Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251681 9.3 危険 リアルネットワークス - RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2998 2010-11-9 14:50 2010-10-15 Show GitHub Exploit DB Packet Storm
251682 - - Artifex Software - Ghostscript にサービス運用妨害 (DoS) の脆弱性 - - 2010-11-9 14:46 2010-10-13 Show GitHub Exploit DB Packet Storm
251683 4 警告 IBM - IBM DB2 におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3475 2010-11-8 16:09 2010-08-5 Show GitHub Exploit DB Packet Storm
251684 5 警告 IBM - IBM DB2 におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3474 2010-11-8 16:08 2010-04-19 Show GitHub Exploit DB Packet Storm
251685 9.3 危険 ジャストシステム - 一太郎シリーズにおける任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3916 2010-11-5 15:02 2010-11-4 Show GitHub Exploit DB Packet Storm
251686 9.3 危険 ジャストシステム - 一太郎シリーズにおける任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3915 2010-11-5 15:01 2010-11-4 Show GitHub Exploit DB Packet Storm
251687 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
レッドハット		 - Apache の mod_proxy_ftp モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2939 2010-11-4 15:35 2008-08-6 Show GitHub Exploit DB Packet Storm
251688 1.9 注意 オラクル - Oracle Solaris および OpenSolaris における USB の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3542 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
251689 2.4 注意 オラクル - Oracle Solaris および OpenSolaris における Device Drivers の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3513 2010-11-4 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
251690 3.2 注意 オラクル - Oracle Solaris における Solaris Zones の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3508 2010-11-4 15:30 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199721 7.8 HIGH
Local 		hp officejet_4650_e6g87a_firmware
officejet_4650_f1h96a_firmware
officejet_4650_f1h96b_firmware
officejet_4650_f1j03a_firmware
officejet_4650_f1j04a_firmware
officejet_4650_f9d37a_firmwar… 		HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentiall… NVD-CWE-noinfo
CVE-2020-28416 2024-11-21 14:22 2021-11-4 Show GitHub Exploit DB Packet Storm
199722 7.5 HIGH
Network 		wuzhicms wuzhicms Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-28145 2024-11-21 14:22 2021-10-12 Show GitHub Exploit DB Packet Storm
199723 6.1 MEDIUM
Network 		53kf 53kf Cross site scripting vulnerability in 53KF < 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window. CWE-79
Cross-site Scripting 		CVE-2020-28119 2024-11-21 14:22 2021-10-5 Show GitHub Exploit DB Packet Storm
199724 5.3 MEDIUM
Network 		yandex yandex_browser Yandex Browser before 20.10.0 allows remote attackers to spoof the address bar CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-27970 2024-11-21 14:22 2021-09-13 Show GitHub Exploit DB Packet Storm
199725 7.3 HIGH
Network 		yandex yandex_browser Yandex Browser for Android 20.8.4 allows remote attackers to perform SOP bypass and addresss bar spoofing CWE-346
 Origin Validation Error 		CVE-2020-27969 2024-11-21 14:22 2021-09-13 Show GitHub Exploit DB Packet Storm
199726 7.8 HIGH
Local 		apple mac_os_x A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. Processing a maliciously crafted font file may l… NVD-CWE-noinfo
CVE-2020-27942 2024-11-21 14:22 2021-09-9 Show GitHub Exploit DB Packet Storm
199727 4.3 MEDIUM
Network 		apple apple_tv This issue was addressed with improved file handling. This issue is fixed in Apple TV app for Fire OS 6.1.0.6A142:7.1.0. An attacker with file system access may modify scripts used by the app. NVD-CWE-noinfo
CVE-2020-27940 2024-11-21 14:22 2021-09-9 Show GitHub Exploit DB Packet Storm
199728 6.1 MEDIUM
Network 		eyoucms eyoucms Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter. CWE-79
Cross-site Scripting 		CVE-2020-28146 2024-11-21 14:22 2021-08-19 Show GitHub Exploit DB Packet Storm
199729 7.8 HIGH
Local 		prusa3d prusaslicer A use-after-free vulnerability exists in the _3MF_Importer::_handle_end_model() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit 4b040b856). A specially crafted 3MF file can lead … CWE-416
 Use After Free 		CVE-2020-28594 2024-11-21 14:22 2021-08-18 Show GitHub Exploit DB Packet Storm
199730 9.8 CRITICAL
Network 		easycorp zentao The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-28165 2024-11-21 14:22 2021-08-12 Show GitHub Exploit DB Packet Storm