Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	5	警告	アップルサイバートラスト株式会社 VMware サン・マイクロシステムズレッドハット	-	Sun Java SE および OpenJDK の Java Runtime Environment (JRE) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3728	2010-02-23 11:51	2009-11-9	Show	GitHub Exploit DB Packet Storm

252952	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0248	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252953	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0244	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252954	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0027	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252955	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0247	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

252956	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0246	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

252957	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0245	2010-02-22 12:13	2010-01-21	Show	GitHub Exploit DB Packet Storm

252958	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

252959	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

252960	10	危険	Rockwell Automation	-	Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性	CWE-noinfo 情報不足	CVE-2009-3739	2010-02-19 14:22	2010-01-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199711	9.8	CRITICAL Network	form	form.io	A Server-Side Template Injection (SSTI) was discovered in Form.io 2.0.0. This leads to Remote Code Execution during deletion of the default Email template URL. NOTE: the email templating service was …	CWE-74 Injection	CVE-2020-28246	2024-11-21 14:22	2022-06-2	Show	GitHub Exploit DB Packet Storm

199712	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28604	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

199713	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28603	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

199714	8.8	HIGH Network	cgal debian	computational_geometry_algorithms_library debian_linux	Multiple code execution vulnerabilities exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted malformed file can lead to an out-of-bounds read and type confu…	-	CVE-2020-28602	2024-11-21 14:22	2022-04-19	Show	GitHub Exploit DB Packet Storm

199715	7.2	HIGH Network	hisiphp	hisiphp	An Access Control vulnerability exists in HisiPHP 2.0.11 via special packets that are constructed in $files = Dir::getList($decompath. '/ Upload/Plugins /, which could let a remote malicious user exe…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28062	2024-11-21 14:22	2022-04-5	Show	GitHub Exploit DB Packet Storm

199716	4.3	MEDIUM Network	osu	ohio_supercomputer_center_open_ondemand	The Job Composer app in Ohio Supercomputer Center Open OnDemand before 1.7.19 and 1.8.x before 1.8.18 allows remote authenticated users to provide crafted input in a job template.	CWE-116 Improper Encoding or Escaping of Output	CVE-2020-27958	2024-11-21 14:22	2022-02-27	Show	GitHub Exploit DB Packet Storm

199717	9.8	CRITICAL Network	chshcms	cscms	cscms v4.1 allows for SQL injection via the "page_del" function.	CWE-89 SQL Injection	CVE-2020-28103	2024-11-21 14:22	2022-01-12	Show	GitHub Exploit DB Packet Storm

199718	9.8	CRITICAL Network	chshcms	cscms	cscms v4.1 allows for SQL injection via the "js_del" function.	CWE-89 SQL Injection	CVE-2020-28102	2024-11-21 14:22	2022-01-12	Show	GitHub Exploit DB Packet Storm

199719	6.5	MEDIUM Network	genexis	platinum_4410_firmware	Cross site request forgery (CSRF) in Genexis Platinum 4410 V2-1.28, allows attackers to cause a denial of service by continuously restarting the router.	CWE-352 Origin Validation Error	CVE-2020-28137	2024-11-21 14:22	2021-11-11	Show	GitHub Exploit DB Packet Storm

199720	8.8	HIGH Network	hp	color_laserjet_cm4540_mfp_firmware color_laserjet_enterprise_flow_mfp_m880z_firmware color_laserjet_managed_flow_mfp_m880zm_firmware color_laserjet_enterprise_m455_firmware color_laserjet…	During installation with certain driver software or application packages an arbitrary code execution could occur.	NVD-CWE-noinfo	CVE-2020-28419	2024-11-21 14:22	2021-11-10	Show	GitHub Exploit DB Packet Storm