Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253921 7.2 危険 IBM - IBM DB2 の Install コンポーネントにおける脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4331 2010-02-4 11:19 2009-12-16 Show GitHub Exploit DB Packet Storm
253922 7.5 危険 IBM - IBM DB2 の Relational Data Services コンポーネントにおけるパスワードの引数を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-4333 2010-02-4 11:19 2009-12-16 Show GitHub Exploit DB Packet Storm
253923 7.2 危険 IBM - IBM DB2 の Engine Utilities コンポーネントの db2licm における脆弱性 CWE-noinfo
情報不足 		CVE-2009-4330 2010-02-4 11:18 2009-12-16 Show GitHub Exploit DB Packet Storm
253924 4 警告 IBM - IBM DB2 の Engine Utilities コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4329 2010-02-4 11:18 2009-12-16 Show GitHub Exploit DB Packet Storm
253925 7.2 危険 サイバートラスト株式会社
Linux		 - Linux kernel の kvm_dev_ioctl_get_supported_cpuid 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3638 2010-02-3 14:35 2009-10-29 Show GitHub Exploit DB Packet Storm
253926 5 警告 Linear LLC
S2 Security		 - Linear eMerge のマネージメントコンポーネントにおけるサービス運用妨害 (DoS) CWE-noinfo
情報不足 		CVE-2009-3734 2010-02-3 14:35 2010-01-5 Show GitHub Exploit DB Packet Storm
253927 7.5 危険 The PHP Group
LibGD project
サイバートラスト株式会社
レッドハット		 - PHP および GD Graphics Library の _gdGetColors 関数におけるバッファオーバーフローの脆弱性 CWE-Other
その他 		CVE-2009-3546 2010-02-3 14:34 2009-10-19 Show GitHub Exploit DB Packet Storm
253928 6.8 警告 GNU Project
XEmacs
サイバートラスト株式会社		 - Emacs および XEmacs における .flc ファイルの処理に関する任意のコードを実行される脆弱性 CWE-DesignError
CVE-2008-2142 2010-02-2 11:43 2008-05-12 Show GitHub Exploit DB Packet Storm
253929 3.5 注意 Drupal
サイバートラスト株式会社		 - Drupal の Menu モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4370 2010-02-2 11:43 2009-12-16 Show GitHub Exploit DB Packet Storm
253930 3.5 注意 Drupal
サイバートラスト株式会社		 - Drupal の Contact モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4369 2010-02-2 11:42 2009-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210651 8.8 HIGH
Network 		dlink dir-825_firmware An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. There is a stack-based buffer overflow in the httpd binary. It allows an authenticated user to execute arbitrary code via a POST to ntp_s… CWE-787
 Out-of-bounds Write 		CVE-2020-10214 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210652 8.8 HIGH
Network 		dlink
trendnet 		dir-825_firmware
tew-632brp_firmware 		An issue was discovered on D-Link DIR-825 Rev.B 2.10 devices. They allow remote attackers to execute arbitrary commands via the wps_sta_enrollee_pin parameter in a set_sta_enrollee_pin.cgi POST reque… CWE-78
OS Command  		CVE-2020-10213 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210653 9.8 CRITICAL
Network 		tecrail responsive_filemanager upload.php in Responsive FileManager 9.13.4 and 9.14.0 allows SSRF via the url parameter because file-extension blocking is mishandled and because it is possible for a DNS hostname to resolve to an i… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-10212 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210654 5.4 MEDIUM
Network 		citrix gateway_firmware Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Cit… CWE-444
HTTP Request Smuggling 		CVE-2020-10112 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210655 7.5 HIGH
Network 		citrix gateway_firmware Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic f… CWE-444
HTTP Request Smuggling 		CVE-2020-10111 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210656 5.3 MEDIUM
Network 		citrix gateway_firmware Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache head… NVD-CWE-noinfo
CVE-2020-10110 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210657 7.5 HIGH
Network 		eset smart_security
nod32_antivirus
mobile_security
smart_tv_security
internet_security
cyber_security 		ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Secu… CWE-436
 Interpretation Conflict 		CVE-2020-10193 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210658 9.8 CRITICAL
Network 		zohocorp manageengine_desktop_central Zoho ManageEngine Desktop Central before 10.0.474 allows remote code execution because of deserialization of untrusted data in getChartImage in the FileStorage class. This is related to the CewolfSer… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10189 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210659 9.8 CRITICAL
Network 		netkit_telnet_project
fedoraproject
debian
arista
oracle
juniper 		netkit_telnet
fedora
debian_linux
eos
communications_performance_intelligence_center
junos 		utility.c in telnetd in netkit telnet through 0.17 allows remote attackers to execute arbitrary code via short writes or urgent data, because of a buffer overflow involving the netclear and nextitem … CWE-120
Classic Buffer Overflow 		CVE-2020-10188 2024-11-21 13:54 2020-03-7 Show GitHub Exploit DB Packet Storm
210660 8.6 HIGH
Network 		yubico yubikey_one_time_password_validation_server The sync endpoint in YubiKey Validation Server before 2.40 allows remote attackers to replay an OTP. NOTE: this issue is potentially relevant to persons outside Yubico who operate a self-hosted OTP v… CWE-294
Authentication Bypass by Capture-replay  		CVE-2020-10185 2024-11-21 13:54 2020-03-6 Show GitHub Exploit DB Packet Storm