Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252841	6.5	警告	サイバートラスト株式会社 Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0298	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

252842	4.4	警告	サイバートラスト株式会社 Fabrice Bellard レッドハット	-	QEMU の usb_host_handle_control 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0297	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

252843	6.8	警告	サン・マイクロシステムズ freedesktop.org	-	Poppler における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3605	2010-03-15 16:40	2009-11-2	Show	GitHub Exploit DB Packet Storm

252844	4.1	警告	Linux レッドハット	-	Linux kernel の smbfs に関する脆弱性	-	CVE-2006-5871	2010-03-15 16:40	2005-10-5	Show	GitHub Exploit DB Packet Storm

252845	7.8	危険	Linux レッドハット	-	Linux kernel の selinux_parse_skb_ipv6 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2005-4886	2010-03-15 16:40	2005-10-5	Show	GitHub Exploit DB Packet Storm

252846	5	警告	サン・マイクロシステムズ	-	Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2003-1589	2010-03-15 16:39	2003-12-2	Show	GitHub Exploit DB Packet Storm

252847	5	警告	サン・マイクロシステムズ	-	Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2003-1590	2010-03-15 16:39	2003-08-13	Show	GitHub Exploit DB Packet Storm

252848	7.1	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の handle_dr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3722	2010-03-15 15:23	2009-10-30	Show	GitHub Exploit DB Packet Storm

252849	4.3	警告	シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン)	-	APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4406	2010-03-12 15:13	2009-12-23	Show	GitHub Exploit DB Packet Storm

252850	4.3	警告	シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン)	-	APC Network Management Card におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1798	2010-03-12 15:13	2009-12-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199721	7.8	HIGH Local	hp	officejet_4650_e6g87a_firmware officejet_4650_f1h96a_firmware officejet_4650_f1h96b_firmware officejet_4650_f1j03a_firmware officejet_4650_f1j04a_firmware officejet_4650_f9d37a_firmwar…	HP has identified a security vulnerability with the I.R.I.S. OCR (Optical Character Recognition) software available with HP PageWide and OfficeJet printer software installations that could potentiall…	NVD-CWE-noinfo	CVE-2020-28416	2024-11-21 14:22	2021-11-4	Show	GitHub Exploit DB Packet Storm

199722	7.5	HIGH Network	wuzhicms	wuzhicms	Arbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\app\attachment\admin\index.php, which allows attackers to access sensitive information.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-28145	2024-11-21 14:22	2021-10-12	Show	GitHub Exploit DB Packet Storm

199723	6.1	MEDIUM Network	53kf	53kf	Cross site scripting vulnerability in 53KF < 2.0.0.2 that allows for arbitrary code to be executed via crafted HTML statement inserted into chat window.	CWE-79 Cross-site Scripting	CVE-2020-28119	2024-11-21 14:22	2021-10-5	Show	GitHub Exploit DB Packet Storm

199724	5.3	MEDIUM Network	yandex	yandex_browser	Yandex Browser before 20.10.0 allows remote attackers to spoof the address bar	CWE-290 Authentication Bypass by Spoofing	CVE-2020-27970	2024-11-21 14:22	2021-09-13	Show	GitHub Exploit DB Packet Storm

199725	7.3	HIGH Network	yandex	yandex_browser	Yandex Browser for Android 20.8.4 allows remote attackers to perform SOP bypass and addresss bar spoofing	CWE-346 Origin Validation Error	CVE-2020-27969	2024-11-21 14:22	2021-09-13	Show	GitHub Exploit DB Packet Storm

199726	7.8	HIGH Local	apple	mac_os_x	A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. Processing a maliciously crafted font file may l…	NVD-CWE-noinfo	CVE-2020-27942	2024-11-21 14:22	2021-09-9	Show	GitHub Exploit DB Packet Storm

199727	4.3	MEDIUM Network	apple	apple_tv	This issue was addressed with improved file handling. This issue is fixed in Apple TV app for Fire OS 6.1.0.6A142:7.1.0. An attacker with file system access may modify scripts used by the app.	NVD-CWE-noinfo	CVE-2020-27940	2024-11-21 14:22	2021-09-9	Show	GitHub Exploit DB Packet Storm

199728	6.1	MEDIUM Network	eyoucms	eyoucms	Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter.	CWE-79 Cross-site Scripting	CVE-2020-28146	2024-11-21 14:22	2021-08-19	Show	GitHub Exploit DB Packet Storm

199729	7.8	HIGH Local	prusa3d	prusaslicer	A use-after-free vulnerability exists in the _3MF_Importer::_handle_end_model() functionality of Prusa Research PrusaSlicer 2.2.0 and Master (commit 4b040b856). A specially crafted 3MF file can lead …	CWE-416 Use After Free	CVE-2020-28594	2024-11-21 14:22	2021-08-18	Show	GitHub Exploit DB Packet Storm

199730	9.8	CRITICAL Network	easycorp	zentao	The EasyCorp ZenTao PMS 12.4.2 application suffers from an arbitrary file upload vulnerability. An attacker can upload arbitrary webshell to the server by using the downloadZipPackage() function.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28165	2024-11-21 14:22	2021-08-12	Show	GitHub Exploit DB Packet Storm