Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251091 10 危険 Mozilla Foundation - Mozilla Firefox の WebSockets 実装における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4508 2012-03-27 18:42 2010-12-9 Show GitHub Exploit DB Packet Storm
251092 9.3 危険 clear - ClearSpot の iSpot における管理者の認証をクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4507 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
251093 6.8 警告 injader - Injader の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4505 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
251094 4.3 警告 Intelliants - eSyndiCat Directory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4504 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
251095 7.5 危険 aigaion - Aigaion の indexlight.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4503 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
251096 7.2 危険 CA Technologies - CA Internet Security Suite Plus の KmxSbx.sys における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4502 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
251097 6.8 警告 mrcgiguy - MCG FreeTicket の contact.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4500 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
251098 9 危険 TIBCO Software - TIBCO ActiveMatrix Service Grid などで使用される ActiveMatrix Runtime コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4495 2012-03-27 18:42 2010-12-14 Show GitHub Exploit DB Packet Storm
251099 4.3 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4493 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
251100 10 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4492 2012-03-27 18:42 2010-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215201 7.5 HIGH
Network 		mitel 6863_firmware
6865_firmware
6867_firmware
6869_firmware
6873_firmware
6940_firmware
6970_firmware
6930_firmware
6920_firmware
6905_firmware
6910_firmware 		The Web UI component of Mitel MiVoice 6800 and 6900 series SIP Phones with firmware before 5.1.0.SP5 could allow an unauthenticated attacker to expose sensitive information due to improper memory han… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-13617 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
215202 5.4 MEDIUM
Network 		hivemq broker_control_center An issue was discovered in HiveMQ Broker Control Center 4.3.2. A crafted clientid parameter in an MQTT packet (sent to the Broker) is reflected in the client section of the management console. The at… CWE-79
Cross-site Scripting 		CVE-2020-13821 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
215203 7.5 HIGH
Network 		aedes_project aedes An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13410 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
215204 8.8 HIGH
Network 		i-doit i-doit A CSV injection (aka Excel Macro Injection or Formula Injection) issue in i-doit 1.14.2 allows an attacker to execute arbitrary commands via a Title parameter that is mishandled in a CSV export. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-13826 2024-11-21 14:01 2020-08-20 Show GitHub Exploit DB Packet Storm
215205 6.1 MEDIUM
Network 		i-doit i-doit A cross-site scripting (XSS) vulnerability in i-doit 1.14.2 allows remote attackers to inject arbitrary web script or HTML via the viewMode, tvMode, tvType, objID, catgID, objTypeID, or editMode para… CWE-79
Cross-site Scripting 		CVE-2020-13825 2024-11-21 14:01 2020-08-20 Show GitHub Exploit DB Packet Storm
215206 9.0 CRITICAL
Network 		securenvoy securmail SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable files and achieve OS command execution via a crafted SecurEnvoyReply cookie. CWE-22
Path Traversal 		CVE-2020-13376 2024-11-21 14:01 2020-08-8 Show GitHub Exploit DB Packet Storm
215207 9.8 CRITICAL
Network 		ivanti dsm_netinst Unsafe storage of AD credentials in Ivanti DSM netinst 5.1 due to a static, hard-coded encryption key. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-13793 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm
215208 8.8 HIGH
Network 		zyxel nas326_firmware
nas520_firmware
nas540_firmware
nas542_firmware 		Certain Zyxel products have a locally accessible binary that allows a non-root user to generate a password for an undocumented user account that can be used for a TELNET session as root. This affects… CWE-287
Improper Authentication 		CVE-2020-13365 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm
215209 8.8 HIGH
Network 		zyxel nas326_firmware
nas520_firmware
nas540_firmware
nas542_firmware 		A backdoor in certain Zyxel products allows remote TELNET access via a CGI script. This affects NAS520 V5.21(AASZ.4)C0, V5.21(AASZ.0)C0, V5.11(AASZ.3)C0, and V5.11(AASZ.0)C0; NAS542 V5.11(ABAG.0)C0, … NVD-CWE-noinfo
CVE-2020-13364 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm
215210 8.8 HIGH
Network 		quadra-informatique atos\/sips The ATOS/Sips (aka Atos-Magento) community module 3.0.0 to 3.0.5 for Magento allows command injection. CWE-78
OS Command  		CVE-2020-13404 2024-11-21 14:01 2020-08-6 Show GitHub Exploit DB Packet Storm