Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252861 5 警告 サイバートラスト株式会社
Wireshark
レッドハット
オラクル		 - Wireshark の BER 解析部の dissect_ber_unknown 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3445 2011-04-4 14:36 2010-10-11 Show GitHub Exploit DB Packet Storm
252862 5 警告 The PHP Group
アップル		 - PHP にサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-4409 2011-04-4 14:32 2010-12-1 Show GitHub Exploit DB Packet Storm
252863 5 警告 The PHP Group
アップル		 - PHP の IMAP 拡張 (ext/imap/php_imap.c) における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4150 2011-04-4 14:31 2010-12-7 Show GitHub Exploit DB Packet Storm
252864 6.8 警告 The PHP Group
アップル
サイバートラスト株式会社
レッドハット		 - PHP の utf8_decode 関数におけるクロスサイトスクリプティングおよび SQL インジェクションに対する保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3870 2011-04-4 14:29 2009-09-27 Show GitHub Exploit DB Packet Storm
252865 9.3 危険 アップル - Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4009 2011-04-4 14:28 2010-12-9 Show GitHub Exploit DB Packet Storm
252866 6.8 警告 アップル
FreeType Project
オラクル		 - FreeType の ttinterp.c 内にある Ins_SHZ 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3814 2011-04-4 14:27 2010-11-26 Show GitHub Exploit DB Packet Storm
252867 9.3 危険 アップル - Apple QuickTime における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3802 2011-04-4 14:23 2010-12-9 Show GitHub Exploit DB Packet Storm
252868 9.3 危険 アップル - Apple QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3801 2011-04-4 14:22 2010-12-9 Show GitHub Exploit DB Packet Storm
252869 4.3 警告 The PHP Group
アップル
レッドハット		 - PHP の filter_var 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3710 2011-04-4 14:20 2010-10-25 Show GitHub Exploit DB Packet Storm
252870 4.3 警告 The PHP Group
アップル
レッドハット		 - PHP の ZipArchive::getArchiveComment 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3709 2011-04-4 14:18 2010-11-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209531 6.5 MEDIUM
Network 		gogs gogs In Gogs 0.11.91, MakeEmailPrimary in models/user_mail.go lacks a "not the owner of the email" check. CWE-281
 Improper Preservation of Permissions 		CVE-2020-14958 2024-11-21 14:04 2020-06-22 Show GitHub Exploit DB Packet Storm
209532 5.9 MEDIUM
Network 		mutt
debian
neomutt
fedoraproject
canonical
opensuse 		mutt
debian_linux
neomutt
fedora
ubuntu_linux
leap 		Mutt before 1.14.4 and NeoMutt before 2020-06-19 have a STARTTLS buffering issue that affects IMAP, SMTP, and POP3. When a server sends a "begin TLS" response, the client reads additional data (e.g.,… CWE-74
Injection 		CVE-2020-14954 2024-11-21 14:04 2020-06-22 Show GitHub Exploit DB Packet Storm
209533 8.8 HIGH
Network 		aapanel aapanel aaPanel through 6.6.6 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a modified /system?action=ServiceAdmin request (start, stop, or restart) to the setti… CWE-78
OS Command  		CVE-2020-14950 2024-11-21 14:04 2020-06-22 Show GitHub Exploit DB Packet Storm
209534 9.8 CRITICAL
Network 		tendenci tendenci Tendenci 12.0.10 allows unrestricted deserialization in apps\helpdesk\views\staff.py. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14942 2024-11-21 14:04 2020-06-22 Show GitHub Exploit DB Packet Storm
209535 8.8 HIGH
Network 		squirrelmail squirrelmail compose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates from an HTTP POST request. NOTE: the vendor disputes this because these two conditions for PHP object… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14933 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
209536 9.8 CRITICAL
Network 		squirrelmail squirrelmail compose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates from an HTTP GET request. This is related to mailto.php. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14932 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
209537 9.8 CRITICAL
Network 		dmitry_project dmitry A stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) 1.3a might allow remote WHOIS servers to execute arbitrary code via a long line in a response that is mishandled by nic_… CWE-787
 Out-of-bounds Write 		CVE-2020-14931 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
209538 8.1 HIGH
Network 		bt_ctroms_terminal_project bt_ctroms_terminal An issue was discovered in BT CTROMS Terminal OS Port Portal CT-464. Account takeover can occur because the password-reset feature discloses the verification token. Upon a getverificationcode.jsp req… CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2020-14930 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
209539 7.5 HIGH
Network 		alpine_project
fedoraproject
debian 		alpine
fedora
debian_linux 		Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which is a less secure behavior than the alternative of closing the… NVD-CWE-Other
CVE-2020-14929 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm
209540 4.8 MEDIUM
Network 		naviwebs navigate_cms Navigate CMS 2.9 allows XSS via the Alias or Real URL field of the "Web Sites > Create > Aliases > Add" screen. CWE-79
Cross-site Scripting 		CVE-2020-14927 2024-11-21 14:04 2020-06-20 Show GitHub Exploit DB Packet Storm