Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249821 4.3 警告 Pentaho Corporation - Pentaho BI Server の ViewAction におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5099 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
249822 5.4 警告 ヒューレット・パッカード - Palm Pre WebOS の LunaSysMgr プロセス におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5098 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
249823 6.3 警告 OpenFabrics Alliance - OFED の openibd における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-1693 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
249824 10 危険 The Tor Project - Tor におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1676 2012-03-27 18:42 2010-12-20 Show GitHub Exploit DB Packet Storm
249825 9.3 危険 Nullsoft - Winamp の vp6.w5s におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1523 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
249826 9.3 危険 March Hare Pty Ltd - March Hare Software CVSNT の perms.cpp における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1326 2012-03-27 18:42 2010-09-15 Show GitHub Exploit DB Packet Storm
249827 4.3 警告 IBM - IBM WebSphere MQ における X.509 証明書の認証をなりすまされる脆弱性 CWE-Other
その他 		CVE-2010-0782 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
249828 5 警告 シスコシステムズ - Cisco WLC におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0575 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
249829 7.8 危険 シスコシステムズ - Cisco WLC におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0574 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
249830 3.5 注意 IBM - IBM PNMSS の load.php における CRLF インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0155 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210621 4.9 MEDIUM
Network 		ntp
opensuse
netapp
oracle 		ntp
leap
cloud_backup
steelstore_cloud_integrated_storage
8300_firmware
8700_firmware
a400_firmware
h410c_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_… 		ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumption) by sending packets, because memory is not freed in situations wher… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-15025 2024-11-21 14:04 2020-06-25 Show GitHub Exploit DB Packet Storm
210622 6.1 MEDIUM
Network 		gleamtech fileultimate The FileExplorer component in GleamTech FileUltimate 6.1.5.0 allows XSS via an SVG document. CWE-79
Cross-site Scripting 		CVE-2020-15015 2024-11-21 14:04 2020-06-25 Show GitHub Exploit DB Packet Storm
210623 6.5 MEDIUM
Network 		playsms playsms playSMS through 1.4.3 is vulnerable to session fixation. CWE-384
 Session Fixation 		CVE-2020-15018 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210624 8.8 HIGH
Network 		pramod blogcms pramodmahato BlogCMS through 2019-12-31 has admin/changepass.php CSRF. CWE-352
 Origin Validation Error 		CVE-2020-15014 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210625 4.3 MEDIUM
Network 		gnu
canonical
debian 		mailman
ubuntu_linux
debian_linux 		GNU Mailman before 2.1.33 allows arbitrary content injection via the Cgi/private.py private archive login page. CWE-74
Injection 		CVE-2020-15011 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210626 9.8 CRITICAL
Network 		idsoftware
doom_vanille_project 		tech_1
doom_vanille 		A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of char… CWE-120
Classic Buffer Overflow 		CVE-2020-15007 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210627 5.4 MEDIUM
Network 		bludit bludit Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php. CWE-79
Cross-site Scripting 		CVE-2020-15006 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210628 8.1 HIGH
Network 		f-secure safe An issue was discovered in F-Secure SAFE 17.7 on macOS. Due to incorrect client version verification, an attacker can connect to a privileged XPC service, and execute privileged commands on the syste… NVD-CWE-noinfo
CVE-2020-14978 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210629 8.1 HIGH
Network 		f-secure safe An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC services use the PID to identify the connecting client, which allows an attacker to perform a PID reuse attack and connect to a privile… NVD-CWE-noinfo
CVE-2020-14977 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210630 5.5 MEDIUM
Local 		gns3 ubridge GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration … CWE-269
 Improper Privilege Management 		CVE-2020-14976 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm