Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253061	4.3	警告	オラクル	-	Oracle Applications の Oracle Common Applications コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3587	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

253062	6.4	警告	オラクル	-	Oracle Enterprise Manager Grid Control の Real User Experience Insight コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3594	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

253063	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4427	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

253064	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4425	2011-02-14 15:23	2011-01-18	Show	GitHub Exploit DB Packet Storm

253065	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4453	2011-02-14 15:15	2011-01-18	Show	GitHub Exploit DB Packet Storm

253066	5	警告	オラクル	-	Oracle Fusion Middleware の Oracle GoldenGate Veridata コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4416	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

253067	5.5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Discoverer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3588	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

253068	5.8	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4437	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

253069	7.2	危険	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の staprun runtime ツールにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4170	2011-02-10 14:54	2010-11-17	Show	GitHub Exploit DB Packet Storm

253070	2.1	注意	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の staprun runtime ツールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4171	2011-02-10 14:53	2010-11-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196071	9.8	CRITICAL Network	phpzag	phpzag	SQL injection with start and length parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8521	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

196072	9.8	CRITICAL Network	phpzag	phpzag	SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8520	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

196073	9.8	CRITICAL Network	phpzag	phpzag	SQL injection with the search parameter in Records.php for phpzag live add edit delete data tables records with ajax php mysql	CWE-89 SQL Injection	CVE-2020-8519	2024-11-21 14:38	2020-07-8	Show	GitHub Exploit DB Packet Storm

196074	8.8	HIGH Network	ui	unifi_protect_firmware	We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Pr…	CWE-78 OS Command	CVE-2020-8188	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196075	6.5	MEDIUM Network	rubyonrails fedoraproject	rails fedora	A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8185	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196076	4.1	MEDIUM Network	nextcloud	deck	Improper access control in Nextcloud Deck 1.0.0 allowed an attacker to inject tasks into other users decks.	CWE-269 Improper Privilege Management	CVE-2020-8179	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196077	6.1	MEDIUM Network	shopify	koa-shopify-auth	A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.61-v3.1.62 that allows an attacker to inject JS payloads into the `shop` parameter on the `/shopify/auth/enable_cookies` endpoint.	CWE-79 Cross-site Scripting	CVE-2020-8176	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196078	4.3	MEDIUM Network	rubyonrails debian	rails debian_linux	A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an attacker to, given a global CSRF token such as the one present in the authenticity_token meta tag, fo…	CWE-352 Origin Validation Error	CVE-2020-8166	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196079	8.8	HIGH Network	rubyonrails debian	rails debian_linux	The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.	CWE-94 Code Injection	CVE-2020-8163	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm

196080	8.6	HIGH Network	rack_project debian canonical	rack debian_linux ubuntu_linux	A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in…	CWE-22 Path Traversal	CVE-2020-8161	2024-11-21 14:38	2020-07-3	Show	GitHub Exploit DB Packet Storm