Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
133071	7.5	重要 Network	MiniCMS project	MiniCMS	MiniCMS の post-edit.php におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2020-36051	2021-09-10 17:55	2020-12-23	Show	GitHub Exploit DB Packet Storm

133072	5.4	警告 Network	デル	Dell EMC PowerMax OS Dell EMC Unisphere	複数の Dell EMC 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2020-35170	2021-09-10 17:55	2020-12-14	Show	GitHub Exploit DB Packet Storm

133073	6.7	警告 Local	デル	EMC PowerStore ファームウェア	Dell EMC PowerStore における重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2020-29502	2021-09-10 17:55	2020-12-15	Show	GitHub Exploit DB Packet Storm

133074	6.7	警告 Local	デル	EMC PowerStore ファームウェア	Dell EMC PowerStore における重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2020-29501	2021-09-10 17:55	2020-12-15	Show	GitHub Exploit DB Packet Storm

133075	6.7	警告 Local	デル	EMC PowerStore ファームウェア	Dell EMC PowerStore における重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2020-29500	2021-09-10 17:55	2020-12-15	Show	GitHub Exploit DB Packet Storm

133076	6.7	警告 Local	デル	Dell EMC UnityVSA Operating Environment Dell EMC Unity Operating Environment Dell EMC Unity XT Operating Environment	複数の Dell EMC 製品におけるログファイルからの情報漏えいに関する脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2020-26199	2021-09-10 17:55	2020-12-17	Show	GitHub Exploit DB Packet Storm

133077	7.8	重要 Local	デル	Dell EMC Isilon OneFS	Dell EMC Isilon OneFS および Dell EMC PowerScale OneFS における権限管理に関する脆弱性	CWE-269 不適切な権限管理	CVE-2020-26181	2021-09-10 17:55	2020-10-4	Show	GitHub Exploit DB Packet Storm

133078	2.3	低 Local	Gigamon	GigaVUE	GigaVUE-OS における暗号アルゴリズムの使用に関する脆弱性	CWE-327 不完全、または危険な暗号アルゴリズムの使用	CVE-2020-23250	2021-09-10 17:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

133079	4.7	警告 Network	Gigamon	GigaVUE	GigaVUE-OS における重要な情報の平文保存に関する脆弱性	CWE-312 重要な情報の平文保存	CVE-2020-23249	2021-09-10 17:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

133080	8.1	重要 Network	Viki Solutions	Vera	Viki Vera におけるリクエストの直接送信に関する脆弱性	CWE-425 リクエストの直接送信	CVE-2019-20484	2021-09-10 17:54	2020-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306951	-	apache	tomcat	The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to hijack a session via script access to a cookie.	CWE-16 Configuration	CVE-2010-4312	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306952	-	dustincowell	free_simple_software	Free Simple Software 1.0 stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information.	CWE-310 Cryptographic Issues	CVE-2010-4311	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306953	-	dustincowell	free_simple_software	SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id parameter in a download_now action to ind…	CWE-89 SQL Injection	CVE-2010-4298	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306954	-	apache	tomcat	Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2010-4172	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306955	-	wireshark	wireshark	epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted ZCL packet, related t…	CWE-399 Resource Management Errors	CVE-2010-4301	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306956	-	wireshark	wireshark	Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector in Wireshark 1.2.0 through 1.2.12 and 1.4.0 through 1.4.1 allows remote attacker…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-4300	2024-11-21 10:20	2010-11-27	Show	GitHub Exploit DB Packet Storm

306957	-	cisco	unified_videoconferencing_system_5110_firmware unified_videoconferencing_system_5115_firmware unified_videoconferencing_system_5110 unified_videoconferencing_system_5115	Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover enc…	CWE-255 Credentials Management	CVE-2010-4303	2024-11-21 10:20	2010-11-23	Show	GitHub Exploit DB Packet Storm

306958	-	cisco	unified_videoconferencing_system_5110_firmware unified_videoconferencing_system_5115_firmware unified_videoconferencing_system_5110 unified_videoconferencing_system_5115	/opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, when the Linux operating system is used, uses a weak hashing algorithm for the (1) ad…	CWE-310 Cryptographic Issues	CVE-2010-4302	2024-11-21 10:20	2010-11-23	Show	GitHub Exploit DB Packet Storm

306959	-	openfabrics	libsdp	The default configuration of libsdp.conf in libsdp 1.1.104 and earlier creates log files in /tmp, which allows local users to overwrite arbitrary files via a (1) symlink or (2) hard link attack on th…	CWE-59 Link Following	CVE-2010-4173	2024-11-21 10:20	2010-11-23	Show	GitHub Exploit DB Packet Storm

306960	-	imagemagick	imagemagick	Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows local users to gain privileges via a Trojan horse configuration …	NVD-CWE-Other	CVE-2010-4167	2024-11-21 10:20	2010-11-23	Show	GitHub Exploit DB Packet Storm