Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250981 9.3 危険 シスコシステムズ - Cisco WRF および ARF Player T27LB におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3041 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
250982 5 警告 DuckCorp Projects - bip におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-3071 2012-03-27 18:42 2010-10-14 Show GitHub Exploit DB Packet Storm
250983 4.3 警告 dietrich ayala - MantisBT の NuSOAP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3070 2012-03-27 18:42 2010-09-28 Show GitHub Exploit DB Packet Storm
250984 10 危険 シスコシステムズ - Cisco ICM の Setup Manager の agent.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3040 2012-03-27 18:42 2010-11-3 Show GitHub Exploit DB Packet Storm
250985 6.8 警告 シスコシステムズ - Cisco CUCM の /usr/local/cm/bin/pktCap_protectData における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-3039 2012-03-27 18:42 2010-11-3 Show GitHub Exploit DB Packet Storm
250986 10 危険 シスコシステムズ - Cisco UVC System 5110 および 5115 における不正アクセスの脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3038 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
250987 8.5 危険 シスコシステムズ - 複数の Cisco UVC System 製品における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3037 2012-03-27 18:42 2010-11-17 Show GitHub Exploit DB Packet Storm
250988 10 危険 シスコシステムズ - Cisco CiscoWorks Common Service の Web サーバの認証機能における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3036 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
250989 5 警告 シスコシステムズ - Cisco WLC における ACL を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3034 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
250990 9 危険 シスコシステムズ - Cisco WLC におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3033 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202061 7.4 HIGH
Network 		fujixerox easy_netprint The kantan netprint App for Android 2.0.3 and earlier does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a… CWE-295
Improper Certificate Validation  		CVE-2020-5522 2024-11-21 14:34 2020-01-27 Show GitHub Exploit DB Packet Storm
202062 7.4 HIGH
Network 		fujixerox easy_netprint The kantan netprint App for iOS 2.0.2 and earlier does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a cra… CWE-295
Improper Certificate Validation  		CVE-2020-5521 2024-11-21 14:34 2020-01-27 Show GitHub Exploit DB Packet Storm
202063 7.4 HIGH
Network 		fujixerox netprint The netprint App for iOS 3.2.3 and earlier does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted ce… CWE-295
Improper Certificate Validation  		CVE-2020-5520 2024-11-21 14:34 2020-01-27 Show GitHub Exploit DB Packet Storm
202064 7.9 HIGH
Adjacent 		philips hue_bridge_v2_firmware Philips Hue Bridge model 2.X prior to and including version 1935144020 contains a Heap-based Buffer Overflow when handling a long ZCL string during the commissioning phase, resulting in a remote code… CWE-787
 Out-of-bounds Write 		CVE-2020-6007 2024-11-21 14:34 2020-01-24 Show GitHub Exploit DB Packet Storm
202065 5.3 MEDIUM
Network 		vmware
oracle 		spring_framework
flexcube_private_banking
insurance_policy_administration_j2ee
insurance_rules_palette
retail_service_backbone
retail_back_office
weblogic_server
application_test… 		Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Spring MVC (spring-webmvc module) or Spring WebFlux (spring-webflux module) … CWE-352
 Origin Validation Error 		CVE-2020-5397 2024-11-21 14:34 2020-01-18 Show GitHub Exploit DB Packet Storm
202066 7.5 HIGH
Network 		vmware
oracle
netapp 		spring_framework
flexcube_private_banking
insurance_policy_administration_j2ee
insurance_rules_palette
retail_service_backbone
retail_back_office
weblogic_server
application_test… 		In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it … CWE-494
 Download of Code Without Integrity Check 		CVE-2020-5398 2024-11-21 14:34 2020-01-17 Show GitHub Exploit DB Packet Storm
202067 6.5 MEDIUM
Network 		phpbb phpbb phpBB 3.2.8 allows a CSRF attack that can approve pending group memberships. CWE-352
 Origin Validation Error 		CVE-2020-5502 2024-11-21 14:34 2020-01-15 Show GitHub Exploit DB Packet Storm
202068 4.3 MEDIUM
Network 		phpbb phpbb phpBB 3.2.8 allows a CSRF attack that can modify a group avatar. CWE-352
 Origin Validation Error 		CVE-2020-5501 2024-11-21 14:34 2020-01-15 Show GitHub Exploit DB Packet Storm
202069 7.2 HIGH
Network 		phpgurukul car_rental_portal PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload of a new profile image. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-5509 2024-11-21 14:34 2020-01-15 Show GitHub Exploit DB Packet Storm
202070 9.8 CRITICAL
Network 		vaaip freelancy Freelancy v1.0.0 allows remote command execution via the "file":"data:application/x-php;base64 substring (in conjunction with "type":"application/x-php"} to the /api/files/ URI. CWE-78
OS Command  		CVE-2020-5505 2024-11-21 14:34 2020-01-15 Show GitHub Exploit DB Packet Storm