Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251281	6.9	警告	Alcatel-Lucent	-	Alcatel-Lucent OmniTouch Contact Center の TSA コンポーネントの CCAgent オプションにおける Contact Center 操作を監視または再設定される脆弱性	CWE-200 情報漏えい	CVE-2010-3280	2012-03-27 18:42	2010-09-20	Show	GitHub Exploit DB Packet Storm

251282	7.6	危険	Alcatel-Lucent	-	Alcatel-Lucent OmniTouch Contact Center の CCAgent オプションのディフォルト設定における Contact Center 操作を監視または再設定される脆弱性	CWE-16 環境設定	CVE-2010-3279	2012-03-27 18:42	2010-09-20	Show	GitHub Exploit DB Packet Storm

251283	2.1	注意	VMware	-	VMware Workstation および VMware Player のインストーラにおける Web スクリプトまたは HTML の想定外の解釈が発生する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3277	2012-03-27 18:42	2010-09-23	Show	GitHub Exploit DB Packet Storm

251284	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3276	2012-03-27 18:42	2011-03-28	Show	GitHub Exploit DB Packet Storm

251285	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3275	2012-03-27 18:42	2011-03-28	Show	GitHub Exploit DB Packet Storm

251286	4.3	警告	Zoho Corporation	-	ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3274	2012-03-27 18:42	2011-02-17	Show	GitHub Exploit DB Packet Storm

251287	5	警告	Zoho Corporation	-	ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3273	2012-03-27 18:42	2011-02-17	Show	GitHub Exploit DB Packet Storm

251288	4.3	警告	Zoho Corporation	-	ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3272	2012-03-27 18:42	2011-02-17	Show	GitHub Exploit DB Packet Storm

251289	6.8	警告	IBM	-	IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3271	2012-03-27 18:42	2011-07-18	Show	GitHub Exploit DB Packet Storm

251290	6.8	警告	シスコシステムズ	-	Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3270	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208491	7.8	HIGH Local	safervpn	safervpn	SaferVPN for Windows Ver 5.0.3.3 through 5.0.4.15 could allow local privilege escalation from low privileged users to SYSTEM via a crafted openssl configuration file. This issue is similar to CVE-201…	CWE-427 Uncontrolled Search Path Element	CVE-2020-26050	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208492	5.4	MEDIUM Network	redcarpet_project debian	redcarpet debian_linux	Redcarpet is a Ruby library for Markdown processing. In Redcarpet before version 3.5.1, there is an injection vulnerability which can enable a cross-site scripting attack. In affected versions no HTM…	-	CVE-2020-26298	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208493	8.8	HIGH Network	smartbear	collaborator	In SmartBear Collaborator Server through 13.3.13302, use of the Google Web Toolkit (GWT) API introduces a post-authentication Java deserialization vulnerability. The application's UpdateMemento class…	CWE-502 Deserialization of Untrusted Data	CVE-2020-26118	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208494	6.8	MEDIUM Physics	dell	inspiron_5675_firmware	Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwritin…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-26186	2024-11-21 14:19	2021-01-9	Show	GitHub Exploit DB Packet Storm

208495	4.3	MEDIUM Network	totalonlinesolutions	advanced_webhost_billing_system	Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery (CSRF) attacks that can delete a contact from the My Additional Contact page.	CWE-352 Origin Validation Error	CVE-2020-25950	2024-11-21 14:19	2021-01-8	Show	GitHub Exploit DB Packet Storm

208496	9.9	CRITICAL Network	cisco	jabber	Multiple vulnerabilities in Cisco Jabber for Windows, Jabber for MacOS, and Jabber for mobile platforms could allow an attacker to execute arbitrary programs on the underlying operating system (OS) w…	CWE-78 OS Command	CVE-2020-26085	2024-11-21 14:19	2021-01-7	Show	GitHub Exploit DB Packet Storm

208497	6.7	MEDIUM Local	dell	emc_unity_operating_environment emc_unity_vsa_operating_environment emc_unity_xt_operating_environment	Dell EMC Unity, Unity XT, and UnityVSA versions prior to 5.0.4.0.5.012 contain a plain-text password storage vulnerability. A user credentials (including the Unisphere admin privilege user) password …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-26199	2024-11-21 14:19	2021-01-6	Show	GitHub Exploit DB Packet Storm

208498	7.8	HIGH Local	dell	emc_powerscale_onefs emc_isilon_onefs	Dell EMC Isilon OneFS versions 8.1 and later and Dell EMC PowerScale OneFS version 9.0.0 contain a privilege escalation vulnerability on a SmartLock Compliance mode cluster. The compadmin user connec…	NVD-CWE-noinfo	CVE-2020-26181	2024-11-21 14:19	2021-01-6	Show	GitHub Exploit DB Packet Storm

208499	5.4	MEDIUM Network	thedaylightstudio	fuel_cms	FUEL CMS 1.4.11 has stored XSS in Blocks/Navigation/Site variables. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account a…	CWE-79 Cross-site Scripting	CVE-2020-26046	2024-11-21 14:19	2021-01-6	Show	GitHub Exploit DB Packet Storm

208500	9.8	CRITICAL Network	thedaylightstudio	fuel_cms	FUEL CMS 1.4.11 allows SQL Injection via parameter 'name' in /fuel/permissions/create/. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit …	CWE-89 SQL Injection	CVE-2020-26045	2024-11-21 14:19	2021-01-6	Show	GitHub Exploit DB Packet Storm