Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252791 4.6 警告 ヒューレット・パッカード
IBM
オラクル		 - HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4834 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
252792 7.5 危険 SugarCRM - SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4833 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
252793 7.5 危険 Moxiecode Systems AB
phpMyFAQ
PHPletter		 - 複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4825 2011-12-19 15:07 2011-10-25 Show GitHub Exploit DB Packet Storm
252794 7.5 危険 The Cacti Group - Cacti の auth_login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4824 2011-12-19 15:06 2011-09-26 Show GitHub Exploit DB Packet Storm
252795 4.3 警告 Atlassian - Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4822 2011-12-19 15:05 2011-10-24 Show GitHub Exploit DB Packet Storm
252796 3.6 注意 Artsoft Entertainment - Artsoft Entertainment の Rocks'n'Diamonds における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4606 2011-12-19 15:05 2011-12-15 Show GitHub Exploit DB Packet Storm
252797 4.3 警告 Digium - Asterisk の channels/chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-200
情報漏えい 		CVE-2011-4598 2011-12-19 15:03 2011-11-2 Show GitHub Exploit DB Packet Storm
252798 5 警告 Digium - Asterisk の UDP 実装での SIP におけるユーザ名を列挙される脆弱性 CWE-200
情報漏えい 		CVE-2011-4597 2011-12-19 15:01 2011-07-18 Show GitHub Exploit DB Packet Storm
252799 7.5 危険 Caupo.Net - CaupoShop Pro および CaupoShop Classic におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4832 2011-12-19 13:44 2011-12-15 Show GitHub Exploit DB Packet Storm
252800 4 警告 David Azoulay - Web File Browser の webFileBrowser.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4831 2011-12-19 13:43 2011-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208591 8.1 HIGH
Network 		realtek rtl8195a_firmware The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, r… CWE-787
 Out-of-bounds Write 		CVE-2020-25854 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm
208592 7.5 HIGH
Network 		realtek rtl8195a_firmware The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5… CWE-125
Out-of-bounds Read 		CVE-2020-25853 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm
208593 9.8 CRITICAL
Network 		dlink dns-320_firmware D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution. CWE-78
OS Command  		CVE-2020-25506 2024-11-21 14:18 2021-02-2 Show GitHub Exploit DB Packet Storm
208594 5.3 MEDIUM
Network 		hashicorp vault HashiCorp Vault and Vault Enterprise allowed for enumeration of Secrets Engine mount paths via unauthenticated HTTP requests. Fixed in 1.6.2 & 1.5.7. NVD-CWE-noinfo
CVE-2020-25594 2024-11-21 14:18 2021-02-2 Show GitHub Exploit DB Packet Storm
208595 9.8 CRITICAL
Network 		accfly 720p_firmware An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CFt… CWE-787
 Out-of-bounds Write 		CVE-2020-25785 2024-11-21 14:18 2021-01-28 Show GitHub Exploit DB Packet Storm
208596 9.8 CRITICAL
Network 		accfly 720p_firmware An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CNe… CWE-787
 Out-of-bounds Write 		CVE-2020-25784 2024-11-21 14:18 2021-01-28 Show GitHub Exploit DB Packet Storm
208597 9.8 CRITICAL
Network 		accfly 720p_firmware An issue was discovered on Accfly Wireless Security IR Camera System 720P with software versions v3.10.73 through v4.15.77. There is an unauthenticated heap-based buffer overflow in the function CNet… CWE-787
 Out-of-bounds Write 		CVE-2020-25783 2024-11-21 14:18 2021-01-28 Show GitHub Exploit DB Packet Storm
208598 9.8 CRITICAL
Network 		accfly 720p_firmware An issue was discovered on Accfly Wireless Security IR Camera 720P System with software versions v3.10.73 through v4.15.77. There is an unauthenticated stack-based buffer overflow in the function CNe… CWE-787
 Out-of-bounds Write 		CVE-2020-25782 2024-11-21 14:18 2021-01-28 Show GitHub Exploit DB Packet Storm
208599 7.8 HIGH
Local 		hackolade hackolade An elevation of privilege vulnerability exists in Hackolade versions prior 4.2.0 on Windows has an issue in specific deployment scenarios that could allow local users to gain elevated privileges duri… NVD-CWE-noinfo
CVE-2020-25737 2024-11-21 14:18 2021-01-27 Show GitHub Exploit DB Packet Storm
208600 5.9 MEDIUM
Network 		thekelleys
fedoraproject
debian 		dnsmasq
fedora
debian_linux 		A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in dnsmasq when DNSSEC is enabled and before it validates the received DNS entries. This flaw allows a rem… - CVE-2020-25687 2024-11-21 14:18 2021-01-21 Show GitHub Exploit DB Packet Storm