Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252941	6.9	警告	Linux レッドハット	-	Linux kernel の PPPoL2TP および IPoL2TP 実装における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-4160	2011-03-29 14:22	2011-01-7	Show	GitHub Exploit DB Packet Storm

252942	9.3	危険	アップルレッドハット	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1792	2011-03-29 14:05	2010-07-30	Show	GitHub Exploit DB Packet Storm

252943	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品の nsIScriptableUnescapeHTML.parseFragment メソッドにおける任意の JavaScript を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1585	2011-03-28 16:05	2011-03-1	Show	GitHub Exploit DB Packet Storm

252944	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0059	2011-03-28 16:02	2011-03-1	Show	GitHub Exploit DB Packet Storm

252945	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0061	2011-03-28 15:25	2011-03-1	Show	GitHub Exploit DB Packet Storm

252946	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Windows 上で稼働する Mozilla Firefox および SeaMonkey のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0058	2011-03-28 15:23	2011-03-1	Show	GitHub Exploit DB Packet Storm

252947	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey の Web Worker 実装における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0057	2011-03-28 15:17	2011-03-1	Show	GitHub Exploit DB Packet Storm

252948	4.3	警告	BlackBerry	-	BlackBerry Enterprise Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0307	2011-03-28 15:13	2009-04-16	Show	GitHub Exploit DB Packet Storm

252949	9.3	危険	BlackBerry IBM	-	BlackBerry Desktop Software の IBM Lotus Notes Intellisync ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0306	2011-03-28 15:07	2009-11-3	Show	GitHub Exploit DB Packet Storm

252950	9.3	危険	BlackBerry マイクロソフト	-	BlackBerry Application Web Loader の Motion RIM AxLoader ActiveX コントロールの Research におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0305	2011-03-28 15:05	2009-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201441	7.2	HIGH Network	nagios	nagios_xi	An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can e…	CWE-78 OS Command	CVE-2020-35578	2024-11-21 14:27	2021-01-14	Show	GitHub Exploit DB Packet Storm

201442	4.3	MEDIUM Network	php-fusion	phpfusion	PHPFusion version 9.03.90 is vulnerable to CSRF attack which leads to deletion of all shoutbox messages by the attacker on behalf of the logged in victim.	CWE-352 Origin Validation Error	CVE-2020-35687	2024-11-21 14:27	2021-01-14	Show	GitHub Exploit DB Packet Storm

201443	7.8	HIGH Local	soundresearch	dchu_model_software_component_modules	The SECOMN service in Sound Research DCHU model software component modules (APO) through 2.0.9.17, delivered on HP Windows 10 computers, may allow escalation of privilege via a fake DLL. (As a resolu…	CWE-426 Untrusted Search Path	CVE-2020-35686	2024-11-21 14:27	2021-01-13	Show	GitHub Exploit DB Packet Storm

201444	7.8	HIGH Local	clusterlabs debian	crmsh debian_linux	An issue was discovered in ClusterLabs crmsh through 4.2.1. Local attackers able to call "crm history" (when "crm" is run) were able to execute commands via shell code injection to the crm history co…	CWE-78 OS Command	CVE-2020-35459	2024-11-21 14:27	2021-01-13	Show	GitHub Exploit DB Packet Storm

201445	9.8	CRITICAL Network	clusterlabs	hawk	An issue was discovered in ClusterLabs Hawk 2.x through 2.3.0-x. There is a Ruby shell code injection issue via the hawk_remember_me_id parameter in the login_from_cookie cookie. The user logout rout…	CWE-78 OS Command	CVE-2020-35458	2024-11-21 14:27	2021-01-13	Show	GitHub Exploit DB Packet Storm

201446	5.4	MEDIUM Network	python fedoraproject	pillow fedora	In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled.	CWE-125 Out-of-bounds Read	CVE-2020-35655	2024-11-21 14:27	2021-01-12	Show	GitHub Exploit DB Packet Storm

201447	8.8	HIGH Network	python fedoraproject	pillow fedora	In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.	CWE-787 Out-of-bounds Write	CVE-2020-35654	2024-11-21 14:27	2021-01-12	Show	GitHub Exploit DB Packet Storm

201448	7.1	HIGH Network	python fedoraproject debian	pillow fedora debian_linux	In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.	CWE-125 Out-of-bounds Read	CVE-2020-35653	2024-11-21 14:27	2021-01-12	Show	GitHub Exploit DB Packet Storm

201449	8.8	HIGH Network	cacti fedoraproject	cacti fedora	An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in data_debug.php allows remote authenticated attackers to execute arbitrary SQL commands via the site_id paramete…	CWE-89 SQL Injection	CVE-2020-35701	2024-11-21 14:27	2021-01-12	Show	GitHub Exploit DB Packet Storm

201450	7.8	HIGH Local	anydesk	anydesk	AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application directory, allows this attacker to compromise a local user account via a …	CWE-427 Uncontrolled Search Path Element	CVE-2020-35483	2024-11-21 14:27	2021-01-12	Show	GitHub Exploit DB Packet Storm