Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253901	6.8	警告	レッドハット Pango.org オラクル	-	HarfBuzz の hb-buffer.c 内にある hb_buffer_ensure 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-0064	2011-09-14 10:45	2011-03-1	Show	GitHub Exploit DB Packet Storm

253902	6.5	警告	ヒューレット・パッカードシマンテック日立	-	Symantec Backup Exec における NDMP コマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0546	2011-09-14 10:44	2011-05-26	Show	GitHub Exploit DB Packet Storm

253903	5	警告	The PHP Group	-	PHP で使用される crypt_blowfish におけるクリアテキストのパスワードを容易に推測される脆弱性	CWE-310 暗号の問題	CVE-2011-2483	2011-09-13 10:43	2011-08-25	Show	GitHub Exploit DB Packet Storm

253904	6.4	警告	The PHP Group	-	PHP の main/rfc1867.c 内にある rfc1867_post_handler 関数における任意のファイルを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2202	2011-09-13 10:42	2011-06-16	Show	GitHub Exploit DB Packet Storm

253905	7.5	危険	The PHP Group	-	PHP の socket_connect 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1938	2011-09-13 10:41	2011-05-31	Show	GitHub Exploit DB Packet Storm

253906	7.5	危険	The PHP Group	-	PHP の substr_replace 関数におけるサービス運用妨害 (メモリ破損) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1148	2011-09-13 10:39	2011-03-18	Show	GitHub Exploit DB Packet Storm

253907	6.8	警告	GNU Project オラクル	-	GNU Wget における任意のファイルを作成される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2252	2011-09-12 09:56	2010-07-6	Show	GitHub Exploit DB Packet Storm

253908	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性	CWE-399 リソース管理の問題	CVE-2011-2955	2011-09-12 09:53	2011-08-16	Show	GitHub Exploit DB Packet Storm

253909	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の AutoUpdate 機能における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-2954	2011-09-12 09:41	2011-08-16	Show	GitHub Exploit DB Packet Storm

253910	10	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性	CWE-119 バッファエラー	CVE-2011-2953	2011-09-12 09:40	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208241	7.5	HIGH Network	basetech	ge-131_bt-1837836_firmware	In BASETech GE-131 BT-1837836 firmware 20180921, the web-server on the system is configured with the option “DocumentRoot /etc“. This allows an attacker with network access to the web-server to downl…	CWE-22 Path Traversal	CVE-2020-27553	2024-11-21 14:21	2020-11-18	Show	GitHub Exploit DB Packet Storm

208242	9.9	CRITICAL Network	garmin	forerunner_235_firmware	Garmin Forerunner 235 before 8.20 is affected by: Buffer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ …	CWE-120 Classic Buffer Overflow	CVE-2020-27486	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208243	9.9	CRITICAL Network	garmin	forerunner_235_firmware	Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectI…	CWE-129 Improper Validation of Array Index	CVE-2020-27485	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208244	9.9	CRITICAL Network	garmin	forerunner_235_firmware	Garmin Forerunner 235 before 8.20 is affected by: Integer Overflow. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectIQ…	CWE-190 Integer Overflow or Wraparound	CVE-2020-27484	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208245	9.9	CRITICAL Network	garmin	forerunner_235_firmware	Garmin Forerunner 235 before 8.20 is affected by: Array index error. The component is: ConnectIQ TVM. The attack vector is: To exploit the vulnerability, the attacker must upload a malicious ConnectI…	CWE-129 Improper Validation of Array Index	CVE-2020-27483	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208246	6.1	MEDIUM Network	jetbrains	teamcity	JetBrains TeamCity before 2020.1.2 was vulnerable to URL injection.	CWE-74 Injection	CVE-2020-27627	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208247	7.5	HIGH Network	jetbrains	ideavim	JetBrains IdeaVim before version 0.58 might have caused an information leak in limited circumstances.	NVD-CWE-noinfo	CVE-2020-27623	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208248	5.3	MEDIUM Network	jetbrains	intellij_idea	In JetBrains IntelliJ IDEA before 2020.2, the built-in web server could expose information about the IDE version.	NVD-CWE-noinfo	CVE-2020-27622	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208249	7.5	HIGH Network	anuko	time_tracker	Anuko Time Tracker v1.19.23.5311 lacks rate limit on the password reset module which allows attacker to perform Denial of Service attack on any legitimate user's mailbox	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-27423	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

208250	9.8	CRITICAL Network	anuko	time_tracker	In Anuko Time Tracker v1.19.23.5311, the password reset link emailed to the user doesn't expire once used, allowing an attacker to use the same link to takeover the account.	CWE-613 Insufficient Session Expiration	CVE-2020-27422	2024-11-21 14:21	2020-11-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed