Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254501 6.8 警告 アップル - Apple Mac OS X の libsecurity における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3227 2011-10-26 09:46 2011-10-14 Show GitHub Exploit DB Packet Storm
254502 6.8 警告 アップル - Apple Mac OS X のオープンディレクトリにおけるパスワード要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3226 2011-10-26 09:45 2011-10-14 Show GitHub Exploit DB Packet Storm
254503 5 警告 アップル - Apple Mac OS X の SMB ファイルサーバコンポーネントにおける閲覧制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3225 2011-10-26 09:44 2011-10-14 Show GitHub Exploit DB Packet Storm
254504 2.6 注意 アップル - Apple Mac OS X の User Documentation コンポーネントにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-3224 2011-10-26 09:44 2011-10-14 Show GitHub Exploit DB Packet Storm
254505 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3223 2011-10-26 09:43 2011-10-14 Show GitHub Exploit DB Packet Storm
254506 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3222 2011-10-26 09:42 2011-10-14 Show GitHub Exploit DB Packet Storm
254507 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3221 2011-10-26 09:41 2011-10-14 Show GitHub Exploit DB Packet Storm
254508 6.8 警告 Django Software Foundation - Django の CSRF 保護メカニズムにおける認証されずに偽造されたリクエストを誘発される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4140 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
254509 5 警告 Django Software Foundation - Django におけるキャッシュポイズニング攻撃を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4139 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
254510 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能における任意の GET リクエストを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4138 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202731 7.2 HIGH
Network 		artica pandora_fms Artica Pandora FMS through 7.42 is vulnerable to remote PHP code execution because of an Unrestricted Upload Of A File With A Dangerous Type issue in the File Manager. An attacker can create a (or us… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-7935 2024-11-21 14:38 2020-03-24 Show GitHub Exploit DB Packet Storm
202732 5.3 MEDIUM
Network 		artica pandora_fms In Artica Pandora FMS through 7.42, an unauthenticated attacker can read the chat history. The file is in JSON format and it contains user names, user IDs, private messages, and timestamps. CWE-306
Missing Authentication for Critical Function 		CVE-2020-8497 2024-11-21 14:38 2020-03-24 Show GitHub Exploit DB Packet Storm
202733 6.7 MEDIUM
Local 		nextcloud desktop A code injection in Nextcloud Desktop Client 2.6.2 for macOS allowed to load arbitrary code when starting the client with DYLD_INSERT_LIBRARIES set in the environment. CWE-94
Code Injection 		CVE-2020-8140 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202734 6.5 MEDIUM
Network 		nextcloud
fedoraproject 		nextcloud_server
fedora 		A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL. CWE-862
 Missing Authorization 		CVE-2020-8139 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202735 6.5 MEDIUM
Network 		nextcloud nextcloud_server A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0.1, < 16.0.7, and < 15.0.14 allowed a Server-Side Request Forgery (SSRF) vulnerability when subscribing to a malicious calendar U… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-8138 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202736 9.8 CRITICAL
Network 		blamer_project blamer Code injection vulnerability in blamer 1.0.0 and earlier may result in remote code execution when the input can be controlled by an attacker. CWE-94
Code Injection 		CVE-2020-8137 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202737 7.5 HIGH
Network 		fastify fastify-multipart Prototype pollution vulnerability in fastify-multipart < 1.0.5 allows an attacker to crash fastify applications parsing multipart requests by sending a specially crafted request. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8136 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202738 9.8 CRITICAL
Network 		uppy uppy The uppy npm package < 1.9.3 is vulnerable to a Server-Side Request Forgery (SSRF) vulnerability, which allows an attacker to scan local or external network or otherwise interact with internal system… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-8135 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202739 8.1 HIGH
Network 		ghost ghost Server-side request forgery (SSRF) vulnerability in Ghost CMS < 3.10.0 allows an attacker to scan local or external network or otherwise interact with internal systems. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-8134 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm
202740 9.8 CRITICAL
Network 		liferay liferay_portal Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary code via JSON web services (JSONWS). CWE-502
 Deserialization of Untrusted Data 		CVE-2020-7961 2024-11-21 14:38 2020-03-21 Show GitHub Exploit DB Packet Storm