Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249441 5 警告 SAP - SAP BusinessObjects Enterprise における任意のポートおよびイントラネットホストへの TCP 接続を誘発する脆弱性 CWE-200
情報漏えい 		CVE-2010-3982 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
249442 4.3 警告 SAP - SAP BusinessObjects Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3981 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
249443 4 警告 SAP - SAP BusinessObjects Enterprise の Dswsbobje におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3980 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
249444 5 警告 SAP - SAP BusinessObjects Enterprise の Dswsbobje におけるアカウント名を列挙する脆弱性 CWE-200
情報漏えい 		CVE-2010-3979 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
249445 5 警告 Spree Commerce - Spree における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3978 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
249446 9.3 危険 アドビシステムズ - Adobe Flash Player における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3975 2012-03-27 18:42 2010-10-19 Show GitHub Exploit DB Packet Storm
249447 6.4 警告 Ruby on Rails project - Ruby on Rails における任意のレコードを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3933 2012-03-27 18:42 2010-10-15 Show GitHub Exploit DB Packet Storm
249448 4.3 警告 Vtiger - vtiger CRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3911 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
249449 6.8 警告 Vtiger - vtiger CRM の return_application_language 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3910 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
249450 6.8 警告 FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg におけるサービス運用妨害 (DoS) 状態の脆弱性 CWE-119
バッファエラー 		CVE-2010-3908 2012-03-27 18:42 2011-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199881 5.9 MEDIUM
Network 		pivotal reactor_netty The HttpClient from Reactor Netty, versions 0.9.x prior to 0.9.5, and versions 0.8.x prior to 0.8.16, may be used incorrectly, leading to a credentials leak during a redirect to a different domain. I… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-5404 2024-11-21 14:34 2020-03-4 Show GitHub Exploit DB Packet Storm
199882 6.5 MEDIUM
Network 		grandit grandit GRANDIT Ver.1.6, Ver.2.0, Ver.2.1, Ver.2.2, Ver.2.3, and Ver.3.0 do not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and then alter or disclose the informa… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-5539 2024-11-21 14:34 2020-03-2 Show GitHub Exploit DB Packet Storm
199883 8.8 HIGH
Network 		cloudfoundry cf-deployment
user_account_and_authentication 		In Cloud Foundry UAA, versions prior to 74.14.0, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function when authenticating with external identity pr… CWE-352
 Origin Validation Error 		CVE-2020-5402 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
199884 5.3 MEDIUM
Network 		cloudfoundry routing_release Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients try… CWE-444
HTTP Request Smuggling 		CVE-2020-5401 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
199885 6.5 MEDIUM
Network 		cloudfoundry cf-deployment
capi-release 		Cloud Foundry Cloud Controller (CAPI), versions prior to 1.91.0, logs properties of background jobs when they are run, which may include sensitive information such as credentials if provided to the j… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-5400 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
199886 8.8 HIGH
Adjacent 		nec aterm_wg2600hs_firmware
aterm_wf1200c_firmware
aterm_wg1200cr_firmware 		Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an attacker on the same network segment t… CWE-78
OS Command  		CVE-2020-5524 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
199887 8.0 HIGH
Adjacent 		nec aterm_wg2600hs_firmware Aterm WG2600HS firmware Ver1.3.2 and earlier allows an authenticated attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors. CWE-78
OS Command  		CVE-2020-5534 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
199888 6.1 MEDIUM
Network 		nec aterm_wg2600hs_firmware Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5533 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
199889 8.0 HIGH
Adjacent 		nec aterm_wg2600hs_firmware
aterm_wf1200c_firmware
aterm_wg1200cr_firmware 		Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an authenticated attacker on the same net… CWE-78
OS Command  		CVE-2020-5525 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
199890 8.8 HIGH
Network 		realestateconnected easy_property_listings Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions prior to 3.4 allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2020-5530 2024-11-21 14:34 2020-02-18 Show GitHub Exploit DB Packet Storm