 Show GitHub Exploit DB Packet Storm
209452 8.6 HIGH
Network 		amazon tough The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures. It allows an attacker to duplicate a valid signature in order to circumve… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-15093 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
209453 4.8 MEDIUM
Network 		northwestern timelinejs In TimelineJS before version 3.7.0, some user data renders as HTML. An attacker could implement an XSS exploit with maliciously crafted content in a number of data fields. This risk is present whethe… CWE-79
Cross-site Scripting 		CVE-2020-15092 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
209454 5.3 MEDIUM
Adjacent 		yubico yubikey_5_nfc_firmware An information leak was discovered on Yubico YubiKey 5 NFC devices 5.0.0 to 5.2.6 and 5.3.0 to 5.3.1. The OTP application allows a user to set optional access codes on OTP slots. This access code is … CWE-862
 Missing Authorization 		CVE-2020-15001 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
209455 5.9 MEDIUM
Network 		yubico yubikey_5_nfc_firmware A PIN management problem was discovered on Yubico YubiKey 5 devices 5.2.0 to 5.2.6. OpenPGP has three passwords: Admin PIN, Reset Code, and User PIN. The Reset Code is used to reset the User PIN, but… NVD-CWE-Other
CVE-2020-15000 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
209456 5.4 MEDIUM
Network 		phplist phplist An issue was discovered in phpList through 3.5.4. An XSS vulnerability occurs within the Import Administrators section via upload of an edited text document. This also affects the Subscriber Lists se… CWE-79
Cross-site Scripting 		CVE-2020-15073 2024-11-21 14:04 2020-07-9 Show GitHub Exploit DB Packet Storm
209457 8.8 HIGH
Network 		phplist phplist An issue was discovered in phpList through 3.5.4. An error-based SQL Injection vulnerability exists via the Import Administrators section. CWE-89
SQL Injection 		CVE-2020-15072 2024-11-21 14:04 2020-07-9 Show GitHub Exploit DB Packet Storm
209458 7.5 HIGH
Network 		connectwise connectwise_automate A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate serv… CWE-89
SQL Injection 		CVE-2020-15008 2024-11-21 14:04 2020-07-8 Show GitHub Exploit DB Packet Storm
209459 4.4 MEDIUM
Local 		npmjs
opensuse
fedoraproject 		npm
leap
fedora 		Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like "<protocol>://[<user>[:<password>]@]<hostname>[:<port>][:… - CVE-2020-15095 2024-11-21 14:04 2020-07-8 Show GitHub Exploit DB Packet Storm
209460 5.4 MEDIUM
Network 		nedi nedi NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Map.php hde parameter. CWE-79
Cross-site Scripting 		CVE-2020-15035 2024-11-21 14:04 2020-07-8 Show GitHub Exploit DB Packet Storm