Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228271	7.5	危険	redcomponent	-	Joomla! 用の redSHOP コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1531	2012-12-20 19:29	2010-04-26	Show	GitHub Exploit DB Packet Storm

228272	2.1	注意	reyero	-	Drupal 用の Internationalization モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1530	2012-12-20 19:29	2010-04-7	Show	GitHub Exploit DB Packet Storm

228273	6.8	警告	Uiga	-	Uiga Proxy の include/template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1528	2012-12-20 19:29	2010-04-26	Show	GitHub Exploit DB Packet Storm

228274	7.5	危険	taskfreak	-	TaskFreak! Original マルチユーザの include/classes/tzn_user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1521	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

228275	4.3	警告	taskfreak	-	TaskFreak! Original multi user の logout.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1520	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

228276	9.3	危険	SWFTools	-	SWFTools における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1516	2012-12-20 19:29	2010-08-17	Show	GitHub Exploit DB Packet Storm

228277	2.6	注意	tomatocms	-	TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1515	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

228278	6	警告	tomatocms	-	TomatoCMS における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2010-1514	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

228279	4.3	警告	tatsuhiro tsujikawa	-	aria2 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1512	2012-12-20 19:29	2010-05-17	Show	GitHub Exploit DB Packet Storm

228280	3.5	注意	PmWiki	-	PmWiki の table 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1481	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202971	9.8	CRITICAL Network	freebsd	freebsd	In FreeBSD 12.1-STABLE before r360971, 12.1-RELEASE before p5, 11.4-STABLE before r360971, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, libalias does not properly validate packet length resulting…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-7454	2024-11-21 14:37	2020-05-14	Show	GitHub Exploit DB Packet Storm

202972	5.3	MEDIUM Network	jooby	jooby	All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors.	CWE-22 Path Traversal	CVE-2020-7647	2024-11-21 14:37	2020-05-12	Show	GitHub Exploit DB Packet Storm

202973	7.8	HIGH Local	mcafee	active_response	Privilege Escalation vulnerability in McAfee Active Response (MAR) for Mac prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been…	CWE-269 Improper Privilege Management	CVE-2020-7291	2024-11-21 14:37	2020-05-8	Show	GitHub Exploit DB Packet Storm

202974	9.8	CRITICAL Network	infomark	iml500_firmware iml520_firmware	An issue was discovered on KT Slim egg IML500 (R7283, R8112, R8424) and IML520 (R8112, R8368, R8411) wifi device. This issue is a command injection allowing attackers to execute arbitrary OS commands.	CWE-78 OS Command	CVE-2020-7805	2024-11-21 14:37	2020-05-8	Show	GitHub Exploit DB Packet Storm

202975	8.8	HIGH Network	imgtech	zoneplayer	IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to…	NVD-CWE-noinfo	CVE-2020-7803	2024-11-21 14:37	2020-05-8	Show	GitHub Exploit DB Packet Storm

202976	9.8	CRITICAL Network	curlrequest_project	curlrequest	curlrequest through 1.0.1 allows reading any file by populating the file parameter with user input.	CWE-78 OS Command	CVE-2020-7646	2024-11-21 14:37	2020-05-8	Show	GitHub Exploit DB Packet Storm

202977	7.5	HIGH Network	citrix	sharefile_storagezones_controller	In certain situations, all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, allow unauthenticated attackers to acces…	CWE-22 Path Traversal	CVE-2020-7473	2024-11-21 14:37	2020-05-7	Show	GitHub Exploit DB Packet Storm

202978	9.8	CRITICAL Network	tobesoft	xplatform	Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allows attacker to cause remote code executi…	CWE-494 Download of Code Without Integrity Check	CVE-2020-7806	2024-11-21 14:37	2020-05-6	Show	GitHub Exploit DB Packet Storm

202979	9.8	CRITICAL Network	google	chrome-launcher	All versions of chrome-launcher allow execution of arbitrary commands, by controlling the $HOME environment variable in Linux operating systems.	CWE-78 OS Command	CVE-2020-7645	2024-11-21 14:37	2020-05-3	Show	GitHub Exploit DB Packet Storm

202980	8.8	HIGH Network	netfortris	trixbox	An OS Command Injection vulnerability in the endpoint_devicemap.php component of Fonality Trixbox Community Edition allows an attacker to execute commands on the underlying operating system as the "a…	CWE-78 OS Command	CVE-2020-7351	2024-11-21 14:37	2020-05-2	Show	GitHub Exploit DB Packet Storm