Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253011	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

253012	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

253013	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

253014	10	危険	オラクル	-	Oracle Database の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0071	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

253015	5	警告	Pidgin Adium レッドハット	-	Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0013	2010-02-10 13:39	2010-01-8	Show	GitHub Exploit DB Packet Storm

253016	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-3959	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

253017	10	危険	アドビシステムズ	-	Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3958	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

253018	5	警告	アドビシステムズ	-	Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3957	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

253019	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるスクリプトインジェクションの脆弱性に関連した脆弱性	CWE-16 環境設定	CVE-2009-3956	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

253020	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3955	2010-02-10 13:38	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197751	6.5	MEDIUM Network	kaspersky	tinycheck	TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated attacker to send an HTTP GET request to the crafted URLs.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-36200	2024-11-21 14:29	2021-01-27	Show	GitHub Exploit DB Packet Storm

197752	9.8	CRITICAL Network	kaspersky	tinycheck	TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places.	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-36199	2024-11-21 14:29	2021-01-27	Show	GitHub Exploit DB Packet Storm

197753	7.5	HIGH Network	xerox	workcentre_3655_firmware workcentre_3655i_firmware workcentre_5865_firmware workcentre_5875_firmware workcentre_5890_firmware workcentre_5865i_firmware workcentre_5875i_firmware …	An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt passwords. This affects 3655, 3655i, 58XX, 58XXi 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi 78XX, 78XXi, 7970, 79…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-36201	2024-11-21 14:29	2021-01-27	Show	GitHub Exploit DB Packet Storm

197754	7.5	HIGH Network	cskaza	cszcms	SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pm_sendmail parameter in csz_model.php.	CWE-89 SQL Injection	CVE-2020-36136	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197755	5.5	MEDIUM Local	foxit	pdf_reader	Buffer Overflow vulnerability in cFilenameInit parameter in browseForDoc function in Foxit Software Foxit PDF Reader version 10.1.0.37527, allows local attackers to cause a denial of service (DoS) vi…	CWE-120 Classic Buffer Overflow	CVE-2020-35990	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197756	7.5	HIGH Network	ffmpeg	ffmpeg	An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).	CWE-476 NULL Pointer Dereference	CVE-2020-36138	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197757	9.8	CRITICAL Network	bloofox	bloofoxcms	File Upload vulnerability in bloofoxCMS version 0.5.2.1, allows remote attackers to execute arbitrary code and escalate privileges via crafted webshell file to upload module.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-36082	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197758	8.8	HIGH Network	wuzhicms	wuzhicms	An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php.	NVD-CWE-noinfo	CVE-2020-36037	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197759	9.8	CRITICAL Network	school_faculty_scheduling_system_project	school_faculty_scheduling_system	SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via craft…	CWE-89 SQL Injection	CVE-2020-36034	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

197760	5.5	MEDIUM Local	freedesktop	poppler	An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function.	CWE-476 NULL Pointer Dereference	CVE-2020-36024	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed