Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251201	5	警告	energyscripts	-	ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3456	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251202	4.3	警告	ATutor	-	AChecker の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3455	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251203	6.8	警告	FFmpeg mplayerhq	-	MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3429	2012-03-27 18:42	2010-09-30	Show	GitHub Exploit DB Packet Storm

251204	7.5	危険	Intermesh	-	Intermesh Group-Office の modules/notes/json.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3428	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251205	4.3	警告	Open Classifieds	-	Open Classifieds におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3427	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251206	7.5	危険	4you-studio	-	Joomla! 用の Alpha の JPhone (com_jphone) コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3426	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251207	4.3	警告	SmarterTools Inc.	-	SmarterStats の UserControls/Popups/frmHelp.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3425	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251208	4.3	警告	Invision Power Services, Inc	-	IP.Board の admin/sources/classes/bbcode/custom/defaults.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3424	2012-03-27 18:42	2010-09-7	Show	GitHub Exploit DB Packet Storm

251209	7.5	危険	freka	-	Drupal の Yr Weatherdata モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3423	2012-03-27 18:42	2010-09-8	Show	GitHub Exploit DB Packet Storm

251210	7.5	危険	solventus Joomla!	-	Jmoola! 用の JGen コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3422	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215211	8.2	HIGH Network	apache fedoraproject	xmlgraphics_commons fedora	Apache XmlGraphics Commons 2.4 and earlier is vulnerable to server-side request forgery, caused by improper input validation by the XMPParser. By using a specially-crafted argument, an attacker could…	CWE-20 CWE-918 Improper Input Validation Server-Side Request Forgery (SSRF)	CVE-2020-11988	2024-11-21 13:59	2021-02-25	Show	GitHub Exploit DB Packet Storm

215212	8.2	HIGH Network	apache fedoraproject oracle debian	batik fedora enterprise_repository retail_back_office weblogic_server retail_order_broker retail_returns_management retail_central_office retail_point-of-service instantis_…	Apache Batik 1.13 is vulnerable to server-side request forgery, caused by improper input validation by the NodePickerPanel. By using a specially-crafted argument, an attacker could exploit this vulne…	CWE-20 CWE-918 Improper Input Validation Server-Side Request Forgery (SSRF)	CVE-2020-11987	2024-11-21 13:59	2021-02-25	Show	GitHub Exploit DB Packet Storm

215213	6.7	MEDIUM Local	intel	bmc_firmware	Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege v…	CWE-120 Classic Buffer Overflow	CVE-2020-12374	2024-11-21 13:59	2021-02-20	Show	GitHub Exploit DB Packet Storm

215214	5.5	MEDIUM Local	intel	graphics_drivers	Untrusted pointer dereference in some Intel(R) Graphics Drivers before versions 15.33.51.5146, 15.45.32.5145, 15.36.39.5144 and 15.40.46.5143 may allow an authenticated user to potentially denial of …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-12365	2024-11-21 13:59	2021-02-18	Show	GitHub Exploit DB Packet Storm

215215	5.5	MEDIUM Local	intel	graphics_drivers	Out-of-bounds write in some Intel(R) Graphics Drivers before version 15.36.39.5143 may allow an authenticated user to potentially enable denial of service via local access.	CWE-787 Out-of-bounds Write	CVE-2020-12386	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm

215216	7.8	HIGH Local	intel	graphics_drivers	Improper input validation in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-20 Improper Input Validation	CVE-2020-12385	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm

215217	7.8	HIGH Local	intel	graphics_drivers	Improper access control in some Intel(R) Graphics Drivers before version 26.20.100.8476 may allow an authenticated user to potentially enable an escalation of privilege via local access.	NVD-CWE-Other	CVE-2020-12384	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm

215218	7.8	HIGH Local	intel	bmc_firmware	Out of bounds read in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalation of priv…	CWE-125 Out-of-bounds Read	CVE-2020-12380	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm

215219	7.8	HIGH Local	intel	bmc_firmware	Insufficient input validation in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow an authenticated user to potentially enable escalat…	CWE-20 Improper Input Validation	CVE-2020-12377	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm

215220	5.5	MEDIUM Local	intel	bmc_firmware	Use of hard-coded key in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow authenticated user to potentially enable information disclo…	CWE-798 Use of Hard-coded Credentials	CVE-2020-12376	2024-11-21 13:59	2021-02-17	Show	GitHub Exploit DB Packet Storm