Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249511 6.9 警告 Apache Software Foundation - Debian GNU/Linux の CouchDB における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-2953 2012-03-27 18:42 2010-09-9 Show GitHub Exploit DB Packet Storm
249512 4.3 警告 Apache Software Foundation - Apache Traffic Server における内部 DNS キャッシュポイズニングの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2952 2012-03-27 18:42 2010-09-13 Show GitHub Exploit DB Packet Storm
249513 5 警告 Squid-cache.org - Squid の dns_internal.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-2951 2012-03-27 18:42 2010-10-12 Show GitHub Exploit DB Packet Storm
249514 2.1 注意 Linux - Linux kernel の fs/jfs/xattr.c における xattr 名前空間の制限を回避する脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2946 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
249515 8.5 危険 LANDesk - LANDesk Management Gateway の gsb/drivers.php における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2892 2012-03-27 18:42 2010-11-15 Show GitHub Exploit DB Packet Storm
249516 7.5 危険 tu-braunschweig - libsmi の smiGetNode 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2891 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
249517 6.8 警告 MediaWiki - MediaWiki の MediaWikiParserTest.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2789 2012-03-27 18:42 2011-04-26 Show GitHub Exploit DB Packet Storm
249518 2.6 注意 MediaWiki - MediaWiki の profileinfo.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2788 2012-03-27 18:42 2011-04-26 Show GitHub Exploit DB Packet Storm
249519 4.3 警告 MediaWiki - MediaWiki の api.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2787 2012-03-27 18:42 2011-04-26 Show GitHub Exploit DB Packet Storm
249520 9 危険 シスコシステムズ - Cisco WLC におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2843 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197751 7.5 HIGH
Network 		bosch video_management_system_viewer
video_management_system 		A path traversal vulnerability in the Bosch Video Management System (BVMS) NoTouch deployment allows an unauthenticated remote attacker to read arbitrary files from the Central Server. This affects B… CWE-22
Path Traversal 		CVE-2020-6768 2024-11-21 14:36 2020-02-8 Show GitHub Exploit DB Packet Storm
197752 9.1 CRITICAL
Network 		bosch video_streaming_gateway
divar_ip_2000_firmware
divar_ip_5000_firmware 		Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker to retrieve and set arbitrary configuration data of the Video Streami… CWE-306
Missing Authentication for Critical Function 		CVE-2020-6769 2024-11-21 14:36 2020-02-8 Show GitHub Exploit DB Packet Storm
197753 9.8 CRITICAL
Network 		schmid-telecom zi_620_v400_firmware Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping. CWE-78
OS Command  		CVE-2020-6760 2024-11-21 14:36 2020-02-7 Show GitHub Exploit DB Packet Storm
197754 6.5 MEDIUM
Network 		sos-berlin jobscheduler An XML External Entity (XEE) vulnerability exists in the JOC Cockpit component of SOS JobScheduler 1.12 and 1.13.2 allows attackers to read files from the server via an entity declaration in any of t… CWE-776
XML Entity Expansion 		CVE-2020-6856 2024-11-21 14:36 2020-02-7 Show GitHub Exploit DB Packet Storm
197755 6.5 MEDIUM
Network 		sos-berlin jobscheduler A large or infinite loop vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to parameterize housekeeping jobs in a way that exhausts system resources and … CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-6855 2024-11-21 14:36 2020-02-7 Show GitHub Exploit DB Packet Storm
197756 6.5 MEDIUM
Network 		bosch video_management_system_viewer
video_management_system 		A path traversal vulnerability in the Bosch Video Management System (BVMS) FileTransferService allows an authenticated remote attacker to read arbitrary files from the Central Server. This affects Bo… CWE-22
Path Traversal 		CVE-2020-6767 2024-11-21 14:36 2020-02-7 Show GitHub Exploit DB Packet Storm
197757 5.4 MEDIUM
Network 		sos-berlin jobscheduler A cross-site scripting (XSS) vulnerability in the JOC Cockpit component of SOS JobScheduler 1.11 and 1.13.2 allows attackers to inject arbitrary web script or HTML via JSON properties available from … CWE-79
Cross-site Scripting 		CVE-2020-6854 2024-11-21 14:36 2020-02-6 Show GitHub Exploit DB Packet Storm
197758 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling. NVD-CWE-noinfo
CVE-2020-6833 2024-11-21 14:36 2020-02-6 Show GitHub Exploit DB Packet Storm
197759 9.8 CRITICAL
Network 		dotcms dotcms dotCMS before 5.2.4 is vulnerable to directory traversal, leading to incorrect access control. It allows an attacker to read or execute files under $TOMCAT_HOME/webapps/ROOT/assets (which should be a… CWE-22
CWE-434
Path Traversal
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-6754 2024-11-21 14:36 2020-02-6 Show GitHub Exploit DB Packet Storm
197760 9.8 CRITICAL
Network 		automationdirect c-more_ea9-rhi_firmware
c-more_ea9-t6cl-r_firmware
c-more_ea9-t6cl_firmware
c-more_ea9-t7cl-r_firmware
c-more_ea9-t7cl_firmware
c-more_ea9-t8cl_firmware
c-more_ea9-t10cl_firmware 		It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versio… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-6969 2024-11-21 14:36 2020-02-6 Show GitHub Exploit DB Packet Storm