Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	4.3	警告	ut-files	-	UTStats の pages/match_report.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5007	2011-12-9 14:14	2011-11-2	Show	GitHub Exploit DB Packet Storm

252952	7.5	危険	Denali	-	BrightSuite Groupware における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5008	2011-12-9 14:13	2011-11-2	Show	GitHub Exploit DB Packet Storm

252953	7.5	危険	ut-files	-	UTStats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5009	2011-12-9 14:12	2011-11-2	Show	GitHub Exploit DB Packet Storm

252954	4.3	警告	FullSite Pty Ltd	-	SchoolMation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5010	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252955	7.5	危険	FullSite Pty Ltd	-	SchoolMation における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5011	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252956	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

252957	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

252958	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

252959	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

252960	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208521	7.2	HIGH Network	clusterlabs debian	pacemaker debian_linux	An ACL bypass flaw was found in pacemaker. An attacker having a local account on the cluster and in the haclient group could use IPC communication with various daemons directly to perform certain tas…	NVD-CWE-Other	CVE-2020-25654	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208522	5.3	MEDIUM Network	redhat	wildfly	A flaw was discovered in WildFly before 21.0.0.Final where, Resource adapter logs plain text JMS password at warning level on connection error, inserting sensitive information in the log file.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-25640	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208523	9.8	CRITICAL Network	newsscriptphp	news_script_php_pro	SimplePHPscripts News Script PHP Pro 2.3 is affected by a SQL Injection via the id parameter in an editNews action.	CWE-89 SQL Injection	CVE-2020-25475	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208524	6.1	MEDIUM Network	newsscriptphp	news_script_php_pro	SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Scripting (XSS) vulnerability via the editor_name parameter.	CWE-79 Cross-site Scripting	CVE-2020-25474	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208525	6.5	MEDIUM Network	newsscriptphp	news_script_php_pro	SimplePHPscripts News Script PHP Pro 2.3 does not properly set the HttpOnly Flag from Session Cookies.	NVD-CWE-Other	CVE-2020-25473	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208526	6.5	MEDIUM Network	newsscriptphp	news_script_php_pro	SimplePHPscripts News Script PHP Pro 2.3 is affected by a Cross Site Request Forgery (CSRF) vulnerability, which allows attackers to add new users.	CWE-352 Origin Validation Error	CVE-2020-25472	2024-11-21 14:18	2020-11-25	Show	GitHub Exploit DB Packet Storm

208527	7.5	HIGH Network	postgresql debian	postgresql debian_linux	A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. If an interactive psql session uses …	-	CVE-2020-25696	2024-11-21 14:18	2020-11-24	Show	GitHub Exploit DB Packet Storm

208528	3.5	LOW Adjacent	redhat	advanced_cluster_management_for_kubernetes	A flaw was found in rhacm versions before 2.0.5 and before 2.1.0. Two internal service APIs were incorrectly provisioned using a test certificate from the source repository. This would result in all …	CWE-798 Use of Hard-coded Credentials	CVE-2020-25688	2024-11-21 14:18	2020-11-24	Show	GitHub Exploit DB Packet Storm

208529	8.8	HIGH Adjacent	redhat fedoraproject	ceph ceph_storage openshift_container_platform fedora	A flaw was found in the Cephx authentication protocol in versions before 15.2.6 and before 14.2.14, where it does not verify Ceph clients correctly and is then vulnerable to replay attacks in Nautilu…	-	CVE-2020-25660	2024-11-21 14:18	2020-11-24	Show	GitHub Exploit DB Packet Storm

208530	5.5	MEDIUM Local	xpdfreader fedoraproject	xpdf fedora	In Xpdf 4.02, SplashOutputDev::endType3Char(GfxState *state) SplashOutputDev.cc:3079 is trying to use the freed `t3GlyphStack->cache`, which causes an `heap-use-after-free` problem. The codes of a pr…	-	CVE-2020-25725	2024-11-21 14:18	2020-11-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed