Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246021 7.5 危険 grafik-power - Grafik CMS の admin/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2614 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
246022 7.5 危険 2daybiz - 2daybiz Job Site Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2610 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
246023 7.5 危険 2daybiz - 2daybiz Job Search Engine Script の show_search_result.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2609 2012-06-26 16:19 2010-07-2 Show GitHub Exploit DB Packet Storm
246024 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2545 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
246025 4.3 警告 The Cacti Group - Red Hat HPC Solution などの製品で使用される Cacti の utilities.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2544 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
246026 4.3 警告 The Cacti Group - Cacti の include/top_graph_header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2543 2012-06-26 16:19 2010-08-23 Show GitHub Exploit DB Packet Storm
246027 4.3 警告 adjam - rekonq におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2536 2012-06-26 16:19 2010-08-2 Show GitHub Exploit DB Packet Storm
246028 7.5 危険 2daybiz - 2daybiz MLM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2516 2012-06-26 16:19 2010-06-29 Show GitHub Exploit DB Packet Storm
246029 6.8 警告 dacian strain
Joomla!		 - Joomla! 用の JFaq コンポーネントの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2515 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
246030 4.3 警告 dacian strain
Joomla!		 - Joomla! 用の JFaq コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2514 2012-06-26 16:19 2010-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
217741 9.8 CRITICAL
Network 		softing opc Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely exe… CWE-787
 Out-of-bounds Write 		CVE-2020-14524 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217742 7.5 HIGH
Network 		softing opc Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to uncontrolled resource consumption, which may allow an attacker to cause a… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-14522 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217743 7.5 HIGH
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product uses a weak hash type, which may allow an attacker to view user passwords. CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-14512 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217744 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product contains a hard-coded credential for telnet, allowing an unprivileged attacker to execute commands as root. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-14510 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217745 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware GateManager versions prior to 9.2c, The affected product is vulnerable to an off-by-one error, which may allow an attacker to remotely execute arbitrary code or cause a denial-of-service condition. CWE-193
 Off-by-one Error 		CVE-2020-14508 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217746 9.8 CRITICAL
Network 		secomea gatemanager_8250_firmware Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data. CWE-476
 NULL Pointer Dereference 		CVE-2020-14500 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217747 6.0 MEDIUM
Local 		tuxfamily
fedoraproject
canonical 		chrony
fedora
ubuntu_linux 		A flaw was found in chrony versions before 3.5.1 when creating the PID file under the /var/run/chrony folder. The file is created during chronyd startup while still running as the root user, and when… CWE-59
Link Following 		CVE-2020-14367 2024-11-21 14:03 2020-08-25 Show GitHub Exploit DB Packet Storm
217748 7.3 HIGH
Local 		postgresql
debian
opensuse
canonical 		postgresql
debian_linux
leap
ubuntu_linux 		It was found that some PostgreSQL extensions did not use search_path safely in their installation script. An attacker with sufficient privileges could use this flaw to trick an administrator into exe… CWE-426
 Untrusted Search Path 		CVE-2020-14350 2024-11-21 14:03 2020-08-24 Show GitHub Exploit DB Packet Storm
217749 7.1 HIGH
Network 		postgresql
opensuse 		postgresql
leap 		It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly sanitize the search_path during logical replication. An authenticated attacker could use this flaw in … CWE-89
CWE-427
SQL Injection
 Uncontrolled Search Path Element 		CVE-2020-14349 2024-11-21 14:03 2020-08-24 Show GitHub Exploit DB Packet Storm
217750 5.3 MEDIUM
Network 		philips dreammapper Philips DreamMapper, Version 2.24 and prior. Information written to log files can give guidance to a potential attacker. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-14518 2024-11-21 14:03 2020-08-21 Show GitHub Exploit DB Packet Storm