Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252491 7.5 危険 Andreas Kiefer - TYPO3 用の Yet Another Calendar における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4891 2012-01-19 11:20 2010-09-2 Show GitHub Exploit DB Packet Storm
252492 4.3 警告 Andreas Kiefer - TYPO3 用の Yet Another Calendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4890 2012-01-19 11:19 2010-09-2 Show GitHub Exploit DB Packet Storm
252493 10 危険 Marco Hezel - TYPO3 用の Tiny Market における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4889 2012-01-19 11:18 2010-09-2 Show GitHub Exploit DB Packet Storm
252494 7.5 危険 Marco Hezel - TYPO3 用の Tiny Market における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4888 2012-01-19 11:17 2010-09-2 Show GitHub Exploit DB Packet Storm
252495 7.5 危険 Raphael Zschorsch - TYPO3 用の Commenting system Backend Module における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4887 2012-01-19 11:17 2010-09-2 Show GitHub Exploit DB Packet Storm
252496 4.3 警告 Peter Proell - TYPO3 用の official twitter tweet button for your page におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4886 2012-01-19 11:10 2010-09-2 Show GitHub Exploit DB Packet Storm
252497 4.3 警告 Peter Proell - TYPO3 用の XING Button におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4885 2012-01-19 11:09 2010-09-2 Show GitHub Exploit DB Packet Storm
252498 7.5 危険 Hinnendahl - Gaestebuch の guestbook/gbook.php におけるリモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4884 2012-01-19 11:08 2011-10-7 Show GitHub Exploit DB Packet Storm
252499 2.6 注意 MODX - MODx Revolution の manager/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4883 2012-01-19 11:06 2011-10-7 Show GitHub Exploit DB Packet Storm
252500 4.3 警告 Ventics - Auto CMS の autocms.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4882 2012-01-19 11:06 2011-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215541 5.7 MEDIUM
Adjacent 		sane-project
canonical
opensuse 		sane_backends
ubuntu_linux
leap 		A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to cause a denial of service, GHSL-2020-079. CWE-476
 NULL Pointer Dereference 		CVE-2020-12866 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215542 8.0 HIGH
Adjacent 		sane-project
debian
canonical
opensuse 		sane_backends
debian_linux
ubuntu_linux
leap 		A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084. CWE-787
 Out-of-bounds Write 		CVE-2020-12865 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215543 4.3 MEDIUM
Adjacent 		sane-project
opensuse
canonical 		sane_backends
leap
ubuntu_linux 		An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog… CWE-125
Out-of-bounds Read 		CVE-2020-12864 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215544 4.3 MEDIUM
Adjacent 		sane-project
debian
canonical
opensuse 		sane_backends
debian_linux
ubuntu_linux
leap 		An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog… CWE-125
Out-of-bounds Read 		CVE-2020-12863 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215545 4.3 MEDIUM
Adjacent 		sane-project
debian
canonical
opensuse 		sane_backends
debian_linux
ubuntu_linux
leap 		An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the prog… CWE-125
Out-of-bounds Read 		CVE-2020-12862 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215546 8.8 HIGH
Adjacent 		sane-project
canonical
opensuse 		sane_backends
ubuntu_linux
leap 		A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-080. CWE-787
 Out-of-bounds Write 		CVE-2020-12861 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215547 6.5 MEDIUM
Network 		nukeviet nukeviet modules\users\admin\edit.php in NukeViet 4.4 allows CSRF to change a user's password via an admin/index.php?nv=users&op=edit&userid= URI. The old password is not needed. CWE-352
 Origin Validation Error 		CVE-2020-13157 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215548 6.5 MEDIUM
Network 		nukeviet nukeviet modules\users\admin\add_user.php in NukeViet 4.4 allows CSRF to add a user account via the admin/index.php?nv=users&op=user_add URI. CWE-352
 Origin Validation Error 		CVE-2020-13156 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215549 8.8 HIGH
Network 		nukeviet nukeviet clearsystem.php in NukeViet 4.4 allows CSRF with resultant HTML injection via the deltype parameter to the admin/index.php?nv=webtools&op=clearsystem URI. CWE-352
 Origin Validation Error 		CVE-2020-13155 2024-11-21 14:00 2020-06-24 Show GitHub Exploit DB Packet Storm
215550 9.8 CRITICAL
Network 		openfind mailgates
mailaudit 		Openfind MailGates contains a Command Injection flaw, when receiving email with specific strings, malicious code in the mail attachment will be triggered and gain unauthorized access to system files. CWE-77
Command Injection 		CVE-2020-12782 2024-11-21 14:00 2020-06-23 Show GitHub Exploit DB Packet Storm