Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251341 6.2 警告 Linux - Linux kernel の drivers/media/video/v4l2-compat-ioctl32.c における任意のカーネルメモリロケーションに書き込まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2963 2012-03-27 18:42 2010-11-26 Show GitHub Exploit DB Packet Storm
251342 6.9 警告 scott james remnant - mountall の mountall.c における権限を取得される脆弱性 CWE-362
競合状態 		CVE-2010-2961 2012-03-27 18:42 2010-09-14 Show GitHub Exploit DB Packet Storm
251343 7.2 危険 Linux - Linux kernel の keyctl_session_to_parent 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2960 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
251344 7.2 危険 Linux - Linux kernel の net/can/bcm.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2959 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
251345 4.3 警告 The phpMyAdmin Project - phpMyAdmin の libraries/Error.class.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2958 2012-03-27 18:42 2010-08-30 Show GitHub Exploit DB Packet Storm
251346 2.6 注意 s9y - Serendipity におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2957 2012-03-27 18:42 2010-08-27 Show GitHub Exploit DB Packet Storm
251347 6.9 警告 Apache Software Foundation - Debian GNU/Linux の CouchDB における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-2953 2012-03-27 18:42 2010-09-9 Show GitHub Exploit DB Packet Storm
251348 4.3 警告 Apache Software Foundation - Apache Traffic Server における内部 DNS キャッシュポイズニングの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2952 2012-03-27 18:42 2010-09-13 Show GitHub Exploit DB Packet Storm
251349 5 警告 Squid-cache.org - Squid の dns_internal.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-2951 2012-03-27 18:42 2010-10-12 Show GitHub Exploit DB Packet Storm
251350 2.1 注意 Linux - Linux kernel の fs/jfs/xattr.c における xattr 名前空間の制限を回避する脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2946 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215331 6.5 MEDIUM
Network 		gogogate ismartgate_pro_firmware iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php. CWE-352
 Origin Validation Error 		CVE-2020-12280 2024-11-21 13:59 2020-09-25 Show GitHub Exploit DB Packet Storm
215332 7.2 HIGH
Network 		apache syncope In Apache Syncope 2.1.X releases prior to 2.1.7, when the Flowable extension is enabled, an administrator with workflow entitlements can use Shell Service Tasks to perform malicious operations, inclu… NVD-CWE-noinfo
CVE-2020-11977 2024-11-21 13:59 2020-09-16 Show GitHub Exploit DB Packet Storm
215333 7.5 HIGH
Network 		apache cocoon When using the StreamGenerator, the code parse a user-provided XML. A specially crafted XML, including external system entities, could be used to access any file on the server system. CWE-611
XXE 		CVE-2020-11991 2024-11-21 13:59 2020-09-11 Show GitHub Exploit DB Packet Storm
215334 9.8 CRITICAL
Network 		apache
oracle 		activemq
flexcube_private_banking
enterprise_repository
communications_diameter_signaling_router
communications_element_manager
communications_session_route_manager
communications_s… 		A regression has been introduced in the commit preventing JMX re-bind. By passing an empty environment map to RMIConnectorServer, instead of the map that contains the authentication credentials, it l… NVD-CWE-noinfo
CVE-2020-11998 2024-11-21 13:59 2020-09-11 Show GitHub Exploit DB Packet Storm
215335 9.8 CRITICAL
Network 		apache netbeans To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project.… NVD-CWE-noinfo
CVE-2020-11986 2024-11-21 13:59 2020-09-10 Show GitHub Exploit DB Packet Storm
215336 8.8 HIGH
Network 		foxitsoftware phantompdf
reader 		In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is mishandled. CWE-787
 Out-of-bounds Write 		CVE-2020-12248 2024-11-21 13:59 2020-09-4 Show GitHub Exploit DB Packet Storm
215337 7.1 HIGH
Local 		foxitsoftware phantompdf
reader 		In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can obtain sensitive information from an out-of-bounds read because a text-string index continues to be used after… CWE-125
Out-of-bounds Read 		CVE-2020-12247 2024-11-21 13:59 2020-09-4 Show GitHub Exploit DB Packet Storm
215338 6.1 MEDIUM
Network 		oscommerce ce_phoenix Several XSS vulnerabilities in osCommerce CE Phoenix before 1.0.6.0 allow an attacker to inject and execute arbitrary JavaScript code. The malicious code can be injected as follows: the page paramete… CWE-79
Cross-site Scripting 		CVE-2020-12058 2024-11-21 13:59 2020-09-3 Show GitHub Exploit DB Packet Storm
215339 6.1 MEDIUM
Physics 		teamwire teamwire The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a flaw related to the pass-code component. CWE-306
Missing Authentication for Critical Function 		CVE-2020-12621 2024-11-21 13:59 2020-09-3 Show GitHub Exploit DB Packet Storm
215340 5.4 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.3 and earlier allows XSS via text/x-javascript, text/rdf, or a PDF document. CWE-79
Cross-site Scripting 		CVE-2020-12646 2024-11-21 13:59 2020-09-1 Show GitHub Exploit DB Packet Storm