Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250331 7.5 危険 iScripts - iScripts eSwap の addsale.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5036 2011-12-9 13:42 2011-11-2 Show GitHub Exploit DB Packet Storm
250332 7.5 危険 Michau Enterprises - SenseSites CommonSense CMS の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5037 2011-12-9 13:41 2011-11-2 Show GitHub Exploit DB Packet Storm
250333 7.5 危険 Groone's World - Groone's Simple Contact Form における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5038 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
250334 7.5 危険 ScriptsFeed.com - ScriptsFeed Recipes Listing Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5039 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
250335 6.8 警告 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5040 2011-12-9 13:39 2011-11-2 Show GitHub Exploit DB Packet Storm
250336 7.5 危険 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5041 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
250337 4.3 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5042 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
250338 6 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5043 2011-12-9 13:34 2011-11-2 Show GitHub Exploit DB Packet Storm
250339 6 警告 Kanich - Joomla! 用 Search Log コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5044 2011-12-9 13:33 2011-11-2 Show GitHub Exploit DB Packet Storm
250340 4.3 警告 Sell@Site - Smart ASP Survey におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5045 2011-12-9 13:32 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197391 6.5 MEDIUM
Network 		grandit grandit GRANDIT Ver.1.6, Ver.2.0, Ver.2.1, Ver.2.2, Ver.2.3, and Ver.3.0 do not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and then alter or disclose the informa… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-5539 2024-11-21 14:34 2020-03-2 Show GitHub Exploit DB Packet Storm
197392 8.8 HIGH
Network 		cloudfoundry cf-deployment
user_account_and_authentication 		In Cloud Foundry UAA, versions prior to 74.14.0, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function when authenticating with external identity pr… CWE-352
 Origin Validation Error 		CVE-2020-5402 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
197393 5.3 MEDIUM
Network 		cloudfoundry routing_release Cloud Foundry Routing Release, versions prior to 0.197.0, contains GoRouter, which allows malicious clients to send invalid headers, causing caching layers to reject subsequent legitimate clients try… CWE-444
HTTP Request Smuggling 		CVE-2020-5401 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
197394 6.5 MEDIUM
Network 		cloudfoundry cf-deployment
capi-release 		Cloud Foundry Cloud Controller (CAPI), versions prior to 1.91.0, logs properties of background jobs when they are run, which may include sensitive information such as credentials if provided to the j… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-5400 2024-11-21 14:34 2020-02-28 Show GitHub Exploit DB Packet Storm
197395 8.8 HIGH
Adjacent 		nec aterm_wg2600hs_firmware
aterm_wf1200c_firmware
aterm_wg1200cr_firmware 		Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an attacker on the same network segment t… CWE-78
OS Command  		CVE-2020-5524 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
197396 8.0 HIGH
Adjacent 		nec aterm_wg2600hs_firmware Aterm WG2600HS firmware Ver1.3.2 and earlier allows an authenticated attacker on the same network segment to execute arbitrary OS commands with root privileges via unspecified vectors. CWE-78
OS Command  		CVE-2020-5534 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
197397 6.1 MEDIUM
Network 		nec aterm_wg2600hs_firmware Cross-site scripting vulnerability in Aterm WG2600HS firmware Ver1.3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5533 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
197398 8.0 HIGH
Adjacent 		nec aterm_wg2600hs_firmware
aterm_wf1200c_firmware
aterm_wg1200cr_firmware 		Aterm series (Aterm WF1200C firmware Ver1.2.1 and earlier, Aterm WG1200CR firmware Ver1.2.1 and earlier, Aterm WG2600HS firmware Ver1.3.2 and earlier) allows an authenticated attacker on the same net… CWE-78
OS Command  		CVE-2020-5525 2024-11-21 14:34 2020-02-21 Show GitHub Exploit DB Packet Storm
197399 8.8 HIGH
Network 		realestateconnected easy_property_listings Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions prior to 3.4 allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2020-5530 2024-11-21 14:34 2020-02-18 Show GitHub Exploit DB Packet Storm
197400 9.8 CRITICAL
Network 		mitsubishielectric mi5122-vw_firmware
q24dhccpu-v_firmware
q24dhccpu-vg_firmware
r12ccpu-v_firmware
rd55up06-v_firmware 		Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000 MELSEC-Q Series C Controller Module(Q24DHCCPU-V, Q24DHCCPU-VG User Ethernet port (CH1, CH2): First 5 digits of serial number 21… NVD-CWE-noinfo
CVE-2020-5531 2024-11-21 14:34 2020-02-17 Show GitHub Exploit DB Packet Storm