Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254541 2.6 注意 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2003-1577 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
254542 5 警告 IBM - IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0563 2010-02-25 12:35 2010-02-5 Show GitHub Exploit DB Packet Storm
254543 5 警告 アップル - Apple Safari の WebKit における任意の Web サイトにリクエストされる脆弱性 CWE-Other
その他 		CVE-2009-2841 2010-02-25 12:33 2009-11-11 Show GitHub Exploit DB Packet Storm
254544 10 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3384 2010-02-25 12:33 2009-11-11 Show GitHub Exploit DB Packet Storm
254545 7.1 危険 Linux
レッドハット		 - Linux kernel の icmp_send 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-0778 2010-02-25 12:33 2009-03-12 Show GitHub Exploit DB Packet Storm
254546 7.2 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の audit_syscall_entry 関数におけるシステムコール監査設定を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0834 2010-02-25 12:33 2009-03-6 Show GitHub Exploit DB Packet Storm
254547 7.2 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の hrtimer_start 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5966 2010-02-25 12:31 2007-12-20 Show GitHub Exploit DB Packet Storm
254548 4.3 警告 シスコシステムズ - Cisco Secure Desktop の +CSCOT+/translation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0440 2010-02-24 12:27 2010-02-1 Show GitHub Exploit DB Packet Storm
254549 6.2 警告 ヒューレット・パッカード - HP ECMT におけるデータベースにアクセスされる脆弱性 CWE-noinfo
情報不足 		CVE-2009-4184 2010-02-24 12:27 2009-10-5 Show GitHub Exploit DB Packet Storm
254550 4.6 警告 アップル - Apple iPhone OS のリカバリモードにおける任意のデータを読まれる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0038 2010-02-24 12:26 2010-02-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210721 9.8 CRITICAL
Network 		google android An issue was discovered on LG mobile devices with Android OS 7.2, 8.0, 8.1, 9, and 10 software. A stack-based buffer overflow in the logging tool could allow an attacker to gain privileges. The LG ID… CWE-787
 Out-of-bounds Write 		CVE-2020-11873 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210722 8.8 HIGH
Network 		wpewebkit
webkitgtk
canonical
fedoraproject
opensuse 		wpe_webkit
webkitgtk
ubuntu_linux
fedora
leap 		A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memo… CWE-416
 Use After Free 		CVE-2020-11793 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210723 7.5 HIGH
Network 		bluetrace opentrace The Cloud Functions subsystem in OpenTrace 1.0 might allow fabrication attacks by making billions of TempID requests before an AES-256-GCM key rotation occurs. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-11872 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210724 7.5 HIGH
Network 		ntp
redhat
netapp
debian
opensuse 		ntp
enterprise_linux
clustered_data_ontap
virtual_storage_console
data_ontap
vasa_provider_for_clustered_data_ontap
solidfire
hci_management_node
hci_storage_node_firmware
 ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows an off-path attacker to block unauthenticated synchronization via a server mode packet with a spoofed source IP address, because transmissi… CWE-346
 Origin Validation Error 		CVE-2020-11868 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210725 7.5 HIGH
Network 		appinghouse memono Users can lock their notes with a password in Memono version 3.8. Thus, users needs to know a password to read notes. However, these notes are stored in a database without encryption and an attacker … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-11826 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210726 8.8 HIGH
Network 		dolibarr dolibarr_erp\/crm In Dolibarr 10.0.6, forms are protected with a CSRF token against CSRF attacks. The problem is any CSRF token in any user's session can be used in another user's session. CSRF tokens should not be va… CWE-352
 Origin Validation Error 		CVE-2020-11825 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210727 5.4 MEDIUM
Network 		dolibarr dolibarr_erp\/crm In Dolibarr 10.0.6, if USER_LOGIN_FAILED is active, there is a stored XSS vulnerability on the admin tools --> audit page. This may lead to stealing of the admin account. CWE-79
Cross-site Scripting 		CVE-2020-11823 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210728 9.8 CRITICAL
Network 		rukovoditel rukovoditel Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the entities_id parameter. CWE-89
SQL Injection 		CVE-2020-11820 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210729 9.8 CRITICAL
Network 		rukovoditel rukovoditel In Rukovoditel 2.5.2, an attacker may inject an arbitrary .php file location instead of a language file and thus achieve command execution. CWE-22
Path Traversal 		CVE-2020-11819 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm
210730 8.8 HIGH
Network 		rukovoditel rukovoditel In Rukovoditel 2.5.2 has a form_session_token value to prevent CSRF attacks. This protection mechanism can be bypassed with another user's valid token. Thus, an attacker can change the Admin password… CWE-352
 Origin Validation Error 		CVE-2020-11818 2024-11-21 13:58 2020-04-17 Show GitHub Exploit DB Packet Storm