Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253791	5	警告	IceWarp, Inc.	-	IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3580	2011-10-11 10:11	2011-09-30	Show	GitHub Exploit DB Packet Storm

253792	6.4	警告	IceWarp, Inc.	-	IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-3579	2011-10-11 10:10	2011-09-30	Show	GitHub Exploit DB Packet Storm

253793	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0554	2011-10-11 10:10	2011-09-29	Show	GitHub Exploit DB Packet Storm

253794	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0553	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253795	4.3	警告	シマンテック	-	Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0552	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253796	4	警告	株式会社アークウェブ	-	A-Form におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2676	2011-10-7 12:04	2011-10-7	Show	GitHub Exploit DB Packet Storm

253797	5	警告	utage.org	-	宴会くんにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2675	2011-10-7 12:03	2011-10-7	Show	GitHub Exploit DB Packet Storm

253798	2.6	注意	HTC Corporation	-	複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3975	2011-10-7 11:46	2011-10-3	Show	GitHub Exploit DB Packet Storm

253799	5	警告	FFmpeg	-	FFmpeg の decode_residual_inter 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-3974	2011-10-7 11:33	2011-10-2	Show	GitHub Exploit DB Packet Storm

253800	4.3	警告	PunBB	-	PunBB の include/functions.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3371	2011-10-7 11:29	2011-10-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225371	6.5	MEDIUM Network	maxum	rumpus	A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server FTP settings at RAPR/FTPSettingsSet.…	CWE-352 Origin Validation Error	CVE-2019-19665	2024-11-21 13:35	2020-02-11	Show	GitHub Exploit DB Packet Storm

225372	6.5	MEDIUM Network	maxum	rumpus	A CSRF vulnerability exists in the Folder Sets Settings of Web File Manager in Rumpus FTP 8.2.9.1. This allows an attacker to Create/Delete Folders after exploiting it at RAPR/FolderSetsSet.html.	CWE-352 Origin Validation Error	CVE-2019-19663	2024-11-21 13:35	2020-02-11	Show	GitHub Exploit DB Packet Storm

225373	6.5	MEDIUM Network	maxum	rumpus	A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can manipulate the SMTP setting and other network setti…	CWE-352 Origin Validation Error	CVE-2019-19660	2024-11-21 13:35	2020-02-11	Show	GitHub Exploit DB Packet Storm

225374	8.8	HIGH Network	maxum	rumpus	A CSRF vulnerability exists in the Web File Manager's Edit Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can take over a user account by changing the password, up…	CWE-352 Origin Validation Error	CVE-2019-19659	2024-11-21 13:35	2020-02-11	Show	GitHub Exploit DB Packet Storm

225375	5.3	MEDIUM Network	zohocorp	manageengine_applications_manager	Zoho ManageEngine Applications Manager 14 before 14520 allows a remote unauthenticated attacker to disclose OS file names via FailOverHelperServlet.	CWE-306 Missing Authentication for Critical Function	CVE-2019-19800	2024-11-21 13:35	2020-02-7	Show	GitHub Exploit DB Packet Storm

225376	5.4	MEDIUM Network	pandorafms	pandora_fms	PandoraFMS 742 suffers from multiple XSS vulnerabilities, affecting the Agent Management, Report Builder, and Graph Builder components. An authenticated user can inject dangerous content into a data …	CWE-79 Cross-site Scripting	CVE-2019-19968	2024-11-21 13:35	2020-02-5	Show	GitHub Exploit DB Packet Storm

225377	8.8	HIGH Network	totolink	a3002ru_firmware a702r_firmware n301rt_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware	On certain TOTOLINK Realtek SDK based routers, an authenticated attacker may execute arbitrary OS commands via the sysCmd parameter to the boafrm/formSysCmd URI, even if the GUI (syscmd.htm) is not a…	CWE-78 OS Command	CVE-2019-19824	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225378	7.5	HIGH Network	totolink realtek sapido ciktel kctvjeju fg-products hiwifi tbroad coship iodata hcn_max-c300n_project	a3002ru_firmware a702r_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware rtk_11n_ap_firmware gr297n_firmware mesh_router_firmware w…	A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) stores cleartext administrative passwords in flash memory and in a file. This affects TOTOLINK A3002R…	CWE-522 Insufficiently Protected Credentials	CVE-2019-19823	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225379	7.5	HIGH Network	totolink realtek sapido ciktel kctvjeju fg-products hiwifi tbroad coship iodata hcn_max-c300n_project	a3002ru_firmware a702r_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware rtk_11n_ap_firmware gr297n_firmware mesh_router_firmware w…	A certain router administration interface (that includes Realtek APMIB 0.11f for Boa 0.94.14rc21) allows remote attackers to retrieve the configuration, including sensitive data (usernames and passwo…	CWE-306 Missing Authentication for Critical Function	CVE-2019-19822	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm

225380	9.8	CRITICAL Network	totolink	a3002ru_firmware a702r_firmware n301rt_firmware n302r_firmware n300rt_firmware n200re_firmware n150rt_firmware n100re_firmware	On certain TOTOLINK Realtek SDK based routers, the CAPTCHA text can be retrieved via an {"topicurl":"setting/getSanvas"} POST to the boafrm/formLogin URI, leading to a CAPTCHA bypass. (Also, the CAPT…	CWE-287 Improper Authentication	CVE-2019-19825	2024-11-21 13:35	2020-01-28	Show	GitHub Exploit DB Packet Storm