Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 27, 2026, 8:58 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253051 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
253052 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
253053 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
253054 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
253055 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
253056 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
253057 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
253058 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
253059 10 危険 サイバートラスト株式会社
XEmacs		 - XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2688 2010-01-12 14:48 2009-08-5 Show GitHub Exploit DB Packet Storm
253060 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213161 7.5 HIGH
Network 		auto-maskin rp_210e_firmware
dcu_210e_firmware
marine_pro_observer 		In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords wi… CWE-521
Weak Password Requirements  		CVE-2019-6558 2024-11-21 13:46 2020-03-24 Show GitHub Exploit DB Packet Storm
213162 9.1 CRITICAL
Network 		auto-maskin rp210e_firmware
dcu_210_firmware
marine_pro_observer 		In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro (Android App), the software contains a mechanism for users to recover or change their passwords wi… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2019-6560 2024-11-21 13:46 2020-03-24 Show GitHub Exploit DB Packet Storm
213163 6.1 MEDIUM
Network 		fortinet fortios An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6.0.8 and below until 5.4.0 under admin webUI may allow an attacker to perform an URL redirect attack via a specifically crafted re… CWE-20
CWE-601
 Improper Input Validation 
Open Redirect 		CVE-2019-6696 2024-11-21 13:46 2020-03-16 Show GitHub Exploit DB Packet Storm
213164 5.4 MEDIUM
Network 		fortinet fortiadc An improper neutralization of input vulnerability in Fortinet FortiADC 5.3.3 and earlier may allow an attacker to execute a stored Cross Site Scripting (XSS) via a field in the traffic group interfac… CWE-79
Cross-site Scripting 		CVE-2019-6699 2024-11-21 13:46 2020-03-14 Show GitHub Exploit DB Packet Storm
213165 6.1 MEDIUM
Network 		siemens scalance_s602_firmware
scalance_s612_firmware
scalance_s623_firmware
scalance_s627-2m_firmware 		A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627… - CVE-2019-6585 2024-11-21 13:46 2020-03-11 Show GitHub Exploit DB Packet Storm
213166 5.5 MEDIUM
Local 		lenovo xclarity_administrator An XML External Entity (XXE) processing vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow information disclosure. CWE-611
XXE 		CVE-2019-6194 2024-11-21 13:46 2020-02-15 Show GitHub Exploit DB Packet Storm
213167 7.5 HIGH
Network 		lenovo xclarity_administrator An information disclosure vulnerability was reported in Lenovo XClarity Administrator (LXCA) versions prior to 2.6.6 that could allow unauthenticated access to some configuration files which may cont… CWE-200
Information Exposure 		CVE-2019-6193 2024-11-21 13:46 2020-02-15 Show GitHub Exploit DB Packet Storm
213168 4.8 MEDIUM
Network 		lenovo xclarity_controller An authorization bypass exists in Lenovo XClarity Controller (XCC) versions prior to 3.08 CDI340V, 3.01 TEI392O, 1.71 PSI328N where a valid authenticated user with lesser privileges may be granted re… CWE-269
 Improper Privilege Management 		CVE-2019-6195 2024-11-21 13:46 2020-02-15 Show GitHub Exploit DB Packet Storm
213169 5.5 MEDIUM
Local 		lenovo thinkcentre_e93_firmware
thinkcentre_m6500s_firmware
thinkcentre_m6500t_firmware
thinkcentre_m73p_firmware
thinkcentre_m83_firmware
thinkcentre_m8500s_firmware
thinkcentre_m8500t_fi… 		Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared … CWE-665
 Improper Initialization 		CVE-2019-6190 2024-11-21 13:46 2020-02-15 Show GitHub Exploit DB Packet Storm
213170 6.1 MEDIUM
Network 		forcepoint web_security It has been reported that cross-site scripting (XSS) is possible in Forcepoint Web Security, version 8.x, via host header injection. CVSSv3.0: 5.3 (Medium) (/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) CWE-79
Cross-site Scripting 		CVE-2019-6146 2024-11-21 13:46 2020-01-23 Show GitHub Exploit DB Packet Storm