Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253021 5 警告 The PHP Group
サイバートラスト株式会社
ターボリナックス
レッドハット		 - PHP におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1917 2010-12-15 15:27 2010-05-11 Show GitHub Exploit DB Packet Storm
253022 5 警告 The PHP Group
アップル
ターボリナックス
サイバートラスト株式会社
レッドハット		 - PHP の xmlrpc 拡張におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0397 2010-12-15 15:27 2010-03-16 Show GitHub Exploit DB Packet Storm
253023 6.4 警告 The PHP Group
サイバートラスト株式会社
レッドハット		 - PHP の Linear Congruential Generator における値を推測される脆弱性 CWE-310
暗号の問題 		CVE-2010-1128 2010-12-15 15:26 2010-03-26 Show GitHub Exploit DB Packet Storm
253024 6.9 警告 GNU Project
日本電気
ターボリナックス
サイバートラスト株式会社
レッドハット		 - GNU Libtool の libltdl における権限昇格の脆弱性 CWE-DesignError
CVE-2009-3736 2010-12-15 15:26 2009-11-16 Show GitHub Exploit DB Packet Storm
253025 6.4 警告 アップル
日本電気
Fetchmail Project		 - fetchmail における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-2666 2010-12-15 15:25 2009-08-6 Show GitHub Exploit DB Packet Storm
253026 4.3 警告 アップル - Apple Safari の WebKit におけるロケーションバーの URL を偽装される脆弱性 CWE-Other
その他 		CVE-2010-3810 2010-12-15 14:42 2010-11-22 Show GitHub Exploit DB Packet Storm
253027 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3809 2010-12-15 14:39 2010-11-22 Show GitHub Exploit DB Packet Storm
253028 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3808 2010-12-15 14:37 2010-11-22 Show GitHub Exploit DB Packet Storm
253029 9.3 危険 アップル - Apple Safari の WebKit 内にある JavaScript 実装における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3805 2010-12-15 14:32 2010-11-22 Show GitHub Exploit DB Packet Storm
253030 5 警告 アップル - Apple Safari の WebKit 内にある JavaScript 実装におけるユーザを追跡可能な脆弱性 CWE-310
暗号の問題 		CVE-2010-3804 2010-12-15 14:29 2010-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196181 6.3 MEDIUM
Network 		lightning-viz lightning This affects all versions of package lightning-server. It is possible to inject malicious JavaScript code as part of a session controller. CWE-79
Cross-site Scripting 		CVE-2020-7747 2024-11-21 14:37 2020-10-20 Show GitHub Exploit DB Packet Storm
196182 7.1 HIGH
Network 		mintegral mintegraladsdk This affects the package MintegralAdSDK before 6.6.0.0. The SDK distributed by the company contains malicious functionality that acts as a backdoor. Mintegral and their partners (advertisers) can rem… CWE-94
Code Injection 		CVE-2020-7745 2024-11-21 14:37 2020-10-19 Show GitHub Exploit DB Packet Storm
196183 8.8 HIGH
Network 		siemens siport_mp A vulnerability has been identified in SIPORT MP (All versions < 3.2.1). Vulnerable versions of the device could allow an authenticated attacker to impersonate other users of the system and perform (… - CVE-2020-7591 2024-11-21 14:37 2020-10-16 Show GitHub Exploit DB Packet Storm
196184 4.7 MEDIUM
Network 		mintegral mintegraladsdk This affects all versions of package com.mintegral.msdk:alphab. The Android SDK distributed by the company contains malicious functionality in this module that tracks: 1. Downloads from Google urls e… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-7744 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196185 6.7 MEDIUM
Local 		mcafee mvision_endpoint_detection_and_response Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client (MVEDR) prior to 3.2.0 may allow local administrators to execute malicious code via stopping a core Wind… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-7327 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196186 6.7 MEDIUM
Local 		mcafee active_response Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core t… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-7326 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196187 8.2 HIGH
Local 		mcafee application_and_change_control Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via… CWE-269
 Improper Privilege Management 		CVE-2020-7334 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196188 8.1 HIGH
Network 		rapid7 nexpose A SQL Injection issue in Rapid7 Nexpose version prior to 6.6.49 that may have allowed an authenticated user with a low permission level to access resources & make changes they should not have been ab… CWE-89
SQL Injection 		CVE-2020-7383 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196189 4.3 MEDIUM
Adjacent 		mcafee epolicy_orchestrator Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via multiple parameters where the adminis… CWE-79
Cross-site Scripting 		CVE-2020-7318 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm
196190 4.3 MEDIUM
Adjacent 		mcafee epolicy_orchestrator Cross-Site Scripting vulnerability in McAfee ePolicy Orchistrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via parameter values for "syncPointList" … CWE-79
Cross-site Scripting 		CVE-2020-7317 2024-11-21 14:37 2020-10-15 Show GitHub Exploit DB Packet Storm