Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250281 7.5 危険 KMSoft - KMSoft Guestbook の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4987 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
250282 7.5 危険 FamilyCMS - Family Connections Who is Chatting における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4988 2011-12-9 14:33 2011-11-1 Show GitHub Exploit DB Packet Storm
250283 7.5 危険 Farsi CMS - Ziggurat Farsi CMS の main.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4989 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
250284 7.5 危険 B-Elektro - Joomla! 用 Front-edit Address Book コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4990 2011-12-9 14:28 2011-11-1 Show GitHub Exploit DB Packet Storm
250285 7.5 危険 Ninja Forge - Joomla! 用 NinjaMonials コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4991 2011-12-9 14:27 2011-11-1 Show GitHub Exploit DB Packet Storm
250286 7.5 危険 Payments Plus - Joomla! 用 Payments Plus コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4992 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
250287 7.5 危険 Kay Messerschmidt - Joomla! 用 eventcal コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4993 2011-12-9 14:26 2011-11-1 Show GitHub Exploit DB Packet Storm
250288 7.5 危険 Instant Php - Joomla! 用 Jobs Pro コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4994 2011-12-9 14:25 2011-11-1 Show GitHub Exploit DB Packet Storm
250289 7.5 危険 NeoJoomla - Joomla! 用 NeoRecruit コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4995 2011-12-9 14:23 2011-11-1 Show GitHub Exploit DB Packet Storm
250290 7.5 危険 esoftpro - esoftpro Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4996 2011-12-9 14:22 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200061 4.8 MEDIUM
Network 		atlassian jira
data_center
jira_server
jira_data_center 		Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in the Screens Modal view. The … CWE-79
Cross-site Scripting 		CVE-2020-36234 2024-11-21 14:29 2021-02-15 Show GitHub Exploit DB Packet Storm
200062 9.8 CRITICAL
Network 		genivi
debian 		diagnostic_log_and_trace
debian_linux 		The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon (versions prior to… CWE-787
 Out-of-bounds Write 		CVE-2020-36244 2024-11-21 14:29 2021-02-10 Show GitHub Exploit DB Packet Storm
200063 8.8 HIGH
Network 		open-emr openemr The Patient Portal of OpenEMR 5.0.2.1 is affected by a Command Injection vulnerability in /interface/main/backup.php. To exploit the vulnerability, an authenticated attacker can send a POST request t… CWE-78
OS Command  		CVE-2020-36243 2024-11-21 14:29 2021-02-8 Show GitHub Exploit DB Packet Storm
200064 9.1 CRITICAL
Network 		cryptography.io
fedoraproject
oracle 		cryptography
fedora
communications_cloud_native_core_network_function_cloud_native_environment 		In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrate… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-36242 2024-11-21 14:29 2021-02-8 Show GitHub Exploit DB Packet Storm
200065 5.5 MEDIUM
Local 		gnome
fedoraproject 		gnome-autoar
fedora 		autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it lacks a check of whether a file's… CWE-22
CWE-59
Path Traversal
Link Following 		CVE-2020-36241 2024-11-21 14:29 2021-02-5 Show GitHub Exploit DB Packet Storm
200066 4.3 MEDIUM
Network 		atlassian jira
jira_software_data_center
jira_server
jira_data_center 		Affected versions of Atlassian Jira Server and Data Center allow remote attackers to view the metadata of boards they should not have access to via an Insecure Direct Object References (IDOR) vulnera… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-36231 2024-11-21 14:29 2021-02-2 Show GitHub Exploit DB Packet Storm
200067 7.5 HIGH
Network 		openldap
debian
apple
apache 		openldap
debian_linux
mac_os_x
macos
bookkeeper 		A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X.509 DN parsing in decode.c ber_next_element, resulting in denial of service. CWE-617
 Reachable Assertion 		CVE-2020-36230 2024-11-21 14:29 2021-01-27 Show GitHub Exploit DB Packet Storm
200068 7.5 HIGH
Network 		openldap
debian
apple 		openldap
debian_linux
mac_os_x
macos 		A flaw was discovered in ldap_X509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in ad_keystring, resulting in denial of service. CWE-843
Type Confusion 		CVE-2020-36229 2024-11-21 14:29 2021-01-27 Show GitHub Exploit DB Packet Storm
200069 7.5 HIGH
Network 		openldap
debian
apple 		openldap
debian_linux
macos 		An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the Certificate List Exact Assertion processing, resulting in denial of service. CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2020-36228 2024-11-21 14:29 2021-01-27 Show GitHub Exploit DB Packet Storm
200070 7.5 HIGH
Network 		openldap
debian
apple 		openldap
debian_linux
macos 		A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the cancel_extop Cancel operation, resulting in denial of service. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-36227 2024-11-21 14:29 2021-01-27 Show GitHub Exploit DB Packet Storm