Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254121	6.8	警告	サイバートラスト株式会社レッドハット	-	TeX Live 2009 および teTeX の dvips における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0827	2010-05-27 17:40	2010-05-6	Show	GitHub Exploit DB Packet Storm

254122	6.8	警告	サイバートラスト株式会社レッドハット	-	teTeX および TeXlive 2007 の hpc.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2007-5935	2010-05-27 17:40	2007-11-13	Show	GitHub Exploit DB Packet Storm

254123	4.3	警告	サイバートラスト株式会社レッドハット	-	dvipng および teTeX の set.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0829	2010-05-27 17:40	2010-05-6	Show	GitHub Exploit DB Packet Storm

254124	1.9	注意	IBM	-	IBM WebSphere Application Server における KeyRingPassword のパスワード情報が漏えいする脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0769	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

254125	4.3	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0768	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

254126	4	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0770	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

254127	5	警告	IBM	-	IBM WebSphere Application Server (WAS) の Administrative Console コンポーネントにおける WAS セッションの内容を読まれる脆弱性	CWE-200 情報漏えい	CVE-2009-1898	2010-05-27 17:24	2009-06-3	Show	GitHub Exploit DB Packet Storm

254128	6.8	警告	サイバートラスト株式会社レッドハット	-	TeX Live 2009 および teTeX の dvipsk/dospecial.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1440	2010-05-26 16:33	2010-05-6	Show	GitHub Exploit DB Packet Storm

254129	6.8	警告	サイバートラスト株式会社レッドハット	-	TeX Live および teTeX の predospecial 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0739	2010-05-26 16:32	2010-04-16	Show	GitHub Exploit DB Packet Storm

254130	9.3	危険	アドビシステムズ	-	Adobe Photoshop CS4 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1279	2010-05-26 16:32	2010-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198231	9.8	CRITICAL Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to e…	CWE-798 Use of Hard-coded Credentials	CVE-2020-4216	2024-11-21 14:32	2020-06-15	Show	GitHub Exploit DB Packet Storm

198232	5.4	MEDIUM Network	ibm	spectrum_protect_client spectrum_protect_for_space_management	IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-4406	2024-11-21 14:32	2020-06-15	Show	GitHub Exploit DB Packet Storm

198233	3.1	LOW Network	wordpress fedoraproject debian	wordpress fedora debian_linux	In affected versions of WordPress, misuse of the `set-screen-option` filter's return value allows arbitrary user meta fields to be saved. It does require an admin to install a plugin that would misus…	-	CVE-2020-4050	2024-11-21 14:32	2020-06-13	Show	GitHub Exploit DB Packet Storm

198234	2.4	LOW Network	wordpress fedoraproject debian	wordpress fedora debian_linux	In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes page. This does requi…	-	CVE-2020-4049	2024-11-21 14:32	2020-06-13	Show	GitHub Exploit DB Packet Storm

198235	5.7	MEDIUM Network	wordpress fedoraproject debian	wordpress fedora debian_linux	In affected versions of WordPress, due to an issue in wp_validate_redirect() and URL sanitization, an arbitrary external link can be crafted leading to unintended/open redirect when clicked. This has…	-	CVE-2020-4048	2024-11-21 14:32	2020-06-13	Show	GitHub Exploit DB Packet Storm

198236	6.8	MEDIUM Network	wordpress fedoraproject debian	wordpress fedora debian_linux	In affected versions of WordPress, authenticated users with upload permissions (like authors) are able to inject JavaScript into some media file attachment pages in a certain way. This can lead to sc…	-	CVE-2020-4047	2024-11-21 14:32	2020-06-13	Show	GitHub Exploit DB Packet Storm

198237	5.4	MEDIUM Network	wordpress debian fedoraproject	wordpress debian_linux fedora	In affected versions of WordPress, users with low privileges (like contributors and authors) can use the embed block in a certain way to inject unfiltered HTML in the block editor. When affected post…	CWE-79 Cross-site Scripting	CVE-2020-4046	2024-11-21 14:32	2020-06-13	Show	GitHub Exploit DB Packet Storm

198238	5.4	MEDIUM Network	ibm	api_connect	IBM API Connect 5.0.0.0 through 5.0.8.8 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionalit…	CWE-79 Cross-site Scripting	CVE-2020-4251	2024-11-21 14:32	2020-06-12	Show	GitHub Exploit DB Packet Storm

198239	7.5	HIGH Network	scuttlebutt	ssb-db	SSB-DB version 20.0.0 has an information disclosure vulnerability. The get() method is supposed to only decrypt messages when you explicitly ask it to, but there is a bug where it's decrypting any me…	-	CVE-2020-4045	2024-11-21 14:32	2020-06-12	Show	GitHub Exploit DB Packet Storm

198240	9.8	CRITICAL Network	hcltech	hcl_digital_experience	"HCL Digital Experience is susceptible to Server Side Request Forgery."	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-4101	2024-11-21 14:32	2020-06-11	Show	GitHub Exploit DB Packet Storm