Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251291	9.3	危険	シスコシステムズ	-	Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3269	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

251292	6.4	警告	orbeon	-	Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3260	2012-03-27 18:42	2011-04-26	Show	GitHub Exploit DB Packet Storm

251293	5	警告	シマンテックインテル	-	Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3268	2012-03-27 18:42	2010-12-22	Show	GitHub Exploit DB Packet Storm

251294	6.5	警告	ifdefined	-	BugTracker.NET における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3267	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

251295	3.5	注意	ifdefined	-	BugTracker.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3266	2012-03-27 18:42	2010-12-2	Show	GitHub Exploit DB Packet Storm

251296	2.1	注意	Novell	-	Novell Identity Manager のエンジンインストーラにおける重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-3264	2012-03-27 18:42	2010-08-23	Show	GitHub Exploit DB Packet Storm

251297	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の setup/frames/index.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3263	2012-03-27 18:42	2010-09-8	Show	GitHub Exploit DB Packet Storm

251298	4.3	警告	flock	-	Flock Browser におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3262	2012-03-27 18:42	2010-09-20	Show	GitHub Exploit DB Packet Storm

251299	5	警告	RSAセキュリティ	-	RSA Authentication Agent for Web におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3261	2012-03-27 18:42	2010-09-24	Show	GitHub Exploit DB Packet Storm

251300	2.1	注意	Blackboard, Inc.	-	Blackboard Transact Suite の自動バックアップ機能における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3245	2012-03-27 18:42	2010-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208381	6.8	MEDIUM Physics	solokeys nitrokey	solo_firmware somu_firmware fido2_firmware	The flash read-out protection (RDP) level is not enforced during the device initialization phase of the SoloKeys Solo 4.0.0 & Somu and the Nitrokey FIDO2 token. This allows an adversary to downgrade …	CWE-326 Inadequate Encryption Strength	CVE-2020-27208	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

208382	7.5	HIGH Network	micro-ecc_project	micro-ecc	The ECDSA operation of the micro-ecc library 1.0 is vulnerable to simple power analysis attacks which allows an adversary to extract the private ECC key.	NVD-CWE-noinfo	CVE-2020-27209	2024-11-21 14:20	2021-05-21	Show	GitHub Exploit DB Packet Storm

208383	7.5	HIGH Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices. Successfully exploiting the vulnerability could enable attackers to read authentication data, …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-27185	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208384	5.9	MEDIUM Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-th…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-27184	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208385	7.5	HIGH Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-…	NVD-CWE-noinfo	CVE-2020-27150	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208386	6.5	MEDIUM Network	moxa	nport_ia5150a_firmware nport_ia5250a_firmware nport_ia5450a_firmware	By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration chan…	NVD-CWE-noinfo	CVE-2020-27149	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208387	7.5	HIGH Network	kaspersky	password_manager	Password generator feature in Kaspersky Password Manager was not completely cryptographically strong and potentially allowed an attacker to predict generated passwords in some cases. An attacker woul…	CWE-326 Inadequate Encryption Strength	CVE-2020-27020	2024-11-21 14:20	2021-05-14	Show	GitHub Exploit DB Packet Storm

208388	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoComment parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authen…	CWE-89 SQL Injection	CVE-2020-27246	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

208389	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authenti…	CWE-89 SQL Injection	CVE-2020-27245	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm

208390	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoCode parameter in the ‘listImmoLabels.jsp’ page is vulnerable to authentic…	CWE-89 SQL Injection	CVE-2020-27244	2024-11-21 14:20	2021-05-11	Show	GitHub Exploit DB Packet Storm