Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249461	7.5	危険	IBM	-	IBM OmniFind の ESSearchApplication ディレクトリツリーにおけるサーバ設定を変更される脆弱性	CWE-287 不適切な認証	CVE-2010-3896	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249462	7.2	危険	IBM	-	IBM OmniFind の esRunCommand における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3895	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249463	9.3	危険	IBM	-	IBM OmniFind の Java_com_ibm_es_oss_CryptionNative_ESEncrypt 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3894	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249464	7.5	危険	IBM	-	IBM OmniFind の管理インタフェースにおける任意の管理者操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3893	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249465	6.8	警告	IBM	-	IBM OmniFind のログインフォームにおけるセッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2010-3892	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249466	6.8	警告	IBM	-	IBM OmniFind の ESAdmin/security.do におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3891	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249467	4.3	警告	IBM	-	IBM OmniFind におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3890	2012-03-27 18:42	2010-11-12	Show	GitHub Exploit DB Packet Storm

249468	1.9	注意	Linux	-	Linux kernel の ax25_getname 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3875	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

249469	7.8	危険	Linux	-	Linux kernel の X.25 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3873	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

249470	7.2	危険	マイクロソフト	-	Microsoft Windows の 32 ビットプラットフォームにおける権限昇格の脆弱性	CWE-noinfo 情報不足	CVE-2010-3889	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197631	9.8	CRITICAL Network	buns_project	buns	This affects all versions of package buns. The injection point is located in line 678 in index file lib/index.js in the exported function install(requestedModule).	CWE-78 OS Command	CVE-2020-7794	2024-11-21 14:37	2021-01-8	Show	GitHub Exploit DB Packet Storm

197632	9.8	CRITICAL Network	ts-process-promises_project	ts-process-promises	This affects all versions of package ts-process-promises. The injection point is located in line 45 in main entry of package in lib/process-promises.js. The vulnerability is demonstrated with the fol…	CWE-78 OS Command	CVE-2020-7784	2024-11-21 14:37	2021-01-8	Show	GitHub Exploit DB Packet Storm

197633	6.5	MEDIUM Network	mcafee	network_security_management	Cross Site Request Forgery vulnerability in McAfee Network Security Management (NSM) prior to 10.1.7.35 and NSM 9.x prior to 9.2.9.55 may allow an attacker to change the configuration of the Network …	CWE-352 Origin Validation Error	CVE-2020-7336	2024-11-21 14:37	2021-01-6	Show	GitHub Exploit DB Packet Storm

197634	9.8	CRITICAL Network	asciitable.js_project	asciitable.js	The package asciitable.js before 1.0.3 are vulnerable to Prototype Pollution via the main function.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7771	2024-11-21 14:37	2021-01-4	Show	GitHub Exploit DB Packet Storm

197635	9.8	CRITICAL Network	jiransecurity	spamsniper	Spamsniper 5.0 ~ 5.2.7 contain a stack-based buffer overflow vulnerability caused by improper boundary checks when parsing MAIL FROM command. It leads remote attacker to execute arbitrary code via cr…	CWE-787 Out-of-bounds Write	CVE-2020-7845	2024-11-21 14:37	2020-12-27	Show	GitHub Exploit DB Packet Storm

197636	8.8	HIGH Network	onstove	stove	A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. T…	CWE-20 Improper Input Validation	CVE-2020-7838	2024-11-21 14:37	2020-12-18	Show	GitHub Exploit DB Packet Storm

197637	9.8	CRITICAL Network	connection-tester_project	connection-tester	This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability:	CWE-78 OS Command	CVE-2020-7781	2024-11-21 14:37	2020-12-17	Show	GitHub Exploit DB Packet Storm

197638	8.8	HIGH Network	polarisoffice	polaris_ml_report	An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strin…	CWE-787 Out-of-bounds Write	CVE-2020-7837	2024-11-21 14:37	2020-12-17	Show	GitHub Exploit DB Packet Storm

197639	7.5	HIGH Network	i18n_project	i18n	This affects the package i18n before 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs.	NVD-CWE-noinfo	CVE-2020-7791	2024-11-21 14:37	2020-12-12	Show	GitHub Exploit DB Packet Storm

197640	7.5	HIGH Network	ua-parser-js_project siemens	ua-parser-js sinec_ins	The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).	NVD-CWE-Other	CVE-2020-7793	2024-11-21 14:37	2020-12-11	Show	GitHub Exploit DB Packet Storm