Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250801 5 警告 Thomas Mammitzsch - TYPO3 用 xaJax Shoutbox エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4951 2012-02-29 11:48 2011-10-9 Show GitHub Exploit DB Packet Storm
250802 7.5 危険 Joachim Ruhs - TYPO3 用 Event エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4950 2012-02-29 11:42 2011-10-9 Show GitHub Exploit DB Packet Storm
250803 4.3 警告 Codologic.com - Joomla! 用 FreiChat および FreiChatPure におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4949 2012-02-29 11:21 2011-10-9 Show GitHub Exploit DB Packet Storm
250804 7.5 危険 Phpgalleryscript - PHP Free Photo Gallery script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4948 2012-02-29 11:19 2011-10-9 Show GitHub Exploit DB Packet Storm
250805 4.3 警告 Allpcscript - ALLPC の advanced_search_result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4947 2012-02-29 11:17 2011-10-9 Show GitHub Exploit DB Packet Storm
250806 7.5 危険 Allpcscript - ALLPC の product_info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4946 2012-02-29 11:16 2011-10-9 Show GitHub Exploit DB Packet Storm
250807 7.5 危険 Joomla! - Joomla! 用 CamelcityDB コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4945 2012-02-29 11:15 2011-10-9 Show GitHub Exploit DB Packet Storm
250808 7.5 危険 Joomla! - Mambo および Joomla! 用 Elite Experts コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4944 2012-02-29 11:14 2011-10-9 Show GitHub Exploit DB Packet Storm
250809 7.5 危険 Saurused - Saurus CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4943 2012-02-29 11:08 2011-10-9 Show GitHub Exploit DB Packet Storm
250810 7.5 危険 E-Xoopport - E-Xoopport Samsara の location.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4942 2012-02-29 11:06 2011-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201231 5.5 MEDIUM
Local 		qualcomm apq8009_firmware
apq8053_firmware
apq8096au_firmware
apq8098_firmware
bitra_firmware
kamorta_firmware
mdm9206_firmware
mdm9150_firmware
mdm9607_firmware
mdm9640_firmware 		u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Au… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-3620 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201232 7.0 HIGH
Local 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8098_firmware
ipq8074_firmware
kamorta_firmware
mdm9150_firmware
mdm9206_firmware
mdm9607_firmware
mdm9650_firmware 		u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv… CWE-787
CWE-367
 Out-of-bounds Write
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2020-3619 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201233 7.8 HIGH
Local 		qualcomm apq8098_firmware
kamorta_firmware
msm8998_firmware
qcs404_firmware
qcs605_firmware
sda660_firmware
sda845_firmware
sdm630_firmware
sdm636_firmware
sdm660_firmware
sdm670… 		u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, … NVD-CWE-noinfo
CVE-2020-3611 2024-11-21 14:31 2020-09-8 Show GitHub Exploit DB Packet Storm
201234 6.5 MEDIUM
Network 		cisco jabber A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An… CWE-20
 Improper Input Validation  		CVE-2020-3498 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201235 6.8 MEDIUM
Adjacent 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3453 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201236 4.7 MEDIUM
Network 		cisco rv340w_firmware
rv340_firmware
rv345_firmware
rv345p_firmware 		Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar… CWE-20
 Improper Input Validation  		CVE-2020-3451 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201237 6.5 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-3547 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201238 5.3 MEDIUM
Network 		cisco asyncos A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive informatio… CWE-20
 Improper Input Validation  		CVE-2020-3546 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201239 6.7 MEDIUM
Local 		cisco firepower_extensible_operating_system A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds … CWE-787
 Out-of-bounds Write 		CVE-2020-3545 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm
201240 5.3 MEDIUM
Network 		cisco webex_training A vulnerability in Cisco Webex Training could allow an authenticated, remote attacker to join a password-protected meeting without providing the meeting password. The vulnerability is due to improper… CWE-20
 Improper Input Validation  		CVE-2020-3542 2024-11-21 14:31 2020-09-4 Show GitHub Exploit DB Packet Storm