Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252981 7.5 危険 Michau Enterprises - SenseSites CommonSense CMS の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5037 2011-12-9 13:41 2011-11-2 Show GitHub Exploit DB Packet Storm
252982 7.5 危険 Groone's World - Groone's Simple Contact Form における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5038 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
252983 7.5 危険 ScriptsFeed.com - ScriptsFeed Recipes Listing Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5039 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
252984 6.8 警告 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5040 2011-12-9 13:39 2011-11-2 Show GitHub Exploit DB Packet Storm
252985 7.5 危険 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5041 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
252986 4.3 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5042 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
252987 6 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5043 2011-12-9 13:34 2011-11-2 Show GitHub Exploit DB Packet Storm
252988 6 警告 Kanich - Joomla! 用 Search Log コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5044 2011-12-9 13:33 2011-11-2 Show GitHub Exploit DB Packet Storm
252989 4.3 警告 Sell@Site - Smart ASP Survey におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5045 2011-12-9 13:32 2011-11-2 Show GitHub Exploit DB Packet Storm
252990 5.1 警告 FFFTPプロジェクト - FFFTP における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2011-4266 2011-12-9 12:02 2011-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208421 7.6 HIGH
Physics 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If pr… CWE-787
 Out-of-bounds Write 		CVE-2020-25647 2024-11-21 14:18 2021-03-4 Show GitHub Exploit DB Packet Storm
208422 8.2 HIGH
Local 		gnu
redhat
fedoraproject
netapp 		grub2
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server_tus
enterprise_linux_server_eus
fedora
ontap_select_deploy_administration_… 		A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded lead… CWE-416
 Use After Free 		CVE-2020-25632 2024-11-21 14:18 2021-03-4 Show GitHub Exploit DB Packet Storm
208423 6.1 MEDIUM
Network 		blackboard collaborate_ultra Blackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the c… CWE-79
Cross-site Scripting 		CVE-2020-25902 2024-11-21 14:18 2021-03-2 Show GitHub Exploit DB Packet Storm
208424 8.8 HIGH
Network 		fontforge fontforge An out-of-bounds write flaw was found in FontForge in versions before 20200314 while parsing SFD files containing certain LayerCount tokens. This flaw allows an attacker to manipulate the memory allo… - CVE-2020-25690 2024-11-21 14:18 2021-02-23 Show GitHub Exploit DB Packet Storm
208425 5.9 MEDIUM
Network 		agora video_software_development_kit Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote attacker to obtain access to audio and video of any ongoing Agora video call through observation of cle… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-25605 2024-11-21 14:18 2021-02-18 Show GitHub Exploit DB Packet Storm
208426 7.5 HIGH
Network 		oclean oclean Oclean Mobile Application 2.1.2 communicates with an external website using HTTP so it is possible to eavesdrop the network traffic. The content of HTTP payload is encrypted using XOR with a hardcode… CWE-798
CWE-327
 Use of Hard-coded Credentials
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-25493 2024-11-21 14:18 2021-02-12 Show GitHub Exploit DB Packet Storm
208427 7.5 HIGH
Network 		realtek rtl8195a_firmware The function ClientEAPOLKeyRecvd() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() op… CWE-787
 Out-of-bounds Write 		CVE-2020-25857 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm
208428 8.1 HIGH
Network 		realtek rtl8195a_firmware The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an rtl_memcpy() operati… CWE-787
 Out-of-bounds Write 		CVE-2020-25856 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm
208429 8.1 HIGH
Network 		realtek rtl8195a_firmware The function AES_UnWRAP() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for a memcpy() operation, resul… CWE-787
 Out-of-bounds Write 		CVE-2020-25855 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm
208430 8.1 HIGH
Network 		realtek rtl8195a_firmware The function DecWPA2KeyData() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, r… CWE-787
 Out-of-bounds Write 		CVE-2020-25854 2024-11-21 14:18 2021-02-4 Show GitHub Exploit DB Packet Storm