Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228261	9.3	危険	zipgenius	-	ZipGenius の zqtips.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1597	2012-12-20 19:29	2010-04-29	Show	GitHub Exploit DB Packet Storm

228262	6.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-1596	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228263	4.3	警告	SilverStripe	-	SilverStripe におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1593	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228264	6.9	警告	SiSoftware	-	SiSoftware Sandra の Sandra Device Driver におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1592	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228265	7.2	危険	Beijing Rising International Software	-	Beijing Rising International Rising Antivirus における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1591	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228266	4.3	警告	vpasp	-	Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1590	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228267	5	警告	vpasp	-	Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1589	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228268	7.5	危険	vpasp	-	Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1588	2012-12-20 19:29	2010-04-28	Show	GitHub Exploit DB Packet Storm

228269	2.1	注意	Steven Jones	-	Drupal 用の Context モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1584	2012-12-20 19:29	2010-05-10	Show	GitHub Exploit DB Packet Storm

228270	7.5	危険	tirzen taskfreak	-	TaskFreak! で使用されている Tirzen Framework の tzn_mysql.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1583	2012-12-20 19:29	2010-05-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
203011	5.3	MEDIUM Network	confinit_project	confinit	confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7638	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203012	5.3	MEDIUM Network	class-transformer_project	class-transformer	class-transformer before 0.3.1 allow attackers to perform Prototype Pollution. The classToPlainFromExist function could be tricked into adding or modifying properties of Object.prototype using a __pr…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7637	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203013	9.8	CRITICAL Network	adb-driver_project	adb-driver	adb-driver through 0.1.8 is vulnerable to Command Injection.It allows execution of arbitrary commands via the command function.	CWE-78 OS Command	CVE-2020-7636	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203014	9.8	CRITICAL Network	compass-compile_project	compass-compile	compass-compile through 0.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via tha options argument.	CWE-78 OS Command	CVE-2020-7635	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203015	9.8	CRITICAL Network	heroku-addonpool_project	heroku-addonpool	heroku-addonpool through 0.1.15 is vulnerable to Command Injection.	CWE-78 OS Command	CVE-2020-7634	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203016	9.8	CRITICAL Network	apiconnect-cli-plugins_project	apiconnect-cli-plugins	apiconnect-cli-plugins through 6.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via the pluginUri argument.	CWE-78 OS Command	CVE-2020-7633	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203017	9.8	CRITICAL Network	node-mpv_project	node-mpv	node-mpv through 1.4.3 is vulnerable to Command Injection. It allows execution of arbitrary commands via the options argument.	CWE-78 OS Command	CVE-2020-7632	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203018	9.8	CRITICAL Network	diskusage-ng_project	diskusage-ng	diskusage-ng through 0.2.4 is vulnerable to Command Injection.It allows execution of arbitrary commands via the path argument.	CWE-78 OS Command	CVE-2020-7631	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

203019	9.8	CRITICAL Network	git-add-remote_project	git-add-remote	git-add-remote through 1.0.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the name argument.	CWE-78 OS Command	CVE-2020-7630	2024-11-21 14:37	2020-04-3	Show	GitHub Exploit DB Packet Storm

203020	9.8	CRITICAL Network	install-package_project	install-package	install-package through 0.4.0 is vulnerable to Command Injection. It allows execution of arbitrary commands via the options argument.	CWE-78 OS Command	CVE-2020-7629	2024-11-21 14:37	2020-04-3	Show	GitHub Exploit DB Packet Storm