Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250301 4.3 警告 gareth watts - PHPXref の nav.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4745 2012-03-27 18:42 2011-02-21 Show GitHub Exploit DB Packet Storm
250302 10 危険 moinejf - abcm2ps における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2010-4744 2012-03-27 18:42 2011-02-18 Show GitHub Exploit DB Packet Storm
250303 6.8 警告 moinejf - abcm2ps の getarena 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4743 2012-03-27 18:42 2011-02-18 Show GitHub Exploit DB Packet Storm
250304 10 危険 Moxa Inc. - Moxa ActiveX SDK の特定の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4742 2012-03-27 18:42 2011-02-18 Show GitHub Exploit DB Packet Storm
250305 7.5 危険 aretimes
Joomla!		 - Joomla! の Maian Media Silver (com_maianmedia) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4739 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
250306 7.5 危険 raemedia - Rae Media INC Real Estate Single and Multi Agent System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4738 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
250307 7.5 危険 hotwebscripts - HotWebScripts HotWeb Rentals の resorts.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4737 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
250308 7.5 危険 gatesoft - GateSoft DocuSafe の ECO.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4736 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
250309 7.5 危険 ecommercemax - Ecommercemax Solutions DGS の shoppingcart.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4735 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
250310 2.6 注意 amix - Skeletonz CMS 1.0 のコメント機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4734 2012-03-27 18:42 2011-02-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209421 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /segments/edit.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via the Segment Name parameter. CWE-79
Cross-site Scripting 		CVE-2020-20990 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209422 4.3 MEDIUM
Network 		domainmod domainmod A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows attackers to arbitrarily delete logs. CWE-352
 Origin Validation Error 		CVE-2020-20989 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209423 5.4 MEDIUM
Network 		domainmod domainmod A cross site scripting (XSS) vulnerability in the /domains/cost-by-owner.php component of Domainmod 4.13 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the "or Exp… CWE-79
Cross-site Scripting 		CVE-2020-20988 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209424 7.5 HIGH
Network 		metinfo metinfo A SQL injection in the /admin/?n=logs&c=index&a=dolist component of Metinfo 7.0 allows attackers to access sensitive database information. CWE-89
SQL Injection 		CVE-2020-20981 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209425 9.8 CRITICAL
Network 		8cms ljcms An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows attackers to execute arbitrary code. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-20979 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209426 5.4 MEDIUM
Network 		ukcms ukcms A stored cross site scripting (XSS) vulnerability in index.php/legend/6.html of UK CMS v1.1.10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Comments section. CWE-79
Cross-site Scripting 		CVE-2020-20977 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209427 9.8 CRITICAL
Network 		gxlcms gxlcms In \lib\admin\action\dataaction.class.php in Gxlcms v1.1, SQL Injection exists via the $filename parameter. CWE-89
SQL Injection 		CVE-2020-20975 2024-11-21 14:12 2021-08-13 Show GitHub Exploit DB Packet Storm
209428 6.5 MEDIUM
Network 		maccms maccms An arbitrary file deletion vulnerability exists within Maccms10. CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2020-21363 2024-11-21 14:12 2021-08-12 Show GitHub Exploit DB Packet Storm
209429 5.4 MEDIUM
Network 		maccms maccms A cross site scripting (XSS) vulnerability in the background search function of Maccms10 allows attackers to execute arbitrary web scripts or HTML via the 'wd' parameter. CWE-79
Cross-site Scripting 		CVE-2020-21362 2024-11-21 14:12 2021-08-12 Show GitHub Exploit DB Packet Storm
209430 9.8 CRITICAL
Network 		maccms maccms An arbitrary file upload vulnerability in the Template Upload function of Maccms10 allows attackers bypass the suffix whitelist verification to execute arbitrary code via adding a character to the en… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-21359 2024-11-21 14:12 2021-08-12 Show GitHub Exploit DB Packet Storm