Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249341	7.2	危険	FreeBSD	-	FreeBSD の pfs_getextattr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4210	2012-03-27 18:42	2010-11-10	Show	GitHub Exploit DB Packet Storm

249342	4.3	警告	Mozilla Foundation Yahoo!	-	Bugzilla で使用される YUI の Flash コンポーネント構造におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4209	2012-03-27 18:42	2010-11-7	Show	GitHub Exploit DB Packet Storm

249343	4.3	警告	Moodle Yahoo! Mozilla Foundation	-	Bugzilla などの製品で使用される YUI の Flash コンポーネント構造におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4208	2012-03-27 18:42	2010-11-7	Show	GitHub Exploit DB Packet Storm

249344	4.9	警告	Linux	-	Linux kernel の net/rds/rdma.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-4175	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

249345	7.8	危険	Linux	-	Linux kernel の x25_parse_facilities 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-4164	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

249346	4.3	警告	Moodle Yahoo! Mozilla Foundation	-	Bugzilla などの製品で使用される YUI の Flash コンポーネント構造におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4207	2012-03-27 18:42	2010-11-7	Show	GitHub Exploit DB Packet Storm

249347	7.5	危険	onlinetechtools.com	-	OWOS の process.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4186	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

249348	7.5	危険	energine	-	Energine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4185	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

249349	5	警告	netsupportsoftware	-	NSM における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-4184	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

249350	4.3	警告	htmlpurifier マイクロソフト	-	HTML Purifier におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4183	2012-03-27 18:42	2010-09-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197681	5.3	MEDIUM Network	ui	unifi_protect	An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP res…	CWE-209 Information Exposure Through an Error Message	CVE-2020-8213	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197682	8.1	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An improper authentication vulnerability exists in Pulse Connect Secure <9.1RB that allows an attacker with a users primary credentials to bypass the Google TOTP.	CWE-287 Improper Authentication	CVE-2020-8206	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197683	6.1	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A cross site scripting (XSS) vulnerability exists in Pulse Connect Secure <9.1R5 on the PSAL Page.	CWE-79 Cross-site Scripting	CVE-2020-8204	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197684	5.3	MEDIUM Network	nextcloud	preferred_providers	Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-8202	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197685	6.5	MEDIUM Network	fastify	fastify	A denial of service vulnerability exists in Fastify v2.14.1 and v3.0.0-rc.4 that allows a malicious user to trigger resource exhaustion (when the allErrors option is used) with specially crafted sche…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8192	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197686	8.8	HIGH Network	citrix	workspace	Improper access control in Citrix Workspace app for Windows 1912 CU1 and 2006.1 causes privilege escalation and code execution when the automatic updater service is running.	CWE-287 Improper Authentication	CVE-2020-8207	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm

197687	5.5	MEDIUM Local	jpeg-js_project	jpeg-js	Uncontrolled resource consumption in `jpeg-js` before 0.4.0 may allow attacker to launch denial of service attacks using specially a crafted JPEG image.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8175	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm

197688	8.1	HIGH Network	nodejs oracle netapp	node.js banking_extensibility_workbench retail_xstore_point_of_service mysql_cluster blockchain_platform snapcenter oncommand_workflow_automation oncommand_insight active_iq_u…	napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2020-8174	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm

197689	7.8	HIGH Local	lenovo	drivers_management	An unquoted service path vulnerability was reported in Lenovo Drivers Management prior to version 2.7.1128.1046 that could allow an authenticated user to execute code with elevated privileges.	CWE-428 Unquoted Search Path or Element	CVE-2020-8326	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm

197690	7.8	HIGH Local	lenovo	drivers_management	A DLL search path vulnerability was reported in Lenovo Drivers Management prior to version 2.7.1128.1046 that could allow an authenticated user to execute code with elevated privileges.	CWE-426 Untrusted Search Path	CVE-2020-8317	2024-11-21 14:38	2020-07-25	Show	GitHub Exploit DB Packet Storm