Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226281	4.3	警告	webtoolkit	-	Emweb Wt におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1274	2012-12-20 19:29	2010-04-6	Show	GitHub Exploit DB Packet Storm

226282	7.5	危険	smart-plugs	-	smartplugs の showplugs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1271	2012-12-20 19:29	2010-04-6	Show	GitHub Exploit DB Packet Storm

226283	7.5	危険	phpscripte24	-	Multi Auktions Komplett System の auktion.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1270	2012-12-20 19:29	2010-04-6	Show	GitHub Exploit DB Packet Storm

226284	7.5	危険	phpscripte24	-	phpscripte24 Niedrig Gebote Pro Auktions System II の auktion.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1269	2012-12-20 19:29	2010-04-6	Show	GitHub Exploit DB Packet Storm

226285	6.8	警告	stafford.uklinux	-	libESMTP の smtp-tls.c における信頼済み証明書を偽装される脆弱性	CWE-310 暗号の問題	CVE-2010-1194	2012-12-20 19:29	2010-03-31	Show	GitHub Exploit DB Packet Storm

226286	6.8	警告	stafford.uklinux	-	libESMTP における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2010-1192	2012-12-20 19:29	2010-03-31	Show	GitHub Exploit DB Packet Storm

226287	6.4	警告	sahanafoundation	-	Sahana 災害管理システムにおけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-1191	2012-12-20 19:29	2010-03-31	Show	GitHub Exploit DB Packet Storm

226288	10	危険	SAP	-	SAP MaxDB の serv.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1185	2012-12-20 19:29	2010-03-29	Show	GitHub Exploit DB Packet Storm

226289	3.3	注意	サン・マイクロシステムズ	-	Oracle Solaris の特定の patch-installation スクリプトにおける任意のファイルへのデータを追加される脆弱性	CWE-59 リンク解釈の問題	CVE-2010-1183	2012-12-20 19:29	2010-03-29	Show	GitHub Exploit DB Packet Storm

226290	4.3	警告	phpmysite	-	phpMySite の contact.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1091	2012-12-20 19:29	2010-03-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196841	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation o…	CWE-287 Improper Authentication	CVE-2020-8709	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196842	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adj…	CWE-287 Improper Authentication	CVE-2020-8708	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196843	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Buffer overflow in daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via a…	CWE-120 Classic Buffer Overflow	CVE-2020-8707	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196844	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Buffer overflow in a daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via…	CWE-120 Classic Buffer Overflow	CVE-2020-8706	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196845	9.6	CRITICAL Network	google	asylo	An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-8904	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196846	6.5	MEDIUM Network	google	asylo	A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'enc_untrusted_recvfrom' function generates a return valu…	CWE-120 Classic Buffer Overflow	CVE-2020-8905	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196847	8.8	HIGH Network	android	play_core_library	A local, arbitrary code execution vulnerability exists in the SplitCompat.install endpoint in Android's Play Core Library versions prior to 1.7.2. A malicious attacker could create an apk which targe…	CWE-22 Path Traversal	CVE-2020-8913	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196848	2.5	LOW Local	amazon	aws_s3_crypto_sdk	A vulnerability in the in-band key negotiation exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. An attacker with write access to the targeted bucket can change the encryption algorith…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-8912	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196849	5.6	MEDIUM Local	amazon	aws_s3_crypto_sdk	A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. The SDK allows users to encrypt files with AES-CBC without computing a Message Authentication Code (MAC…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-8911	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196850	7.1	HIGH Local	google	go-tpm	An improperly initialized 'migrationAuth' value in Google's go-tpm TPM1.2 library versions prior to 0.3.0 can lead an eavesdropping attacker to discover the auth value for a key created with CreateWr…	CWE-665 Improper Initialization	CVE-2020-8918	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm