Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253241	6.8	警告	アップル	-	Apple Mac OS X の Apple Filing Protocol Server におけるパスワード要求を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-1820	2010-10-8 17:08	2010-09-21	Show	GitHub Exploit DB Packet Storm

253242	5	警告	マイクロソフト	-	Microsoft .NET Framework における View State フォームデータを復号または変更される脆弱性	CWE-310 暗号の問題	CVE-2010-3332	2010-10-8 17:07	2010-09-17	Show	GitHub Exploit DB Packet Storm

253243	2.6	注意	IBM	-	IBM WebSphere Application Server の Web コンテナにおける重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0777	2010-10-8 17:05	2010-05-8	Show	GitHub Exploit DB Packet Storm

253244	5	警告	IBM	-	IBM WebSphere Application Server の Web コンテナにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0776	2010-10-8 17:04	2010-05-8	Show	GitHub Exploit DB Packet Storm

253245	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3686	2010-10-7 16:40	2010-08-11	Show	GitHub Exploit DB Packet Storm

253246	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3685	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

253247	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3091	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

253248	2.1	注意	Drupal サイバートラスト株式会社	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3094	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

253249	3.5	注意	Drupal サイバートラスト株式会社	-	Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3093	2010-10-7 16:38	2010-08-11	Show	GitHub Exploit DB Packet Storm

253250	5.5	警告	Drupal サイバートラスト株式会社	-	Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3092	2010-10-7 16:37	2010-08-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209781	7.5	HIGH Network	apache gradle fedoraproject oracle	ant gradle fedora flexcube_private_banking primavera_unifier banking_platform api_gateway enterprise_repository retail_predictive_application_server data_integrator util…	As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissions of temporary files it created so that only the current user was allowed to access them. Unfortunately the fixcrlf task delete…	NVD-CWE-Other	CVE-2020-11979	2024-11-21 13:59	2020-10-2	Show	GitHub Exploit DB Packet Storm

209782	9.1	CRITICAL Network	wago	750-852_firmware 750-880_firmware 750-881_firmware 750-831_firmware 750-882_firmware 750-885_firmware 750-889_firmware	Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW07 allows an attacker to change some special parameters without authentication. This issue affects: WAGO 750-852, WAG…	-	CVE-2020-12505	2024-11-21 13:59	2020-10-1	Show	GitHub Exploit DB Packet Storm

209783	9.1	CRITICAL Network	wago	750-362_firmware 750-363_firmware 750-823_firmware 750-832_firmware 750-862_firmware 750-891_firmware 750-890_firmware	Improper Authentication vulnerability in WAGO 750-8XX series with FW version <= FW03 allows an attacker to change the settings of the devices by sending specifically constructed requests without auth…	-	CVE-2020-12506	2024-11-21 13:59	2020-10-1	Show	GitHub Exploit DB Packet Storm

209784	8.8	HIGH Network	gogogate	ismartgate_pro_firmware	iSmartgate PRO 1.5.9 is vulnerable to CSRF via the busca parameter in the form used for searching for users, accessible via /index.php. (This can be combined with reflected XSS.)	CWE-352 Origin Validation Error	CVE-2020-12282	2024-11-21 13:59	2020-09-25	Show	GitHub Exploit DB Packet Storm

209785	6.5	MEDIUM Network	gogogate	ismartgate_pro_firmware	iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to create a new user via /index.php.	CWE-352 Origin Validation Error	CVE-2020-12281	2024-11-21 13:59	2020-09-25	Show	GitHub Exploit DB Packet Storm

209786	6.5	MEDIUM Network	gogogate	ismartgate_pro_firmware	iSmartgate PRO 1.5.9 is vulnerable to CSRF that allows remote attackers to open/close a specified garage door/gate via /isg/opendoor.php.	CWE-352 Origin Validation Error	CVE-2020-12280	2024-11-21 13:59	2020-09-25	Show	GitHub Exploit DB Packet Storm

209787	7.2	HIGH Network	apache	syncope	In Apache Syncope 2.1.X releases prior to 2.1.7, when the Flowable extension is enabled, an administrator with workflow entitlements can use Shell Service Tasks to perform malicious operations, inclu…	NVD-CWE-noinfo	CVE-2020-11977	2024-11-21 13:59	2020-09-16	Show	GitHub Exploit DB Packet Storm

209788	7.5	HIGH Network	apache	cocoon	When using the StreamGenerator, the code parse a user-provided XML. A specially crafted XML, including external system entities, could be used to access any file on the server system.	CWE-611 XXE	CVE-2020-11991	2024-11-21 13:59	2020-09-11	Show	GitHub Exploit DB Packet Storm

209789	9.8	CRITICAL Network	apache oracle	activemq flexcube_private_banking enterprise_repository communications_diameter_signaling_router communications_element_manager communications_session_route_manager communications_s…	A regression has been introduced in the commit preventing JMX re-bind. By passing an empty environment map to RMIConnectorServer, instead of the map that contains the authentication credentials, it l…	NVD-CWE-noinfo	CVE-2020-11998	2024-11-21 13:59	2020-09-11	Show	GitHub Exploit DB Packet Storm

209790	9.8	CRITICAL Network	apache	netbeans	To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project.…	NVD-CWE-noinfo	CVE-2020-11986	2024-11-21 13:59	2020-09-10	Show	GitHub Exploit DB Packet Storm