Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228331 4 警告 PulseCMS - Pulse CMS の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1298 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228332 7.5 危険 Zabbix - Zabbix の API における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1277 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228333 4.3 警告 webtoolkit - Emweb Wt におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1274 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228334 7.5 危険 smart-plugs - smartplugs の showplugs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1271 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228335 7.5 危険 phpscripte24 - Multi Auktions Komplett System の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1270 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228336 7.5 危険 phpscripte24 - phpscripte24 Niedrig Gebote Pro Auktions System II の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1269 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228337 6.8 警告 stafford.uklinux - libESMTP の smtp-tls.c における信頼済み証明書を偽装される脆弱性 CWE-310
暗号の問題 		CVE-2010-1194 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228338 6.8 警告 stafford.uklinux - libESMTP における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2010-1192 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228339 6.4 警告 sahanafoundation - Sahana 災害管理システムにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-1191 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228340 10 危険 SAP - SAP MaxDB の serv.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1185 2012-12-20 19:29 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
203081 6.1 MEDIUM
Network 		hive netius netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues and request smuggling attacks might be possible due to incorrect Transfer encoding header parsing which could a… CWE-444
HTTP Request Smuggling 		CVE-2020-7655 2024-11-21 14:37 2020-05-22 Show GitHub Exploit DB Packet Storm
203082 6.1 MEDIUM
Network 		jquery
oracle
netapp
juniper 		jquery
peoplesoft_enterprise_peopletools
snap_creator_framework
cloud_backup
oncommand_system_manager
active_iq_unified_manager
junos 		jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >… CWE-79
Cross-site Scripting 		CVE-2020-7656 2024-11-21 14:37 2020-05-20 Show GitHub Exploit DB Packet Storm
203083 6.1 MEDIUM
Network 		altools alsong ALSong 3.46 and earlier version contain a Document Object Model (DOM) based cross-site scripting vulnerability caused by improper validation of user input. A remote attacker could exploit this vulner… CWE-79
Cross-site Scripting 		CVE-2020-7809 2024-11-21 14:37 2020-05-16 Show GitHub Exploit DB Packet Storm
203084 5.5 MEDIUM
Local 		freebsd freebsd In FreeBSD 12.1-STABLE before r360973, 12.1-RELEASE before p5, 11.4-STABLE before r360973, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, the FTP packet handler in libalias incorrectly calculates s… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2020-7455 2024-11-21 14:37 2020-05-14 Show GitHub Exploit DB Packet Storm
203085 9.8 CRITICAL
Network 		freebsd freebsd In FreeBSD 12.1-STABLE before r360971, 12.1-RELEASE before p5, 11.4-STABLE before r360971, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, libalias does not properly validate packet length resulting… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-7454 2024-11-21 14:37 2020-05-14 Show GitHub Exploit DB Packet Storm
203086 5.3 MEDIUM
Network 		jooby jooby All versions before 1.6.7 and all versions after 2.0.0 inclusive and before 2.8.2 of io.jooby:jooby and org.jooby:jooby are vulnerable to Directory Traversal via two separate vectors. CWE-22
Path Traversal 		CVE-2020-7647 2024-11-21 14:37 2020-05-12 Show GitHub Exploit DB Packet Storm
203087 7.8 HIGH
Local 		mcafee active_response Privilege Escalation vulnerability in McAfee Active Response (MAR) for Mac prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been… CWE-269
 Improper Privilege Management 		CVE-2020-7291 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
203088 9.8 CRITICAL
Network 		infomark iml500_firmware
iml520_firmware 		An issue was discovered on KT Slim egg IML500 (R7283, R8112, R8424) and IML520 (R8112, R8368, R8411) wifi device. This issue is a command injection allowing attackers to execute arbitrary OS commands. CWE-78
OS Command  		CVE-2020-7805 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
203089 8.8 HIGH
Network 		imgtech zoneplayer IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to… NVD-CWE-noinfo
CVE-2020-7803 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm
203090 9.8 CRITICAL
Network 		curlrequest_project curlrequest curlrequest through 1.0.1 allows reading any file by populating the file parameter with user input. CWE-78
OS Command  		CVE-2020-7646 2024-11-21 14:37 2020-05-8 Show GitHub Exploit DB Packet Storm