Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226071 6.8 警告 PulseCMS - Pulse CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0992 2012-12-20 19:28 2010-04-9 Show GitHub Exploit DB Packet Storm
226072 5.5 警告 PulseCMS - Pulse CMS の delete.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0989 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
226073 6 警告 PulseCMS - Pulse CMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0988 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
226074 6.8 警告 utilo - Rezervi の include/mail.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0983 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226075 7.5 危険 templateplazza - Joomla! 用の tpjobs コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0981 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226076 5 警告 pordus - PD PORTAL におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0977 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226077 7.5 危険 phpcityportal - PHPCityPortal の external.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0975 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226078 7.5 危険 phpcityportal - PHPCityPortal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0974 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226079 7.5 危険 scripteverkauf - phppool media Domain Verkaus および Auktions Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0973 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
226080 4.3 警告 yuri d'elia - dl Download Ticket Service の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0963 2012-12-20 19:28 2010-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197131 5.5 MEDIUM
Local 		lenovo pcmanager A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.200.2042, that could allow configuration files to be written to non-standard locations. CWE-276
Incorrect Default Permissions  		CVE-2020-8357 2024-11-21 14:38 2021-03-10 Show GitHub Exploit DB Packet Storm
197132 4.9 MEDIUM
Network 		lenovo xclarity_orchestrator An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in cl… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-8356 2024-11-21 14:38 2021-03-10 Show GitHub Exploit DB Packet Storm
197133 9.8 CRITICAL
Network 		fs-path_project fs-path fs-path node module before 0.0.25 is vulnerable to command injection by way of user-supplied inputs via the `copy`, `copySync`, `remove`, and `removeSync` methods. CWE-77
Command Injection 		CVE-2020-8298 2024-11-21 14:38 2021-03-5 Show GitHub Exploit DB Packet Storm
197134 6.7 MEDIUM
Local 		nextcloud
fedoraproject 		nextcloud_server
fedora 		Nextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage is not configured. CWE-521
Weak Password Requirements  		CVE-2020-8296 2024-11-21 14:38 2021-03-4 Show GitHub Exploit DB Packet Storm
197135 6.5 MEDIUM
Network 		mongodb mongodb A user authorized to perform database queries may trigger denial of service by issuing specially crafted query contain a type of regex. This issue affects MongoDB Server v3.6 versions prior to 3.6.21… NVD-CWE-Other
CVE-2020-7929 2024-11-21 14:38 2021-03-2 Show GitHub Exploit DB Packet Storm
197136 7.0 HIGH
Local 		opensuse cyrus-sasl A Insecure Temporary File vulnerability in the packaging of cyrus-sasl of openSUSE Factory allows local attackers to escalate to root. This issue affects: openSUSE Factory cyrus-sasl version 2.1.27-4… - CVE-2020-8032 2024-11-21 14:38 2021-02-25 Show GitHub Exploit DB Packet Storm
197137 4.3 MEDIUM
Network 		nextcloud deck Nextcloud Deck before 1.0.2 suffers from an insecure direct object reference (IDOR) vulnerability that permits users with a duplicate user identifier to access deck data of a previous deleted user. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-8297 2024-11-21 14:38 2021-02-24 Show GitHub Exploit DB Packet Storm
197138 4.4 MEDIUM
Local 		suse caas_platform A Insecure Temporary File vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to leak the bootstrapToken or modify the configuration file before it is processed, leading to arbitr… - CVE-2020-8030 2024-11-21 14:38 2021-02-12 Show GitHub Exploit DB Packet Storm
197139 4.0 MEDIUM
Local 		suse caas_platform A Incorrect Permission Assignment for Critical Resource vulnerability in skuba of SUSE CaaS Platform 4.5 allows local attackers to gain access to the kublet key. This issue affects: SUSE CaaS Platfor… - CVE-2020-8029 2024-11-21 14:38 2021-02-12 Show GitHub Exploit DB Packet Storm
197140 5.4 MEDIUM
Network 		opensuse open_build_service A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Open Build Service allows remote attackers to store JS code in markdown that is not properly es… - CVE-2020-8031 2024-11-21 14:38 2021-02-12 Show GitHub Exploit DB Packet Storm