Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250901 5 警告 日立 - JP1/NETM/DM におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2011-03-1 15:26 2011-01-31 Show GitHub Exploit DB Packet Storm
250902 7.5 危険 IBM - IBM DB2 の DB2 Administration Server コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0731 2011-03-1 15:17 2011-01-28 Show GitHub Exploit DB Packet Storm
250903 7.8 危険 ISC, Inc.
レッドハット		 - ISC DHCPv6 にサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0413 2011-03-1 15:10 2011-01-28 Show GitHub Exploit DB Packet Storm
250904 7.5 危険 Google - Google Android SDK の BMP::readFromStream メソッドにおける整数オーバーフロー脆弱性 CWE-189
数値処理の問題 		CVE-2008-0986 2011-03-1 14:58 2008-03-6 Show GitHub Exploit DB Packet Storm
250905 6.8 警告 Google - Google Android SDK の GIF ライブラリにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0985 2011-03-1 14:56 2008-03-6 Show GitHub Exploit DB Packet Storm
250906 7.2 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - 64-bit プラットフォーム上で稼働している Linux kernel の compat_alloc_user_space 関数における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3081 2011-03-1 14:46 2010-09-21 Show GitHub Exploit DB Packet Storm
250907 4.6 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0291 2011-03-1 14:44 2010-02-15 Show GitHub Exploit DB Packet Storm
250908 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の sctp_process_unk_param 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1173 2011-03-1 14:43 2010-05-7 Show GitHub Exploit DB Packet Storm
250909 2.6 注意 サイバートラスト株式会社
VMware
Linux
レッドハット		 - RHEL の MMIO 命令デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0730 2011-03-1 14:42 2010-05-6 Show GitHub Exploit DB Packet Storm
250910 4.9 警告 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の drivers/connector/connector.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0410 2011-03-1 14:41 2010-02-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198241 7.6 HIGH
Network 		hgiga msr45_isherlock-antispam
msr45_isherlock-user
ssr45_isherlock-antispam
ssr45_isherlock-user 		HGiga MailSherlock contains a SQL injection flaw. Attackers can inject and launch SQL commands in a URL parameter of specific cgi pages. CWE-89
SQL Injection 		CVE-2020-35743 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198242 7.6 HIGH
Network 		hgiga msr45_isherlock-antispam
msr45_isherlock-user
ssr45_isherlock-antispam
ssr45_isherlock-user 		HGiga MailSherlock contains a vulnerability of SQL Injection. Attackers can inject and launch SQL commands in a URL parameter. CWE-89
SQL Injection 		CVE-2020-35742 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198243 6.1 MEDIUM
Network 		hgiga msr45_isherlock-antispam
msr45_isherlock-user
ssr45_isherlock-antispam
ssr45_isherlock-user 		HGiga MailSherlock does not validate user parameters on multiple login pages. Attackers can use the vulnerability to inject JavaScript syntax for XSS attacks. CWE-79
Cross-site Scripting 		CVE-2020-35741 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198244 6.1 MEDIUM
Network 		hgiga msr45_isherlock-antispam
msr45_isherlock-user
ssr45_isherlock-antispam
ssr45_isherlock-user 		HGiga MailSherlock does not validate specific URL parameters properly that allows attackers to inject JavaScript syntax for XSS attacks. CWE-79
Cross-site Scripting 		CVE-2020-35740 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198245 7.5 HIGH
Network 		newgensoft egov In Correspondence Management System (corms) in Newgen eGov 12.0, an attacker can modify other users' profile information by manipulating the unvalidated UserIndex parameter, aka Insecure Direct Objec… NVD-CWE-Other
CVE-2020-35737 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198246 4.8 MEDIUM
Network 		flatpress flatpress FlatPress 1.0.3 is affected by cross-site scripting (XSS) in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in Blog content via the admin panel. Each t… CWE-79
Cross-site Scripting 		CVE-2020-35241 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198247 4.8 MEDIUM
Network 		fluxbb fluxbb FluxBB 1.5.11 is affected by cross-site scripting (XSS in the Blog Content component. This vulnerability can allow an attacker to inject the XSS payload in "Blog Content" and each time any user will … CWE-79
Cross-site Scripting 		CVE-2020-35240 2024-11-21 14:27 2020-12-31 Show GitHub Exploit DB Packet Storm
198248 4.7 MEDIUM
Network 		vidyo vidyo Vidyo 02-09-/D allows clickjacking via the portal/ URI. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-35735 2024-11-21 14:27 2020-12-30 Show GitHub Exploit DB Packet Storm
198249 6.1 MEDIUM
Network 		roundcube
fedoraproject
debian 		webmail
fedora
debian_linux 		An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference el… CWE-79
Cross-site Scripting 		CVE-2020-35730 2024-11-21 14:27 2020-12-29 Show GitHub Exploit DB Packet Storm
198250 7.5 HIGH
Network 		joomla joomla\! An issue was discovered in Joomla! 1.7.0 through 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations. CWE-20
 Improper Input Validation  		CVE-2020-35616 2024-11-21 14:27 2020-12-29 Show GitHub Exploit DB Packet Storm