Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250631 5 警告 monotone - monotone におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4098 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250632 4.3 警告 avatic - Aardvark Topsites PHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4097 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250633 4.6 警告 monkeysphere project - Monkeysphere の share/ma/keys_for_user における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4096 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250634 9.3 危険 robo-ftp - Robo-FTP に組み込まれている Serengeti Systems の FTP クライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4095 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
250635 5 警告 IBM - IBM Rational Quality Manager および Rational Test Lab Manager の Tomcat サーバにおける任意のコードを実行される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-4094 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
250636 1.9 注意 Linux - Linux kernel の sisfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4078 2012-03-27 18:42 2010-11-29 Show GitHub Exploit DB Packet Storm
250637 1.9 注意 Linux - Linux kernel の rs_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4076 2012-03-27 18:42 2010-11-29 Show GitHub Exploit DB Packet Storm
250638 10 危険 IBM - IBM IDS の librpc.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4070 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
250639 8.5 危険 IBM - IBM IDS におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4069 2012-03-27 18:42 2010-10-25 Show GitHub Exploit DB Packet Storm
250640 4.9 警告 TYPO3 Association - TYPO3 の Extension Manager における任意のファイルを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4068 2012-03-27 18:42 2010-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209241 9.8 CRITICAL
Network 		niushop niushop Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-19672 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209242 4.9 MEDIUM
Network 		niushop niushop In Niushop B2B2C Multi-Business Basic Edition V1.11, authentication can be bypassed, causing administrators to reset any passwords. CWE-306
Missing Authentication for Critical Function 		CVE-2020-19670 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm
209243 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via components/com_jdownloads/helpers/categories.php, order function via the filter_order parameter. CWE-89
SQL Injection 		CVE-2020-19455 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209244 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, updateLog function via the X-forwarded-for Header parameter. CWE-89
SQL Injection 		CVE-2020-19451 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209245 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! via com_jdownloads/helpers/jdownloadshelper.php, getUserLimits function in the list parameter. CWE-89
SQL Injection 		CVE-2020-19450 2024-11-21 14:09 2020-09-26 Show GitHub Exploit DB Packet Storm
209246 7.5 HIGH
Network 		jdownloads jdownloads SQL injection exists in the jdownloads 3.2.63 component for Joomla! com_jdownloads/models/send.php via the f_marked_files_id parameter. CWE-89
SQL Injection 		CVE-2020-19447 2024-11-21 14:09 2020-09-25 Show GitHub Exploit DB Packet Storm
209247 6.6 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>An elevation of privilege vulnerability exists when the Microsoft Store Runtime improperly handles memory.</p> <p>To exploit this vulnerability, an attacker would first have to gain execution on t… NVD-CWE-noinfo
CVE-2020-1146 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209248 9.9 CRITICAL
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1210 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209249 4.6 MEDIUM
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploi… NVD-CWE-noinfo
CVE-2020-1205 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm
209250 8.6 HIGH
Network 		microsoft sharepoint_foundation
sharepoint_enterprise_server
sharepoint_server 		<p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package. An attacker who successfully exploited the vulner… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-1200 2024-11-21 14:09 2020-09-12 Show GitHub Exploit DB Packet Storm