Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	4.3	警告	ut-files	-	UTStats の pages/match_report.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5007	2011-12-9 14:14	2011-11-2	Show	GitHub Exploit DB Packet Storm

252952	7.5	危険	Denali	-	BrightSuite Groupware における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5008	2011-12-9 14:13	2011-11-2	Show	GitHub Exploit DB Packet Storm

252953	7.5	危険	ut-files	-	UTStats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5009	2011-12-9 14:12	2011-11-2	Show	GitHub Exploit DB Packet Storm

252954	4.3	警告	FullSite Pty Ltd	-	SchoolMation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5010	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252955	7.5	危険	FullSite Pty Ltd	-	SchoolMation における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5011	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252956	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

252957	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

252958	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

252959	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

252960	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220981	7.5	HIGH Network	netapp	fas26x0_firmware fas27x0_firmware fas8200_firmware aff_c190_firmware aff_a200_firmware aff_a220_firmware aff_a300_firmware	Certain versions of the NetApp Service Processor and Baseboard Management Controller firmware allow a remote unauthenticated attacker to cause a Denial of Service (DoS).	NVD-CWE-noinfo	CVE-2019-5500	2024-11-21 13:45	2020-05-12	Show	GitHub Exploit DB Packet Storm

220982	9.8	CRITICAL Network	accellion	file_transfer_appliance	Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection').	CWE-78 OS Command	CVE-2019-5623	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220983	9.8	CRITICAL Network	accellion	file_transfer_appliance	Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-798: Use of Hard-coded Credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2019-5622	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220984	7.8	HIGH Local	abbs_software_audio_media_player_project	abbs_software_audio_media_player	ABBS Software Audio Media Player version 3.1 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5621	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220985	9.8	CRITICAL Network	hitachienergy	microscada_pro_sys600	ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function.	CWE-306 Missing Authentication for Critical Function	CVE-2019-5620	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220986	9.8	CRITICAL Network	aasync	aasync	AASync.com AASync version 2.2.1.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5619	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220987	7.8	HIGH Local	a-pdf	wav_to_mp3	A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5618	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220988	9.8	CRITICAL Network	freebsd netapp	freebsd clustered_data_ontap	In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in access…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2019-5614	2024-11-21 13:45	2020-04-29	Show	GitHub Exploit DB Packet Storm

220989	7.8	HIGH Local	vmware	horizon_client remote_console workstation	For VMware Horizon Client for Windows (5.x and prior before 5.3.0), VMware Remote Console for Windows (10.x before 11.0.0), VMware Workstation for Windows (15.x before 15.5.2) the folder containing c…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-5543	2024-11-21 13:45	2020-03-17	Show	GitHub Exploit DB Packet Storm

220990	6.5	MEDIUM Network	barracuda	load_balancer_adc_firmware	Authenticated, administrative access to a Barracuda Load Balancer ADC running unpatched firmware <= v6.4 allows one to edit the LDAP service configuration of the balancer and change the LDAP server t…	CWE-522 Insufficiently Protected Credentials	CVE-2019-5648	2024-11-21 13:45	2020-03-12	Show	GitHub Exploit DB Packet Storm