Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253291	7.5	危険	VMware	-	複数の VMware 製品の WebAccess におけるリクエストの発信元を偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0686	2010-04-21 17:53	2010-03-29	Show	GitHub Exploit DB Packet Storm

253292	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1137	2010-04-21 17:51	2010-03-29	Show	GitHub Exploit DB Packet Storm

253293	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU Automake の dist または distcheck ルールにおけるコンテンツを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4029	2010-04-21 17:51	2009-12-20	Show	GitHub Exploit DB Packet Storm

253294	5	警告	Linux レッドハット	-	Linux kernel の virtio-net ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0741	2010-04-21 17:48	2010-03-30	Show	GitHub Exploit DB Packet Storm

253295	6.9	警告	mielke レッドハット	-	brltty の libbrlttybba.so における権限昇格の脆弱性	CWE-264 CWE-Other	CVE-2008-3279	2010-04-21 17:47	2010-03-30	Show	GitHub Exploit DB Packet Storm

253296	4.3	警告	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0181	2010-04-20 16:42	2010-03-30	Show	GitHub Exploit DB Packet Storm

253297	5.8	警告	サイボウズ	-	複数のサイボウズ製品におけるアクセス制限に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2029	2010-04-20 12:01	2010-04-20	Show	GitHub Exploit DB Packet Storm

253298	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0805	2010-04-19 19:20	2010-03-30	Show	GitHub Exploit DB Packet Storm

253299	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0491	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

253300	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2010-0494	2010-04-19 19:19	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198391	9.8	CRITICAL Network	solarwinds	serv-u	SolarWinds Serv-U before 15.2.2 allows Unauthenticated Macro Injection.	NVD-CWE-Other	CVE-2020-35481	2024-11-21 14:27	2021-02-4	Show	GitHub Exploit DB Packet Storm

198392	6.5	MEDIUM Network	digium	asterisk	An issue was discovered in res_pjsip_diversion.c in Sangoma Asterisk before 13.38.0, 14.x through 16.x before 16.15.0, 17.x before 17.9.0, and 18.x before 18.1.0. A crash can occur when a SIP message…	NVD-CWE-noinfo	CVE-2020-35652	2024-11-21 14:27	2021-01-29	Show	GitHub Exploit DB Packet Storm

198393	9.1	CRITICAL Network	mitel	micollab	A library index page in NuPoint Messenger in Mitel MiCollab before 9.2 FP1 could allow an unauthenticated attacker to gain access (view and modify) to user data.	NVD-CWE-noinfo	CVE-2020-35547	2024-11-21 14:27	2021-01-29	Show	GitHub Exploit DB Packet Storm

198394	8.2	HIGH Local	qemu	qemu	A flaw was found in qemu. A host privilege escalation issue was found in the virtio-fs shared file system daemon where a privileged guest user is able to create a device special file in the shared di…	-	CVE-2020-35517	2024-11-21 14:27	2021-01-29	Show	GitHub Exploit DB Packet Storm

198395	8.8	HIGH Network	tp-link	tl-wr841n_firmware	A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacha…	CWE-78 OS Command	CVE-2020-35576	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm

198396	4.9	MEDIUM Network	linux redhat	linux_kernel enterprise_linux	A flaw incorrect umask during file or directory modification in the Linux kernel NFS (network file system) functionality was found in the way user create and delete object using NFSv4.2 or newer if b…	-	CVE-2020-35513	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm

198397	4.8	MEDIUM Network	bakeshop_online_ordering_system_project	bakeshop_online_ordering_system	Bakeshop Online Ordering System in PHP/MySQLi 1.0 is affected by cross-site scripting (XSS) which allows remote attackers to inject an arbitrary web script or HTML in admin dashboard - "Categories".	CWE-79 Cross-site Scripting	CVE-2020-35309	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm

198398	9.1	CRITICAL Network	student_result_management_system_project	student_result_management_system	Student Result Management System In PHP With Source Code is affected by SQL injection. An attacker can able to access of Admin Panel and manage every account of Result.	CWE-89 SQL Injection	CVE-2020-35270	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm

198399	9.8	CRITICAL Network	egavilanmedia	user_registration_and_login_system_with_admin_panel	EgavilanMedia User Registration & Login System 1.0 is affected by SQL injection to the admin panel, which may allow arbitrary code execution.	CWE-89 SQL Injection	CVE-2020-35263	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm

198400	8.8	HIGH Network	cakefoundation	cakephp	A vulnerability exists in CakePHP versions 4.0.x through 4.1.3. The CsrfProtectionMiddleware component allows method override parameters to bypass CSRF checks by changing the HTTP request method to a…	CWE-352 Origin Validation Error	CVE-2020-35239	2024-11-21 14:27	2021-01-27	Show	GitHub Exploit DB Packet Storm