Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253661 9.3 危険 VideoLAN - VideoLAN VLC Media Player の libdirectx_plugin.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3275 2012-03-27 18:42 2011-03-28 Show GitHub Exploit DB Packet Storm
253662 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の Employee Search Engine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3274 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253663 5 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3273 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253664 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3272 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
253665 6.8 警告 IBM - IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3271 2012-03-27 18:42 2011-07-18 Show GitHub Exploit DB Packet Storm
253666 6.8 警告 シスコシステムズ - Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3270 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
253667 9.3 危険 シスコシステムズ - Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3269 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
253668 6.4 警告 orbeon - Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3260 2012-03-27 18:42 2011-04-26 Show GitHub Exploit DB Packet Storm
253669 5 警告 シマンテック
インテル		 - Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3268 2012-03-27 18:42 2010-12-22 Show GitHub Exploit DB Packet Storm
253670 6.5 警告 ifdefined - BugTracker.NET における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3267 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218181 4.9 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The ASP.net SMS module can be used to read and validate the source code of ASP files. By altering the path, it can be made to read any … NVD-CWE-noinfo
CVE-2020-14021 2024-11-21 14:02 2020-09-19 Show GitHub Exploit DB Packet Storm
218182 6.1 MEDIUM
Network 		apache airflow In Apache Airflow < 1.10.12, the "origin" parameter passed to some of the endpoints like '/trigger' was vulnerable to XSS exploit. CWE-79
Cross-site Scripting 		CVE-2020-13944 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
218183 5.3 MEDIUM
Network 		atlassian jira
data_center
jira_server 		Affected versions of Atlassian Jira Server and Data Center allow an unauthenticated user to enumerate users via an Information Disclosure vulnerability in the /ViewUserHover.jspa endpoint. The affect… CWE-200
Information Exposure 		CVE-2020-14181 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
218184 8.8 HIGH
Network 		apache superset While investigating a bug report on Apache Superset, it was determined that an authenticated user could craft requests via a number of templated text fields in the product that would allow arbitrary … NVD-CWE-noinfo
CVE-2020-13948 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
218185 8.8 HIGH
Network 		istio-operator_project istio-operator An incorrect access control flaw was found in the operator, openshift-service-mesh/istio-rhel8-operator all versions through 1.1.3. This flaw allows an attacker with a basic level of access to the cl… CWE-862
 Missing Authorization 		CVE-2020-14306 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
218186 6.1 MEDIUM
Network 		apache atlas Apache Atlas before 2.1.0 contain a XSS vulnerability. While saving search or rendering elements values are not sanitized correctly and because of that it triggers the XSS vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-13928 2024-11-21 14:02 2020-09-17 Show GitHub Exploit DB Packet Storm
218187 9.8 CRITICAL
Network 		daemonology bsdiff A memory corruption vulnerability is present in bspatch as shipped in Colin Percival’s bsdiff tools version 4.3. Insufficient checks when handling external inputs allows an attacker to bypass the san… CWE-787
 Out-of-bounds Write 		CVE-2020-14315 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm
218188 5.5 MEDIUM
Local 		linux
debian
canonical
starwindsoftware 		linux_kernel
debian_linux
ubuntu_linux
starwind_virtual_san 		A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to… - CVE-2020-14314 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm
218189 4.4 MEDIUM
Local 		linux linux_kernel A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the k… - CVE-2020-14304 2024-11-21 14:02 2020-09-16 Show GitHub Exploit DB Packet Storm
218190 9.8 CRITICAL
Network 		mi r3600_firmware In Xiaomi router R3600 ROM version<1.0.66, filters in the set_WAN6 interface can be bypassed, causing remote code execution. The router administrator can gain root access from this vulnerability. CWE-77
Command Injection 		CVE-2020-14100 2024-11-21 14:02 2020-09-11 Show GitHub Exploit DB Packet Storm