Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250071	6.8	警告	OrangeHRM	-	OrangeHRM におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4798	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250072	7.5	危険	truworthit	-	Truworth Flex Timesheet のログインフォームにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4797	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250073	7.5	危険	phpyun	-	PHPYun における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4796	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250074	7.5	危険	joomlaseller Joomla!	-	Joomla! の com_jscalendar コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4795	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250075	4.3	警告	joomlaseller Joomla!	-	Joomla! の com_jscalendar コンポーネントにおけるクロスサイトスクリプティング脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4794	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250076	7.5	危険	site2nite	-	Site2Nite Auto e-Manager の detail.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4793	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250077	4.3	警告	openit	-	OPEN IT OverLook の title.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4792	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250078	4	警告	IBM	-	IBM WCM のオーサリングツールにおけるドラフト生成のアクセス制限を回避する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4806	2012-03-27 18:42	2010-11-16	Show	GitHub Exploit DB Packet Storm

250079	7.5	危険	marcusg	-	PHP-Fusion の MG User-Fotoalbum モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4791	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

250080	5.8	警告	in-mediakg	-	FilterFTP におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4790	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209931	5.5	MEDIUM Local	openexr debian	openexr debian_linux	A heap-based buffer overflow vulnerability exists in Academy Software Foundation OpenEXR 2.3.0 in chunkOffsetReconstruction in ImfMultiPartInputFile.cpp that can cause a denial of service via a craft…	CWE-787 Out-of-bounds Write	CVE-2020-16587	2024-11-21 14:07	2020-12-10	Show	GitHub Exploit DB Packet Storm

209932	7.5	HIGH Network	mitsubishielectric	r00cpu_firmware r01cpu_firmware r02cpu_firmware r04cpu_firmware r08cpu_firmware r16cpu_firmware r32cpu_firmware r120cpu_firmware r08sfcpu_firmware r16sfcpu_firmware r32s…	Mitsubishi MELSEC iQ-R Series PLCs with firmware 49 allow an unauthenticated attacker to halt the industrial process by sending a crafted packet over the network. This denial of service attack expose…	CWE-20 CWE-400 Improper Input Validation Uncontrolled Resource Consumption	CVE-2020-16850	2024-11-21 14:07	2020-12-1	Show	GitHub Exploit DB Packet Storm

209933	7.5	HIGH Network	canon	mf237w_firmware mf113w_firmware mf212w_firmware mf216n_firmware mf217w_firmware mf226dn_firmware mf229dw_firmware mf231_firmware mf232w_firmware mf244dw_firmware mf247dw…	An issue was discovered on Canon MF237w 06.07 devices. An "Improper Handling of Length Parameter Inconsistency" issue in the IPv4/ICMPv4 component, when handling a packet sent by an unauthenticated n…	NVD-CWE-Other	CVE-2020-16849	2024-11-21 14:07	2020-12-1	Show	GitHub Exploit DB Packet Storm

209934	7.8	HIGH Local	arm	armv8-m_firmware	In Arm software implementing the Armv8-M processors (all versions), the stack selection mechanism could be influenced by a stack-underflow attack in v8-M TrustZone based processors. An attacker can c…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2020-16273	2024-11-21 14:07	2020-11-13	Show	GitHub Exploit DB Packet Storm

209935	5.5	MEDIUM Local	microsoft	windows_10	Windows Camera Codec Information Disclosure Vulnerability	CWE-125 Out-of-bounds Read	CVE-2020-17113	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209936	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17110	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209937	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17109	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209938	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17108	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209939	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17107	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm

209940	7.8	HIGH Local	microsoft	hevc_video_extensions	HEVC Video Extensions Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2020-17106	2024-11-21 14:07	2020-11-11	Show	GitHub Exploit DB Packet Storm