Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225821 4.6 警告 SanDisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおける平文のドライブコンテンツをアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0224 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
225822 7.2 危険 TIBCO Software - TRA の TIBCO Domain Utility におけるドメイン管理者の資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0184 2012-12-20 19:28 2010-01-14 Show GitHub Exploit DB Packet Storm
225823 3.3 注意 Puppet - Puppet における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0156 2012-12-20 19:28 2010-03-3 Show GitHub Exploit DB Packet Storm
225824 9.3 危険 サン・マイクロシステムズ - OOo における任意のマクロを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0136 2012-12-20 19:28 2010-02-16 Show GitHub Exploit DB Packet Storm
225825 2.6 注意 ViewVC - ViewVC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0132 2012-12-20 19:28 2010-03-29 Show GitHub Exploit DB Packet Storm
225826 2.1 注意 timeclock-software - Employee Timeclock Software における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0124 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
225827 5 警告 timeclock-software - Employee Timeclock Software のデータベースバックアップ実装におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0123 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
225828 7.5 危険 timeclock-software - Employee Timeclock Software における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0122 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
225829 10 危険 シマンテック - Symantec AntiVirus および Symantec Client Security の Symantec Client Proxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0108 2012-12-20 19:28 2010-02-17 Show GitHub Exploit DB Packet Storm
225830 9.3 危険 シマンテック - Symantec N360 などの SYMLTCOM.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0107 2012-12-20 19:28 2010-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212041 7.8 HIGH
Local 		targetcli-fb_project targetcli-fb A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10699 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212042 8.8 HIGH
Network 		icatchinc dvr_firmware iCatch DVR firmware before 20200103 do not validate function parameter properly, resulting attackers executing arbitrary command. CWE-77
Command Injection 		CVE-2020-10514 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212043 6.5 MEDIUM
Network 		icatchinc dvr_interface The file management interface of iCatch DVR firmware before 20200103 contains broken access control which allows the attacker to remotely manipulate arbitrary file. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10513 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212044 8.8 HIGH
Network 		hgiga oaklouds_ccm\@il HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows attackers to injecting SQL commands i… CWE-89
SQL Injection 		CVE-2020-10512 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212045 9.8 CRITICAL
Network 		hgiga oaklouds_ccm\@il HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. Attackers can exploit these flaws to access unauthorized functi… CWE-78
OS Command  		CVE-2020-10511 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212046 9.8 CRITICAL
Network 		the_school_manage_system_project the_school_manage_system The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Unrestricted file upload (RCE) , that would allow attackers to gain access in the hosting ma… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-10507 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212047 7.5 HIGH
Network 		the_school_manage_system_project the_school_manage_system The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of Path Traversal, allowing attackers to access arbitrary files. CWE-22
Path Traversal 		CVE-2020-10506 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212048 9.8 CRITICAL
Network 		the_school_manage_system_project the_school_manage_system The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of SQL Injection, an attacker can use a union based injection query string to get databases sch… CWE-89
SQL Injection 		CVE-2020-10505 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212049 7.8 HIGH
Local 		mbconnectline mymbconnect24
mbconnect24 		An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.6.1. There is a local privilege escalation from the www-data account to the root accoun… CWE-269
 Improper Privilege Management 		CVE-2020-10384 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm
212050 9.8 CRITICAL
Network 		mbconnectline mymbconnect24
mbconnect24 		An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated remote code execution in the com_mb24sysapi module. NVD-CWE-noinfo
CVE-2020-10383 2024-11-21 13:55 2020-04-15 Show GitHub Exploit DB Packet Storm