Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226221	6.8	警告	Uiga	-	Uiga Proxy の include/template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1528	2012-12-20 19:29	2010-04-26	Show	GitHub Exploit DB Packet Storm

226222	7.5	危険	taskfreak	-	TaskFreak! Original マルチユーザの include/classes/tzn_user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1521	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

226223	4.3	警告	taskfreak	-	TaskFreak! Original multi user の logout.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1520	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

226224	9.3	危険	SWFTools	-	SWFTools における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1516	2012-12-20 19:29	2010-08-17	Show	GitHub Exploit DB Packet Storm

226225	2.6	注意	tomatocms	-	TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1515	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

226226	6	警告	tomatocms	-	TomatoCMS における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2010-1514	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

226227	4.3	警告	tatsuhiro tsujikawa	-	aria2 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1512	2012-12-20 19:29	2010-05-17	Show	GitHub Exploit DB Packet Storm

226228	3.5	注意	PmWiki	-	PmWiki の table 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1481	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

226229	7.5	危険	rockettheme	-	Joomla! 用の Rokmodule コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1480	2012-12-20 19:29	2010-04-13	Show	GitHub Exploit DB Packet Storm

226230	7.5	危険	rockettheme	-	Joomla! 用の Rokmodule コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1479	2012-12-20 19:29	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200541	7.8	HIGH Local	installbuilder	installbuilder	InstallBuilder for Qt Windows (versions prior to 20.7.0) installers look for plugins at a predictable location at initialization time, writable by non-admin users. While those plugins are not require…	CWE-427 Uncontrolled Search Path Element	CVE-2020-3979	2024-11-21 14:32	2020-09-19	Show	GitHub Exploit DB Packet Storm

200542	6.1	MEDIUM Local	vmware	horizon_client workstation_player workstation_pro	VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (JPEG2000 parser). A malicious actor with normal…	CWE-125 Out-of-bounds Read	CVE-2020-3988	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200543	6.1	MEDIUM Local	vmware	horizon_client workstation_player workstation_pro	VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMR STRETCHDIBITS parser). A malicious actor wi…	CWE-125 Out-of-bounds Read	CVE-2020-3987	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200544	6.5	MEDIUM Local	vmware	horizon_client workstation_player workstation_pro	VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an information disclosure vulnerability due to an integer overflow issue in Cortado ThinPrint component. A maliciou…	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2020-3990	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200545	3.3	LOW Local	vmware	horizon_client workstation_player workstation_pro	VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain a denial of service vulnerability due to an out-of-bounds write issue in Cortado ThinPrint component. A malicious a…	CWE-787 Out-of-bounds Write	CVE-2020-3989	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200546	6.1	MEDIUM Local	vmware	horizon_client workstation_player workstation_pro	VMware Workstation (15.x) and Horizon Client for Windows (5.x before 5.4.4) contain an out-of-bounds read vulnerability in Cortado ThinPrint component (EMF Parser). A malicious actor with normal acce…	CWE-125 Out-of-bounds Read	CVE-2020-3986	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200547	6.7	MEDIUM Local	vmware	fusion	VMware Fusion (11.x) contains a privilege escalation vulnerability due to the way it allows configuring the system wide path. An attacker with normal user privileges may exploit this issue to trick a…	NVD-CWE-noinfo	CVE-2020-3980	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200548	8.2	HIGH Network	ibm	maximo_for_life_sciences maximo_for_transportation control_desk maximo_for_oil_and_gas maximo_for_aviation maximo_for_utilities maximo_for_nuclear_power maximo_equipment_maintena…	IBM Maximo Asset Management 7.6.0 and 7.6.1 could allow a remote attacker to conduct phishing attacks, using a tabnabbing attack. By persuading a victim to visit a specially-crafted Web site, a remot…	CWE-601 Open Redirect	CVE-2020-4409	2024-11-21 14:32	2020-09-17	Show	GitHub Exploit DB Packet Storm

200549	5.4	MEDIUM Network	ibm	business_process_manager business_automation_workflow	IBM Business Automation Workflow C.D.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in…	CWE-79 Cross-site Scripting	CVE-2020-4530	2024-11-21 14:32	2020-09-15	Show	GitHub Exploit DB Packet Storm

200550	4.3	MEDIUM Network	ibm	maximo_asset_management	IBM Maximo Asset Management 7.6.0 and 7.6.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the we…	CWE-352 Origin Validation Error	CVE-2020-4526	2024-11-21 14:32	2020-09-15	Show	GitHub Exploit DB Packet Storm