Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253171 5 警告 LANDesk - Lenovo ThinkManagement Console におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1196 2012-02-21 16:44 2012-02-18 Show GitHub Exploit DB Packet Storm
253172 7.5 危険 LANDesk - Lenovo ThinkManagement Console の ServerSetup web サービスにおける任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1195 2012-02-21 16:43 2012-02-18 Show GitHub Exploit DB Packet Storm
253173 4.3 警告 Craig Barratt - BackupPC の RestoreFile.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5081 2012-02-21 16:42 2012-02-18 Show GitHub Exploit DB Packet Storm
253174 4.3 警告 Craig Barratt - BackupPC の View.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4923 2012-02-21 16:41 2012-02-18 Show GitHub Exploit DB Packet Storm
253175 9.3 危険 TYPO3 Association - TYPO3 の workspaces system エクステンションにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4614 2012-02-21 16:40 2011-12-16 Show GitHub Exploit DB Packet Storm
253176 4.3 警告 Craig Barratt - BackupPC の CGI/Browse.pm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3361 2012-02-21 16:34 2012-02-18 Show GitHub Exploit DB Packet Storm
253177 7.5 危険 Earl Miles - Drupal 用 Views モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4113 2012-02-21 16:33 2012-02-17 Show GitHub Exploit DB Packet Storm
253178 2.1 注意 Robert Ancell - LightDM における任意のファイルの所有権を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4105 2012-02-21 16:26 2012-02-17 Show GitHub Exploit DB Packet Storm
253179 6.4 警告 マイクロソフト - Microsoft Windows Server 2008 における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-Other
その他 		CVE-2012-1194 2012-02-21 16:25 2012-02-17 Show GitHub Exploit DB Packet Storm
253180 6.4 警告 PowerDNS - PowerDNS における無効なドメイン名の継続的な名前解決を可能にされる脆弱性 CWE-DesignError
CVE-2012-1193 2012-02-21 16:24 2012-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
203051 9.6 CRITICAL
Network 		mit scratch-svg-renderer This affects the package scratch-svg-renderer before 0.2.0-prerelease.20201019174008. The loadString function does not escape SVG properly, which can be used to inject arbitrary elements into the DOM… CWE-79
Cross-site Scripting 		CVE-2020-7750 2024-11-21 14:37 2020-10-22 Show GitHub Exploit DB Packet Storm
203052 4.3 MEDIUM
Network 		raiseitsolutions rits_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-7371 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
203053 4.3 MEDIUM
Network 		boltbrowser bolt_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of Danyil Vasilenko's Bolt Browser allows an attacker to obfuscate the true source of data as presented … CWE-306
Missing Authentication for Critical Function 		CVE-2020-7370 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
203054 4.3 MEDIUM
Network 		yandex yandex_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of the Yandex Browser allows an attacker to obfuscate the true source of data as presented in the browse… CWE-306
Missing Authentication for Critical Function 		CVE-2020-7369 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
203055 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-Other
CVE-2020-7364 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
203056 4.3 MEDIUM
Network 		ucweb uc_browser User Interface (UI) Misrepresentation of Critical Information vulnerability in the address bar of UCWeb's UC Browser allows an attacker to obfuscate the true source of data as presented in the browse… NVD-CWE-noinfo
CVE-2020-7363 2024-11-21 14:37 2020-10-21 Show GitHub Exploit DB Packet Storm
203057 7.6 HIGH
Network 		osm-static-maps_project osm-static-maps This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to injec… CWE-79
CWE-74
Cross-site Scripting
Injection 		CVE-2020-7749 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
203058 8.1 HIGH
Network 		ts.ed_project ts.ed This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attac… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7748 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
203059 6.3 MEDIUM
Network 		lightning-viz lightning This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller. CWE-79
Cross-site Scripting 		CVE-2020-7747 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
203060 7.1 HIGH
Network 		mintegral mintegraladsdk This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can rem… CWE-94
Code Injection 		CVE-2020-7745 2024-11-21 14:37 2020-10-19 Show GitHub Exploit DB Packet Storm