Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253751 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Remote Procedure Call Subsystem におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3222 2010-10-29 16:30 2010-10-12 Show GitHub Exploit DB Packet Storm
253752 9.3 危険 マイクロソフト - Microsoft Windows Media Player における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2745 2010-10-29 16:27 2010-10-12 Show GitHub Exploit DB Packet Storm
253753 4.3 警告 トランスウエア - Active! mail 6 における HTTP ヘッダインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3913 2010-10-29 16:01 2010-10-29 Show GitHub Exploit DB Packet Storm
253754 6.8 警告 Schezo - Lhaplus における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3158 2010-10-28 16:55 2010-10-15 Show GitHub Exploit DB Packet Storm
253755 7.6 危険 マイクロソフト - 複数の Microsoft 製品の Comctl32.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2746 2010-10-28 16:35 2010-10-12 Show GitHub Exploit DB Packet Storm
253756 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3240 2010-10-28 16:35 2010-10-12 Show GitHub Exploit DB Packet Storm
253757 9.3 危険 マイクロソフト - Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3238 2010-10-28 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
253758 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3236 2010-10-28 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
253759 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3233 2010-10-28 16:34 2010-10-12 Show GitHub Exploit DB Packet Storm
253760 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3232 2010-10-28 16:33 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209511 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from multiple stored XSS vulnerabilities. An author user can create posts that result in stored XSS vulnerabilities, by using a cr… CWE-79
Cross-site Scripting 		CVE-2020-13865 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209512 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from a stored XSS vulnerability. An author user can create posts that result in a stored XSS by using a crafted payload in custom … CWE-79
Cross-site Scripting 		CVE-2020-13864 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209513 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name. CWE-79
Cross-site Scripting 		CVE-2020-13870 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209514 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name. CWE-79
Cross-site Scripting 		CVE-2020-13869 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209515 6.5 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity. CWE-352
 Origin Validation Error 		CVE-2020-13868 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209516 5.5 MEDIUM
Local 		targetcli-fb_project
fedoraproject 		targetcli-fb
fedora 		Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files). CWE-276
Incorrect Default Permissions  		CVE-2020-13867 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
209517 7.5 HIGH
Network 		mqtt mqtt The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the abili… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-13849 2024-11-21 14:02 2020-06-5 Show GitHub Exploit DB Packet Storm
209518 8.1 HIGH
Network 		loadbalancer enterprise_va_max The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and… CWE-22
Path Traversal 		CVE-2020-13377 2024-11-21 14:01 2023-05-12 Show GitHub Exploit DB Packet Storm
209519 8.8 HIGH
Network 		loadbalancer enterprise_va_max Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code. CWE-78
OS Command  		CVE-2020-13378 2024-11-21 14:01 2023-05-12 Show GitHub Exploit DB Packet Storm
209520 7.2 HIGH
Network 		rukovoditel rukovoditel Multiple exploitable SQL injection vulnerabilities exist in the 'entities/fields' page of the Rukovoditel Project Management App 2.7.2. A specially crafted HTTP request can lead to SQL injection. An … CWE-89
SQL Injection 		CVE-2020-13590 2024-11-21 14:01 2022-04-19 Show GitHub Exploit DB Packet Storm