Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251871 10 危険 IBM - IBM DB2 の DB2STST プログラムにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3193 2011-02-17 18:04 2010-01-5 Show GitHub Exploit DB Packet Storm
251872 5 警告 IBM - IBM DB2 の kuddb2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0472 2011-02-17 17:53 2010-02-2 Show GitHub Exploit DB Packet Storm
251873 4.4 警告 オラクル - Oracle Solaris 10 および 11 Express の Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4442 2011-02-17 14:02 2011-01-18 Show GitHub Exploit DB Packet Storm
251874 4.4 警告 オラクル - Oracle Solaris 10 および 11 Express の Kernel における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4440 2011-02-17 14:02 2011-01-18 Show GitHub Exploit DB Packet Storm
251875 4.6 警告 オラクル - Oracle Solaris 11 Express の RDS および Kernel/InfiniBand における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4446 2011-02-17 14:01 2011-01-18 Show GitHub Exploit DB Packet Storm
251876 4.6 警告 オラクル - Oracle Solaris 11 Express の SCTP および Kernel/sockfs における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4459 2011-02-17 14:00 2011-01-18 Show GitHub Exploit DB Packet Storm
251877 4.4 警告 オラクル - Oracle Solaris 10 および 11 Express の Kernel/NFS における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4443 2011-02-17 14:00 2011-01-18 Show GitHub Exploit DB Packet Storm
251878 5 警告 オラクル - Oracle Sun Management Center の Web コンソールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-4436 2011-02-17 14:00 2011-01-18 Show GitHub Exploit DB Packet Storm
251879 5 警告 オラクル - Oracle Solaris 10 の Ethernet および Driver sub-component における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4433 2011-02-17 13:59 2011-01-18 Show GitHub Exploit DB Packet Storm
251880 5.7 警告 オラクル - Oracle GlassFish および Java System Message Queue における脆弱性 CWE-noinfo
情報不足 		CVE-2010-4438 2011-02-17 13:59 2011-01-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196841 9.8 CRITICAL
Network 		fatfreeframework fat-free_framework In Fat-Free Framework 3.7.1, attackers can achieve arbitrary code execution if developers choose to pass user controlled input (e.g., $_REQUEST, $_GET, or $_POST) to the framework's Clear method. CWE-94
CWE-20
Code Injection
 Improper Input Validation  		CVE-2020-5203 2024-11-21 14:33 2020-03-11 Show GitHub Exploit DB Packet Storm
196842 8.6 HIGH
Network 		linuxfoundation dojox In affected versions of dojox (NPM package), the jqMix method is vulnerable to Prototype Pollution. Prototype Pollution refers to the ability to inject properties into existing JavaScript language co… CWE-74
Injection 		CVE-2020-5259 2024-11-21 14:33 2020-03-11 Show GitHub Exploit DB Packet Storm
196843 7.7 HIGH
Network 		linuxfoundation
debian
oracle 		dojo
debian_linux
webcenter_sites
primavera_unifier
communications_policy_management
weblogic_server
mysql
communications_pricing_design_center
documaker
communications_app… 		In affected versions of dojo (NPM package), the deepCopy method is vulnerable to Prototype Pollution. Prototype Pollution refers to the ability to inject properties into existing JavaScript language … - CVE-2020-5258 2024-11-21 14:33 2020-03-11 Show GitHub Exploit DB Packet Storm
196844 8.1 HIGH
Network 		nethack nethack In NetHack before 3.6.6, some out-of-bound values for the hilite_status option can be exploited. NetHack 3.6.6 resolves this issue. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-5254 2024-11-21 14:33 2020-03-11 Show GitHub Exploit DB Packet Storm
196845 9.8 CRITICAL
Network 		nethack nethack NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0. CWE-269
 Improper Privilege Management 		CVE-2020-5253 2024-11-21 14:33 2020-03-11 Show GitHub Exploit DB Packet Storm
196846 7.8 HIGH
Local 		dell digital_delivery Dell Digital Delivery versions prior to 3.5.2015 contain an incorrect default permissions vulnerability. A locally authenticated low-privileged malicious user could exploit this vulnerability to run … CWE-276
Incorrect Default Permissions  		CVE-2020-5342 2024-11-21 14:33 2020-03-10 Show GitHub Exploit DB Packet Storm
196847 8.8 HIGH
Network 		bookstackapp bookstack BookStack before version 0.25.5 has a vulnerability where a user could upload PHP files through image upload functions, which would allow them to execute code on the host system remotely. They would … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-5256 2024-11-21 14:33 2020-03-10 Show GitHub Exploit DB Packet Storm
196848 9.8 CRITICAL
Network 		dell emc_isilon_onefs Dell EMC Isilon OneFS versions prior to 8.2.0 contain an unauthorized access vulnerability due to a lack of thorough authorization checks when SyncIQ is licensed, but encrypted syncs are not marked a… CWE-306
Missing Authentication for Critical Function 		CVE-2020-5328 2024-11-21 14:33 2020-03-7 Show GitHub Exploit DB Packet Storm
196849 9.8 CRITICAL
Network 		dell security_management_server Dell Security Management Server versions prior to 10.2.10 contain a Java RMI Deserialization of Untrusted Data vulnerability. When the server is exposed to the internet and Windows Firewall is disabl… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-5327 2024-11-21 14:33 2020-03-7 Show GitHub Exploit DB Packet Storm
196850 6.3 MEDIUM
Network 		prestashop prestashop In PrestaShop before version 1.7.6.4, when a customer edits their address, they can freely change the id_address in the form, and thus steal someone else's address. It is the same with CustomerForm, … CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-5250 2024-11-21 14:33 2020-03-6 Show GitHub Exploit DB Packet Storm