Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252981 7.5 危険 iScripts - iScripts EasyBiller の viewhistorydetail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5034 2011-12-9 13:43 2011-11-2 Show GitHub Exploit DB Packet Storm
252982 4.3 警告 iScripts - iScripts eSwap の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5035 2011-12-9 13:42 2011-11-2 Show GitHub Exploit DB Packet Storm
252983 7.5 危険 iScripts - iScripts eSwap の addsale.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5036 2011-12-9 13:42 2011-11-2 Show GitHub Exploit DB Packet Storm
252984 7.5 危険 Michau Enterprises - SenseSites CommonSense CMS の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5037 2011-12-9 13:41 2011-11-2 Show GitHub Exploit DB Packet Storm
252985 7.5 危険 Groone's World - Groone's Simple Contact Form における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5038 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
252986 7.5 危険 ScriptsFeed.com - ScriptsFeed Recipes Listing Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5039 2011-12-9 13:40 2011-11-2 Show GitHub Exploit DB Packet Storm
252987 6.8 警告 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-5040 2011-12-9 13:39 2011-11-2 Show GitHub Exploit DB Packet Storm
252988 7.5 危険 John Bradshaw - Nucleus 用 NP_Gallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5041 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
252989 4.3 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5042 2011-12-9 13:38 2011-11-2 Show GitHub Exploit DB Packet Storm
252990 6 警告 Blue Constant Media Ltd - Joomla! 用 DJ-ArtGallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5043 2011-12-9 13:34 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220781 9.8 CRITICAL
Network 		adobe bridge_cc Adobe Bridge CC versions 9.0.2 have a heap overflow vulnerability. Successful exploitation could lead to remote code execution. CWE-787
 Out-of-bounds Write 		CVE-2019-7130 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220782 9.8 CRITICAL
Network 		adobe indesign Adobe InDesign versions 14.0.1 and below have an unsafe hyperlink processing vulnerability. Successful exploitation could lead to arbitrary code execution. Fixed in versions 13.1.1 and 14.0.2. NVD-CWE-noinfo
CVE-2019-7107 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220783 9.8 CRITICAL
Network 		adobe xd Adobe XD versions 16.0 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-22
Path Traversal 		CVE-2019-7106 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220784 9.8 CRITICAL
Network 		adobe xd Adobe XD versions 16.0 and earlier have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-22
Path Traversal 		CVE-2019-7105 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220785 9.8 CRITICAL
Network 		adobe shockwave_player Adobe Shockwave Player versions 12.3.4.204 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-787
 Out-of-bounds Write 		CVE-2019-7104 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220786 7.5 HIGH
Network 		adobe dreamweaver Adobe Dreamweaver versions 19.0 and earlier have an insecure protocol implementation vulnerability. Successful exploitation could lead to sensitive data disclosure if smb request is subject to a rela… NVD-CWE-noinfo
CVE-2019-7097 2024-11-21 13:47 2019-05-24 Show GitHub Exploit DB Packet Storm
220787 9.8 CRITICAL
Network 		schneider-electric modicon_premium_firmware
modicon_quantum_firmware
modicon_m340_firmware
modicon_m580_firmware 		A CWE-284: Improper Access Control vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a remote code execution by overwritin… CWE-306
Missing Authentication for Critical Function 		CVE-2019-6808 2024-11-21 13:47 2019-05-23 Show GitHub Exploit DB Packet Storm
220788 7.5 HIGH
Network 		schneider-electric modicon_premium_firmware
modicon_quantum_firmware
modicon_m340_firmware
modicon_m580_firmware 		A CWE-248: Uncaught Exception vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause a possible denial of service when writing … CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-6807 2024-11-21 13:47 2019-05-23 Show GitHub Exploit DB Packet Storm
220789 7.5 HIGH
Network 		schneider-electric modicon_premium_firmware
modicon_quantum_firmware
modicon_m340_firmware
modicon_m580_firmware 		A CWE-200: Information Exposure vulnerability exists in all versions of the Modicon M580, Modicon M340, Modicon Quantum, and Modicon Premium which could cause the disclosure of SNMP information when … NVD-CWE-noinfo
CVE-2019-6806 2024-11-21 13:47 2019-05-23 Show GitHub Exploit DB Packet Storm
220790 6.5 MEDIUM
Network 		schneider-electric modicon_m580_firmware
modicon_m340_firmware
modicon_quantum_firmware
modicon_premium_firmware 		CWE-330: Use of Insufficiently Random Values vulnerability, which could cause the hijacking of the TCP connection when using Ethernet communication in Modicon M580 firmware versions prior to V2.30, a… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-6821 2024-11-21 13:47 2019-05-23 Show GitHub Exploit DB Packet Storm