Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253721	-	-	オラクル	-	Oracle WebLogic Node Manager に脆弱性	-	-	2011-02-14 15:26	2010-10-13	Show	GitHub Exploit DB Packet Storm

253722	4	警告	オラクル	-	Oracle Applications の Oracle Application Object Library コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3589	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

253723	4.3	警告	オラクル	-	Oracle Applications の Oracle Common Applications コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3587	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

253724	6.4	警告	オラクル	-	Oracle Enterprise Manager Grid Control の Real User Experience Insight コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3594	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

253725	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4427	2011-02-14 15:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

253726	3.5	注意	オラクル	-	Oracle Fusion Middleware の Oracle BI Publisher コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4425	2011-02-14 15:23	2011-01-18	Show	GitHub Exploit DB Packet Storm

253727	4.3	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4453	2011-02-14 15:15	2011-01-18	Show	GitHub Exploit DB Packet Storm

253728	5	警告	オラクル	-	Oracle Fusion Middleware の Oracle GoldenGate Veridata コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4416	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

253729	5.5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Discoverer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3588	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

253730	5.8	警告	オラクル	-	Oracle Fusion Middleware の Oracle WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4437	2011-02-14 15:14	2011-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209201	8.8	HIGH Network	zohocorp	manageengine_applications_manager	Zoho ManageEngine Applications Manager version 14740 and prior allows an authenticated SQL Injection via a crafted jsp request in the SAP module.	CWE-89 SQL Injection	CVE-2020-15927	2024-11-21 14:06	2020-10-7	Show	GitHub Exploit DB Packet Storm

209202	9.8	CRITICAL Network	mitsubishielectric	qj71mes96_firmware qj71ws96_firmware q06ccpu-v_firmware q24dhccpu-v_firmware q24dhccpu-vg_firmware r12ccpu-v_firmware rd55up06-v_firmware rd55up12-v_firmware rj71gn11-t2_firmw…	Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.	-	CVE-2020-16226	2024-11-21 14:06	2020-10-6	Show	GitHub Exploit DB Packet Storm

209203	7.8	HIGH Local	fatek	winproladder	In PLC WinProladder Version 3.28 and prior, a stack-based buffer overflow vulnerability can be exploited when a valid user opens a specially crafted file, which may allow an attacker to remotely exec…	-	CVE-2020-16234	2024-11-21 14:06	2020-10-1	Show	GitHub Exploit DB Packet Storm

209204	7.2	HIGH Network	re-desk	re\	Re:Desk 2.3 has a blind authenticated SQL injection vulnerability in the SettingsController class, in the actionEmailTemplates() method. A malicious actor with access to an administrative account cou…	CWE-89 SQL Injection	CVE-2020-15849	2024-11-21 14:06	2020-10-1	Show	GitHub Exploit DB Packet Storm

209205	3.6	LOW Local	bitdefender	engines	An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-…	CWE-20 Improper Input Validation	CVE-2020-15731	2024-11-21 14:06	2020-09-30	Show	GitHub Exploit DB Packet Storm

209206	7.3	HIGH Local	actfax	actfax	ActFax Version 7.10 Build 0335 (2020-05-25) is susceptible to a privilege escalation vulnerability due to insecure folder permissions on %PROGRAMFILES%\ActiveFax\Client\, %PROGRAMFILES%\ActiveFax\Ins…	CWE-276 Incorrect Default Permissions	CVE-2020-15843	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

209207	9.8	CRITICAL Network	nakivo	backup_\&_replication_transporter	Lack of access control in Nakivo Backup & Replication Transporter version 9.4.0.r43656 allows remote users to access unencrypted backup repositories and the Nakivo Controller configuration via a netw…	CWE-306 Missing Authentication for Critical Function	CVE-2020-15851	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

209208	7.8	HIGH Local	nakivo	backup_\&_replication_director	Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because …	CWE-276 Incorrect Default Permissions	CVE-2020-15850	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

209209	6.1	MEDIUM Network	joplin_project	joplin	An XSS issue in Joplin desktop 1.0.190 to 1.0.245 allows arbitrary code execution via a malicious HTML embed tag.	CWE-79 Cross-site Scripting	CVE-2020-15930	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

209210	5.3	MEDIUM Network	liferay	dxp liferay_portal	In Liferay Portal before 7.3.1, Liferay Portal 6.2 EE, and Liferay DXP 7.2, DXP 7.1 and DXP 7.0, the property 'portlet.resource.id.banned.paths.regexp' can be bypassed with doubled encoded URLs.	NVD-CWE-noinfo	CVE-2020-15840	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm