Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249471	7.5	危険	t-dreams	-	T-Dreams Cars Ads Package の processview.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4829	2012-03-27 18:42	2011-08-24	Show	GitHub Exploit DB Packet Storm

249472	4.3	警告	SolarWinds	-	SolarWinds Orion NPM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4828	2012-03-27 18:42	2011-08-24	Show	GitHub Exploit DB Packet Storm

249473	4.3	警告	Snitz	-	Snitz Forums の members.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4827	2012-03-27 18:42	2011-08-24	Show	GitHub Exploit DB Packet Storm

249474	7.5	危険	Snitz	-	Snitz Forums の members.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4826	2012-03-27 18:42	2011-08-24	Show	GitHub Exploit DB Packet Storm

249475	4.3	警告	WordPress.org pleer	-	WordPress 用の Twitter Feed プラグインの magpie_debug.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4825	2012-03-27 18:42	2011-08-24	Show	GitHub Exploit DB Packet Storm

249476	7.5	危険	bestsoftinc	-	BSI Advance Hotel Booking System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4814	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

249477	3.5	注意	Drupal scheepers de bruin	-	Drupal 用の Category Tokens モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4813	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

249478	6.5	警告	6kbbs	-	6kbbs における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4812	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

249479	4.3	警告	6kbbs	-	6kbbs の ajaxmember.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4811	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

249480	7.5	危険	awcm	-	AWCM における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4810	2012-03-27 18:42	2011-07-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197491	6.5	MEDIUM Network	horde debian	groupware horde_form debian_linux	This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-8866	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197492	6.3	MEDIUM Network	horde debian	groupware debian_linux	This vulnerability allows remote attackers to execute local PHP files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. Th…	CWE-22 Path Traversal	CVE-2020-8865	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197493	7.5	HIGH Network	psi	electronic_logbook	This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this v…	CWE-476 NULL Pointer Dereference	CVE-2020-8859	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197494	8.8	HIGH Adjacent	dlink	dir-878_firmware dir-882_firmware dir-867_firmware	This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.10B04. Authentication is not re…	CWE-697 Incorrect Comparison	CVE-2020-8864	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197495	8.8	HIGH Adjacent	dlink	dir-878_firmware dir-882_firmware dir-867_firmware	This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-882 routers with firmware 1.10B04. Authentication is not re…	CWE-287 Improper Authentication	CVE-2020-8863	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197496	5.5	MEDIUM Local	parallels	parallels_desktop	This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code…	CWE-125 Out-of-bounds Read	CVE-2020-8876	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197497	6.4	MEDIUM Adjacent	zohocorp	manageengine_assetexplorer	An issue was discovered in Zoho ManageEngine AssetExplorer 6.5. During an upgrade of the Windows agent, it does not validate the source and binary downloaded. This allows an attacker on an adjacent n…	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-8838	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197498	8.8	HIGH Local	parallels	parallels_desktop	This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute low-privileged code …	CWE-787 Out-of-bounds Write	CVE-2020-8875	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197499	6.7	MEDIUM Local	parallels	parallels_desktop	This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute high-privileged code…	CWE-190 Integer Overflow or Wraparound	CVE-2020-8874	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197500	6.7	MEDIUM Local	parallels	parallels_desktop	This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 15.1.2-47123. An attacker must first obtain the ability to execute high-privileged code…	CWE-269 Improper Privilege Management	CVE-2020-8873	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm