Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227131	7.5	危険	Pligg	-	Pligg における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2577	2012-12-20 19:29	2010-08-11	Show	GitHub Exploit DB Packet Storm

227132	9.3	危険	raphael assenat	-	libmikmod の loaders/load_it.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2546	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227133	10	危険	UMN	-	mapserv.c の MapServer における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2540	2012-12-20 19:29	2010-08-2	Show	GitHub Exploit DB Packet Storm

227134	2.1	注意	UMN	-	MapServer の mapserv におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2539	2012-12-20 19:29	2010-07-22	Show	GitHub Exploit DB Packet Storm

227135	5	警告	skbuff	-	Mandriva Linux 上で稼動する iputils の ping.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2529	2012-12-20 19:29	2010-07-28	Show	GitHub Exploit DB Packet Storm

227136	5	警告	SaschArt	-	Soft SaschArt SasCAM Webcam Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2505	2012-12-20 19:29	2010-06-28	Show	GitHub Exploit DB Packet Storm

227137	6	警告	Splunk	-	Splunk における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2010-2504	2012-12-20 19:29	2010-05-3	Show	GitHub Exploit DB Packet Storm

227138	4.3	警告	Splunk	-	Splunk におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2503	2012-12-20 19:29	2010-05-3	Show	GitHub Exploit DB Packet Storm

227139	7.5	危険	Splunk	-	Splunk におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2502	2012-12-20 19:29	2010-05-3	Show	GitHub Exploit DB Packet Storm

227140	5	警告	レッドハット	-	JBoss Enterprise SOA Platform の picketlink-sts.war におけるアクセス制限を回避される脆弱性	CWE-16 環境設定	CVE-2010-2493	2012-12-20 19:29	2010-07-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209091	6.1	MEDIUM Network	xiuno	xiunobbs	Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote attackers to execute arbitrary web script or HTML via the attachment upload function.	CWE-79 Cross-site Scripting	CVE-2020-19914	2024-11-21 14:09	2022-09-8	Show	GitHub Exploit DB Packet Storm

209092	6.1	MEDIUM Network	wuzhicms	wuzhi_cms	A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote attackers to execute arbitrary web script or HTML via the imgurl parameter.	CWE-79 Cross-site Scripting	CVE-2020-19897	2024-11-21 14:09	2022-06-29	Show	GitHub Exploit DB Packet Storm

209093	9.8	CRITICAL Network	1234n	minicms	File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php.	NVD-CWE-Other	CVE-2020-19896	2024-11-21 14:09	2022-06-29	Show	GitHub Exploit DB Packet Storm

209094	7.2	HIGH Network	bludit	bludit	An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-19228	2024-11-21 14:09	2022-05-11	Show	GitHub Exploit DB Packet Storm

209095	8.8	HIGH Network	piwigo	piwigo	SQL Injection vulnerability in admin/batch_manager.php in piwigo v2.9.5, via the filter_category parameter to admin.php?page=batch_manager.	CWE-89 SQL Injection	CVE-2020-19217	2024-11-21 14:09	2022-05-6	Show	GitHub Exploit DB Packet Storm

209096	8.8	HIGH Network	piwigo	piwigo	SQL Injection vulnerability in admin/user_perm.php in piwigo v2.9.5, via the cat_false parameter to admin.php?page=group_perm.	CWE-89 SQL Injection	CVE-2020-19216	2024-11-21 14:09	2022-05-6	Show	GitHub Exploit DB Packet Storm

209097	8.8	HIGH Network	piwigo	piwigo	SQL Injection vulnerability in admin/user_perm.php in piwigo v2.9.5, via the cat_false parameter to admin.php?page=user_perm.	CWE-89 SQL Injection	CVE-2020-19215	2024-11-21 14:09	2022-05-6	Show	GitHub Exploit DB Packet Storm

209098	9.8	CRITICAL Network	piwigo	piwigo	SQL Injection vulnerability in cat_move.php in piwigo v2.9.5, via the selection parameter to move_categories.	CWE-89 SQL Injection	CVE-2020-19213	2024-11-21 14:09	2022-05-6	Show	GitHub Exploit DB Packet Storm

209099	4.9	MEDIUM Network	piwigo	piwigo	SQL Injection vulnerability in admin/group_list.php in piwigo v2.9.5, via the group parameter to delete.	CWE-89 SQL Injection	CVE-2020-19212	2024-11-21 14:09	2022-05-6	Show	GitHub Exploit DB Packet Storm

209100	9.8	CRITICAL Network	jeesite	jeesite	Jeesite 1.2.7 uses the apache shiro version 1.2.3 affected by CVE-2016-4437. Because of this version of the java deserialization vulnerability, an attacker could exploit the vulnerability to execute …	CWE-502 Deserialization of Untrusted Data	CVE-2020-19229	2024-11-21 14:09	2022-04-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed