Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225771	7.5	危険	SystemTap	-	SystemTap の stap-server における脆弱性	CWE-noinfo 情報不足	CVE-2010-0412	2012-12-20 19:28	2010-02-24	Show	GitHub Exploit DB Packet Storm

225772	7.5	危険	phpgroupware	-	phpgw における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0404	2012-12-20 19:28	2010-05-19	Show	GitHub Exploit DB Packet Storm

225773	6.8	警告	phpgroupware	-	phpgw の about.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0403	2012-12-20 19:28	2010-05-19	Show	GitHub Exploit DB Packet Storm

225774	9.3	危険	thegreenbow	-	TheGreenBow IPSec VPN Client の vpnconf.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0392	2012-12-20 19:28	2010-01-26	Show	GitHub Exploit DB Packet Storm

225775	6.8	警告	phpf1	-	PHP F1 Max の Image Uploader における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-0390	2012-12-20 19:28	2010-01-26	Show	GitHub Exploit DB Packet Storm

225776	5	警告	サン・マイクロシステムズ	-	Sun Java System Web Server の admin サーバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0389	2012-12-20 19:28	2010-01-25	Show	GitHub Exploit DB Packet Storm

225777	5	警告	The Tor Project	-	Tor におけるブリッジ ID などについて重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0385	2012-12-20 19:28	2010-01-25	Show	GitHub Exploit DB Packet Storm

225778	2.1	注意	The Tor Project	-	Tor におけるクライアントの ID を特定される脆弱性	CWE-200 情報漏えい	CVE-2010-0384	2012-12-20 19:28	2010-01-25	Show	GitHub Exploit DB Packet Storm

225779	5	警告	The Tor Project	-	Tor におけるトラフィックの送信元などの匿名性を侵害される脆弱性	CWE-200 情報漏えい	CVE-2010-0383	2012-12-20 19:28	2010-01-25	Show	GitHub Exploit DB Packet Storm

225780	7.5	危険	phpmyspace	-	PHP MySpace の modules/arcade/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0381	2012-12-20 19:28	2010-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211631	6.5	MEDIUM Network	freerdp opensuse debian	freerdp leap debian_linux	In FreeRDP less than or equal to 2.0.0, when running with logger set to "WLOG_TRACE", a possible crash of application could occur due to a read of an invalid array index. Data could be printed as str…	-	CVE-2020-11019	2024-11-21 13:56	2020-05-30	Show	GitHub Exploit DB Packet Storm

211632	6.5	MEDIUM Network	freerdp opensuse debian	freerdp leap debian_linux	In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could trigger out of bound reads causing memory allocation with random size. T…	-	CVE-2020-11018	2024-11-21 13:56	2020-05-30	Show	GitHub Exploit DB Packet Storm

211633	6.5	MEDIUM Network	freerdp opensuse debian	freerdp leap debian_linux	In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server. This is fixed in version 2.1.0.	-	CVE-2020-11017	2024-11-21 13:56	2020-05-30	Show	GitHub Exploit DB Packet Storm

211634	6.1	MEDIUM Network	kaminari_project debian	kaminari debian_linux	In Kaminari before 1.2.1, there is a vulnerability that would allow an attacker to inject arbitrary code into pages with pagination links. This has been fixed in 1.2.1.	-	CVE-2020-11082	2024-11-21 13:56	2020-05-29	Show	GitHub Exploit DB Packet Storm

211635	9.8	CRITICAL Network	node-dns-sync_project	node-dns-sync	node-dns-sync (npm module dns-sync) through 0.2.0 allows execution of arbitrary commands . This issue may lead to remote code execution if a client of the library calls the vulnerable method with unt…	CWE-77 Command Injection	CVE-2020-11079	2024-11-21 13:56	2020-05-29	Show	GitHub Exploit DB Packet Storm

211636	9.9	CRITICAL Network	anchore	engine	In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a registry, can be used to trigger a shell escape flaw in the anchore engine analyzer service during an ima…	NVD-CWE-Other	CVE-2020-11075	2024-11-21 13:56	2020-05-28	Show	GitHub Exploit DB Packet Storm

211637	7.5	HIGH Network	aegir_project	aegir	In AEgir greater than or equal to 21.7.0 and less than 21.10.1, aegir publish and aegir build may leak secrets from environment variables in the browser bundle published to npm. This has been fixed i…	CWE-200 Information Exposure	CVE-2020-11059	2024-11-21 13:56	2020-05-28	Show	GitHub Exploit DB Packet Storm

211638	7.8	HIGH Local	sympa fedoraproject debian canonical	sympa fedora debian_linux ubuntu_linux	Sympa before 6.2.56 allows privilege escalation.	CWE-269 Improper Privilege Management	CVE-2020-10936	2024-11-21 13:56	2020-05-28	Show	GitHub Exploit DB Packet Storm

211639	6.1	MEDIUM Network	centreon	centreon_host-monitoring_widget centreon_tactical-overview_widget centreon_service-monitoring_widget	Cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the page parameter to service-monitoring/src/index.php. This vulnerability is fixed in vers…	CWE-79 Cross-site Scripting	CVE-2020-10946	2024-11-21 13:56	2020-05-28	Show	GitHub Exploit DB Packet Storm

211640	4.3	MEDIUM Adjacent	centreon	widget-host-monitoring centreon	Centreon before 19.10.7 exposes Session IDs in server responses.	CWE-200 Information Exposure	CVE-2020-10945	2024-11-21 13:56	2020-05-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed