Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253421 4.3 警告 Novell - Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2661 2011-10-14 10:27 2011-08-19 Show GitHub Exploit DB Packet Storm
253422 4.3 警告 Novell - Novell Identity Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2227 2011-10-14 10:23 2011-09-27 Show GitHub Exploit DB Packet Storm
253423 4.3 警告 Novell - Novell Identity Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1696 2011-10-14 10:14 2011-09-27 Show GitHub Exploit DB Packet Storm
253424 10 危険 Novell - Novell GroupWise の GWIA 内にある gwia.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0334 2011-10-14 10:01 2011-08-19 Show GitHub Exploit DB Packet Storm
253425 10 危険 Novell - Novell GroupWise の GWIA 内にある gwwww1.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0333 2011-10-14 09:11 2011-08-19 Show GitHub Exploit DB Packet Storm
253426 9.3 危険 VMware - 複数の VMware 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3868 2011-10-14 09:09 2011-10-4 Show GitHub Exploit DB Packet Storm
253427 6.8 警告 Cherokee Project - Cherokee の Cherokee-admin におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-2191 2011-10-14 09:03 2011-10-7 Show GitHub Exploit DB Packet Storm
253428 2.1 注意 Cherokee Project - Cherokee の generate_admin_password 関数における admin パスワードを推測される脆弱性 CWE-310
暗号の問題 		CVE-2011-2190 2011-10-14 09:00 2011-10-7 Show GitHub Exploit DB Packet Storm
253429 7.8 危険 Linux - Linux kernel の net/core/net_namespace.c におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2189 2011-10-14 08:56 2011-10-10 Show GitHub Exploit DB Packet Storm
253430 9.3 危険 Plone Foundation
Zope Foundation		 - Plone で使用される Zope における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3587 2011-10-13 14:45 2011-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208421 6.1 MEDIUM
Network 		wdja wdja_cms Cross-site request forgery (CSRF) in admin/global/manage.php in WDJA CMS 1.5 allows remote attackers to conduct cross-site scripting (XSS) attacks via the tongji parameter. CWE-352
 Origin Validation Error 		CVE-2020-23631 2024-11-21 14:13 2021-01-12 Show GitHub Exploit DB Packet Storm
208422 8.8 HIGH
Network 		zzcms zzcms A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection). CWE-89
SQL Injection 		CVE-2020-23630 2024-11-21 14:13 2021-01-12 Show GitHub Exploit DB Packet Storm
208423 6.1 MEDIUM
Network 		jizhicms jizhicms XSS exists in JIZHICMS 1.7.1 via index.php/Error/index?msg={XSS] to Home/c/ErrorController.php. CWE-79
Cross-site Scripting 		CVE-2020-23644 2024-11-21 14:13 2021-01-11 Show GitHub Exploit DB Packet Storm
208424 6.1 MEDIUM
Network 		jizhicms jizhicms XSS exists in JIZHICMS 1.7.1 via index.php/Wechat/checkWeixin?signature=1&echostr={XSS] to Home/c/WechatController.php. CWE-79
Cross-site Scripting 		CVE-2020-23643 2024-11-21 14:13 2021-01-11 Show GitHub Exploit DB Packet Storm
208425 2.3 LOW
Local 		gigamon gigavue-os GigaVUE-OS (GVOS) 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-23250 2024-11-21 14:13 2021-01-6 Show GitHub Exploit DB Packet Storm
208426 4.7 MEDIUM
Network 		gigamon gigavue-os GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password in plaintext. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-23249 2024-11-21 14:13 2021-01-6 Show GitHub Exploit DB Packet Storm
208427 7.5 HIGH
Network 		veno_file_manager_project veno_file_manager Veno File Manager 3.5.6 is affected by a directory traversal vulnerability. Using the traversal allows an attacker to download sensitive files from the server. CWE-22
Path Traversal 		CVE-2020-22550 2024-11-21 14:13 2021-01-5 Show GitHub Exploit DB Packet Storm
208428 9.8 CRITICAL
Network 		jsonpickle_project jsonpickle jsonpickle through 1.4.1 allows remote code execution during deserialization of a malicious payload through the decode() function. Note: It has been argued that this is expected and clearly documente… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-22083 2024-11-21 14:13 2020-12-18 Show GitHub Exploit DB Packet Storm
208429 7.2 HIGH
Network 		txjia imcat imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-23520 2024-11-21 14:13 2020-12-10 Show GitHub Exploit DB Packet Storm
208430 6.1 MEDIUM
Network 		yzmcms yzmcms In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting (XSS) vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-22394 2024-11-21 14:13 2020-11-20 Show GitHub Exploit DB Packet Storm