Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252901	4	警告	Vtiger	-	vtiger CRM におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4679	2011-12-12 11:39	2011-12-7	Show	GitHub Exploit DB Packet Storm

252902	5	警告	Novell	-	Novell Messenger および Novell GroupWise Messenger における任意のメモリ配置を読み取られる脆弱性	CWE-200 情報漏えい	CVE-2011-3179	2011-12-12 11:37	2011-10-25	Show	GitHub Exploit DB Packet Storm

252903	10	危険	Novell	-	Novell ZENworks Asset Management の rtrlet コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2653	2011-12-12 11:36	2011-11-2	Show	GitHub Exploit DB Packet Storm

252904	7.8	危険	日立	-	JP1/Cm2/Network Node Manager i におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2011-12-9 16:35	2011-10-12	Show	GitHub Exploit DB Packet Storm

252905	5	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (CPU およびメモリ消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4687	2011-12-9 16:07	2011-12-7	Show	GitHub Exploit DB Packet Storm

252906	5	警告	Opera Software ASA	-	Opera の Web Workers 実装におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2011-4686	2011-12-9 16:06	2011-12-7	Show	GitHub Exploit DB Packet Storm

252907	5	警告	Opera Software ASA	-	Opera の Dragonfly におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-4685	2011-12-9 16:05	2011-12-7	Show	GitHub Exploit DB Packet Storm

252908	10	危険	Opera Software ASA	-	Opera における証明書失効の処理に関する詳細不明な脆弱性	CWE-310 暗号の問題	CVE-2011-4684	2011-12-9 16:05	2011-12-7	Show	GitHub Exploit DB Packet Storm

252909	10	危険	Opera Software ASA	-	Opera における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2011-4683	2011-12-9 16:04	2011-12-7	Show	GitHub Exploit DB Packet Storm

252910	6.4	警告	Opera Software ASA	-	Opera の JavaScript エンジンにおける同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4682	2011-12-9 16:03	2011-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208441	7.5	HIGH Network	md4c_project	md4c	md_push_block_bytes in md4c.c in md4c 0.4.5 allows attackers to trigger use of uninitialized memory, and cause a denial of service (e.g., assertion failure) via a malformed Markdown document.	CWE-908 Use of Uninitialized Resource	CVE-2020-26148	2024-11-21 14:19	2020-10-1	Show	GitHub Exploit DB Packet Storm

208442	6.5	MEDIUM Network	python canonical debian oracle	urllib3 ubuntu_linux debian_linux zfs_storage_appliance_kit communications_cloud_native_core_network_function_cloud_native_environment	urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: th…	CWE-74 Injection	CVE-2020-26137	2024-11-21 14:19	2020-10-1	Show	GitHub Exploit DB Packet Storm

208443	6.1	MEDIUM Network	hoosk	hoosk	An issue was discovered in Hoosk CMS v1.8.0. There is a XSS vulnerability in install/index.php	CWE-79 Cross-site Scripting	CVE-2020-26043	2024-11-21 14:19	2020-10-1	Show	GitHub Exploit DB Packet Storm

208444	9.8	CRITICAL Network	hoosk	hoosk	An issue was discovered in Hoosk CMS v1.8.0. There is a SQL injection vulnerability in install/index.php	CWE-89 SQL Injection	CVE-2020-26042	2024-11-21 14:19	2020-10-1	Show	GitHub Exploit DB Packet Storm

208445	9.8	CRITICAL Network	hoosk	hoosk	An issue was discovered in Hoosk CmS v1.8.0. There is an Remote Code Execution vulnerability in install/index.php	NVD-CWE-noinfo	CVE-2020-26041	2024-11-21 14:19	2020-10-1	Show	GitHub Exploit DB Packet Storm

208446	7.5	HIGH Network	mediawiki fedoraproject	mediawiki fedora	An issue was discovered in the FileImporter extension for MediaWiki before 1.34.4. An attacker can import a file even when the target page is protected against "page creation" and the attacker should…	CWE-863 Incorrect Authorization	CVE-2020-26121	2024-11-21 14:19	2020-09-28	Show	GitHub Exploit DB Packet Storm

208447	6.1	MEDIUM Network	mediawiki fedoraproject	mediawiki fedora	XSS exists in the MobileFrontend extension for MediaWiki before 1.34.4 because section.line is mishandled during regex section line replacement from PageGateway. Using crafted HTML, an attacker can e…	CWE-79 Cross-site Scripting	CVE-2020-26120	2024-11-21 14:19	2020-09-28	Show	GitHub Exploit DB Packet Storm

208448	8.1	HIGH Network	tigervnc debian opensuse	tigervnc debian_linux leap	In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a cert…	CWE-295 Improper Certificate Validation	CVE-2020-26117	2024-11-21 14:19	2020-09-27	Show	GitHub Exploit DB Packet Storm

208449	7.2	HIGH Network	python fedoraproject canonical netapp debian oracle opensuse	python fedora ubuntu_linux solidfire hci_storage_node debian_linux zfs_storage_appliance_kit leap	http.client in Python 3.x before 3.5.10, 3.6.x before 3.6.12, 3.7.x before 3.7.9, and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by ins…	CWE-74 Injection	CVE-2020-26116	2024-11-21 14:19	2020-09-27	Show	GitHub Exploit DB Packet Storm

208450	6.1	MEDIUM Network	cpanel	cpanel	cPanel before 90.0.10 allows self XSS via the Cron Editor interface (SEC-574).	CWE-79 Cross-site Scripting	CVE-2020-26115	2024-11-21 14:19	2020-09-25	Show	GitHub Exploit DB Packet Storm