Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251711	6.8	警告	Vim	-	GVim における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3914	2010-11-1 12:00	2010-11-1	Show	GitHub Exploit DB Packet Storm

251712	9.3	危険	オラクル	-	Oracle Siebel Option Pack for IE の ActiveX コントロールのメモリ初期化処理に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3737	2010-10-29 16:43	2010-08-9	Show	GitHub Exploit DB Packet Storm

251713	4.6	警告	オラクル	-	Oracle Database Server の Job Queue コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2411	2010-10-29 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

251714	4.9	警告	オラクル	-	Oracle Database Server の Change Data Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2415	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

251715	5.5	警告	オラクル	-	Oracle Database Server の OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2412	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

251716	6.5	警告	オラクル	-	Oracle Database Server の Java Virtual Machine コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2419	2010-10-29 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

251717	7.5	危険	オラクル	-	複数の Oracle 製品の Database Control コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2390	2010-10-29 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

251718	7.5	危険	マイクロソフト	-	Microsoft Windows Server の Microsoft Cluster Service 内にあるユーザインターフェイスにおけるディスク上のデータを読まれるまたは編集される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3223	2010-10-29 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

251719	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の UpdateFrameTitleForDocument メソッドにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3227	2010-10-29 16:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

251720	7.1	危険	マイクロソフト	-	複数の Microsoft 製品の Secure Channel におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3229	2010-10-29 16:30	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197531	9.8	CRITICAL Network	aaptjs_project	aaptjs	An issue was discovered in the crunch function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.	CWE-78 OS Command	CVE-2020-36380	2024-11-21 14:29	2021-11-1	Show	GitHub Exploit DB Packet Storm

197532	9.8	CRITICAL Network	aaptjs_project	aaptjs	An issue was discovered in the remove function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.	CWE-78 OS Command	CVE-2020-36379	2024-11-21 14:29	2021-11-1	Show	GitHub Exploit DB Packet Storm

197533	9.8	CRITICAL Network	aaptjs_project	aaptjs	An issue was discovered in the packageCmd function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.	CWE-78 OS Command	CVE-2020-36378	2024-11-21 14:29	2021-11-1	Show	GitHub Exploit DB Packet Storm

197534	9.8	CRITICAL Network	aaptjs_project	aaptjs	An issue was discovered in the dump function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.	CWE-78 OS Command	CVE-2020-36377	2024-11-21 14:29	2021-11-1	Show	GitHub Exploit DB Packet Storm

197535	9.8	CRITICAL Network	aaptjs_project	aaptjs	An issue was discovered in the list function in shenzhim aaptjs 1.3.1, allows attackers to execute arbitrary code via the filePath parameters.	CWE-78 OS Command	CVE-2020-36376	2024-11-21 14:29	2021-11-1	Show	GitHub Exploit DB Packet Storm

197536	6.1	MEDIUM Network	swiftfiletransfer	swift_file_transfer	Swift File Transfer Mobile v1.1.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the devicename parameter which allows attackers to execute arbitrary web scripts or HTML via…	CWE-79 Cross-site Scripting	CVE-2020-36502	2024-11-21 14:29	2021-10-23	Show	GitHub Exploit DB Packet Storm

197537	5.4	MEDIUM Network	sugarcrm	sugarcrm	Multiple cross-site scripting (XSS) vulnerabilities in the Support module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary a…	CWE-79 Cross-site Scripting	CVE-2020-36501	2024-11-21 14:29	2021-10-23	Show	GitHub Exploit DB Packet Storm

197538	5.4	MEDIUM Network	taotesting	tao_assessment_platform	TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a cross-site scripting (XSS) vulnerability in the content parameter of the Rubric Block (Add) module. This vulnerability allo…	CWE-79 Cross-site Scripting	CVE-2020-36499	2024-11-21 14:29	2021-10-23	Show	GitHub Exploit DB Packet Storm

197539	5.4	MEDIUM Network	macrob7_macs_framework_content_management_system_project	macrob7_macs_framework_content_management_system	Macrob7 Macs Framework Content Management System - 1.14f contains a cross-site scripting (XSS) vulnerability in the account reset function, which allows attackers to execute arbitrary web scripts or …	CWE-79 Cross-site Scripting	CVE-2020-36498	2024-11-21 14:29	2021-10-23	Show	GitHub Exploit DB Packet Storm

197540	6.1	MEDIUM Network	dedecms	dedecms	DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the component makehtml_homepage.php via the `filename`, `mid`, `userid`, and `templet' parameters.	CWE-79 Cross-site Scripting	CVE-2020-36497	2024-11-21 14:29	2021-10-23	Show	GitHub Exploit DB Packet Storm