Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253951	6.4	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey の WebGL 実装における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2367	2011-07-13 10:04	2011-06-21	Show	GitHub Exploit DB Packet Storm

253952	2.6	注意	ISC, Inc.	-	ISC BIND 9.8 系にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2465	2011-07-11 14:25	2011-07-6	Show	GitHub Exploit DB Packet Storm

253953	2.6	注意	マイクロソフト	-	Internet Explorer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-07-8 12:01	2011-07-8	Show	GitHub Exploit DB Packet Storm

253954	4.9	警告	アップル	-	Apple Mac OS X の kernel の IPv6 実装におけるサービス運用妨害 (Null ポインタデリファレンス、およびリブート) の脆弱性	CWE-Other その他	CVE-2011-1132	2011-07-8 10:12	2011-06-24	Show	GitHub Exploit DB Packet Storm

253955	6.4	警告	アップル	-	Apple Mac OS X の servermgrd における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-0212	2011-07-8 10:10	2011-06-24	Show	GitHub Exploit DB Packet Storm

253956	6.8	警告	アップル	-	Apple Mac OS X の QuickLook における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0208	2011-07-7 11:34	2011-06-24	Show	GitHub Exploit DB Packet Storm

253957	5	警告	アップル	-	Apple Mac OS X の MobileMe における重要なエイリアス情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0207	2011-07-7 11:33	2011-06-24	Show	GitHub Exploit DB Packet Storm

253958	6.8	警告	アップル	-	Apple Mac OS X の ImageIO におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0205	2011-07-7 11:30	2011-06-24	Show	GitHub Exploit DB Packet Storm

253959	5	警告	アップル	-	Apple Mac OS X の FTP Server コンポーネントにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0203	2011-07-6 07:54	2011-06-24	Show	GitHub Exploit DB Packet Storm

253960	5.1	警告	XnSoft	-	XnView における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-1338	2011-07-5 12:01	2011-07-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215481	8.1	HIGH Network	debian wordpress	debian_linux wordpress	In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user by a malicious part…	-	CVE-2020-11027	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

215482	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, files with a specially crafted name when uploaded to the Media section can lead to script execution upon accessing the file. This requires an authenticated user wit…	CWE-79 Cross-site Scripting	CVE-2020-11026	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

215483	8.8	HIGH Network	intelmq_manager_project	intelmq_manager	IntelMQ Manager from version 1.1.0 and before version 2.1.1 has a vulnerability where the backend incorrectly handled messages given by user-input in the "send" functionality of the Inspect-tool of t…	CWE-78 OS Command	CVE-2020-11016	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

215484	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, a cross-site scripting (XSS) vulnerability in the navigation section of Customizer allows JavaScript code to be executed. Exploitation requires an authenticated use…	CWE-79 Cross-site Scripting	CVE-2020-11025	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

215485	9.1	CRITICAL Network	thinx-device-api_project	thinx-device-api	A vulnerability has been disclosed in thinx-device-api IoT Device Management Server before version 2.5.0. Device MAC address can be spoofed. This means initial registration requests without UDID and …	-	CVE-2020-11015	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

215486	8.2	HIGH Network	moonlight-stream	moonlight	In Moonlight iOS/tvOS before 4.0.1, the pairing process is vulnerable to a man-in-the-middle attack. The bug has been fixed in Moonlight v4.0.1 for iOS and tvOS.	CWE-200 Information Exposure	CVE-2020-11024	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm

215487	9.8	CRITICAL Network	faye_project	faye	Faye (NPM, RubyGem) versions greater than 0.5.0 and before 1.0.4, 1.1.3 and 1.2.5, has the potential for authentication bypass in the extension system. The vulnerability allows any client to bypass c…	CWE-287 Improper Authentication	CVE-2020-11020	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm

215488	6.1	MEDIUM Network	jquery debian fedoraproject drupal oracle netapp tenable	jquery debian_linux fedora drupal weblogic_server hyperion_financial_reporting webcenter_sites application_testing_suite communications_operations_monitor communications_in…	In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation m…	-	CVE-2020-11023	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm

215489	7.5	HIGH Network	http-client_project	http-client	Actions Http-Client (NPM @actions/http-client) before version 1.0.8 can disclose Authorization headers to incorrect domain in certain redirect scenarios. The conditions in which this happens are if c…	NVD-CWE-noinfo	CVE-2020-11021	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm

215490	6.5	MEDIUM Network	pagerduty	rundeck	In Rundeck before version 3.2.6, authenticated users can craft a request that reveals Execution data and logs and Job details that they are not authorized to see. Depending on the configuration and t…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-11009	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm