Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252781 9.3 危険 シマンテック
IBM		 - Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0131 2010-08-24 18:40 2010-08-4 Show GitHub Exploit DB Packet Storm
252782 4.3 警告 サイバートラスト株式会社
LibTIFF
レッドハット		 - x86_64 プラットフォーム上で稼動する RHEL の LibTIFF におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2598 2010-08-24 13:44 2010-07-8 Show GitHub Exploit DB Packet Storm
252783 6.8 警告 アップル
サイバートラスト株式会社
LibTIFF
レッドハット		 - LibTIFF の FAX3 デコーダの Fax3SetupState 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1411 2010-08-24 13:44 2010-06-10 Show GitHub Exploit DB Packet Storm
252784 2.6 注意 アップル - Apple Safari の AutoFill 機能におけるアドレスブックカードの情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1796 2010-08-20 18:24 2010-07-30 Show GitHub Exploit DB Packet Storm
252785 4.3 警告 アップル - Apple Safari におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1778 2010-08-20 18:24 2010-07-30 Show GitHub Exploit DB Packet Storm
252786 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
252787 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
252788 5 警告 金子 勇 - Winny におけるノード情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2362 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
252789 5 警告 金子 勇 - Winny における BBS 情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2361 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
252790 10 危険 シマンテック
IBM		 - Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3032 2010-08-19 18:22 2010-03-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199291 9.1 CRITICAL
Network 		urve urve An issue was discovered in URVE Build 24.03.2020. Using the _internal/pc/shutdown.php path, it is possible to shutdown the system. Among others, the following files and scripts are also accessible: _… CWE-306
Missing Authentication for Critical Function 		CVE-2020-29551 2024-11-21 14:24 2020-12-24 Show GitHub Exploit DB Packet Storm
199292 7.5 HIGH
Network 		urve urve An issue was discovered in URVE Build 24.03.2020. The password of an integration user account (used for the connection of the MS Office 365 Integration Service) is stored in cleartext in configuratio… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-29550 2024-11-21 14:24 2020-12-24 Show GitHub Exploit DB Packet Storm
199293 9.8 CRITICAL
Network 		zyxel usg20-vpn_firmware
usg20w-vpn_firmware
usg40_firmware
usg40w_firmware
usg60_firmware
usg60w_firmware
usg110_firmware
usg210_firmware
usg310_firmware
usg1100_firmware
usg… 		Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-29583 2024-11-21 14:24 2020-12-23 Show GitHub Exploit DB Packet Storm
199294 7.5 HIGH
Network 		miniweb_http_server_project miniweb_http_server MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request. CWE-120
Classic Buffer Overflow 		CVE-2020-29596 2024-11-21 14:24 2020-12-22 Show GitHub Exploit DB Packet Storm
199295 4.3 MEDIUM
Network 		atlassian crucible Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-29447 2024-11-21 14:24 2020-12-21 Show GitHub Exploit DB Packet Storm
199296 7.5 HIGH
Network 		golang ssh A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers. CWE-476
 NULL Pointer Dereference 		CVE-2020-29652 2024-11-21 14:24 2020-12-17 Show GitHub Exploit DB Packet Storm
199297 7.2 HIGH
Network 		pluck-cms pluck A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-29607 2024-11-21 14:24 2020-12-17 Show GitHub Exploit DB Packet Storm
199298 9.1 CRITICAL
Network 		icinga icinga Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.… CWE-295
Improper Certificate Validation  		CVE-2020-29663 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199299 7.5 HIGH
Network 		xen xapi An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and da… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-29487 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm
199300 5.5 MEDIUM
Local 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. Th… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2020-29485 2024-11-21 14:24 2020-12-16 Show GitHub Exploit DB Packet Storm