Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254641 9 危険 オラクル - Oracle Database の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3415 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
254642 10 危険 オラクル - Oracle Database の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0071 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
254643 5 警告 Pidgin
Adium
レッドハット		 - Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0013 2010-02-10 13:39 2010-01-8 Show GitHub Exploit DB Packet Storm
254644 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3959 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
254645 10 危険 アドビシステムズ - Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3958 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
254646 5 警告 アドビシステムズ - Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3957 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
254647 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるスクリプトインジェクションの脆弱性に関連した脆弱性 CWE-16
環境設定 		CVE-2009-3956 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
254648 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3955 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
254649 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の 3D 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3954 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
254650 6.8 警告 サン・マイクロシステムズ - Sun Solaris の Trusted Extensions における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0310 2010-02-10 13:38 2010-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209691 7.8 HIGH
Local 		wago
pepperl-fuchs
emerson
weidmueller 		fdtcontainer_component
pactware
rosemount_transmitter_interface_software
dtminspector_3
fdtcontainer_application
wi_manager
io-link_master_firmware 		M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-12525 2024-11-21 13:59 2021-01-23 Show GitHub Exploit DB Packet Storm
209692 4.9 MEDIUM
Network 		pepperl-fuchs io-link_master_4-eip_firmware
io-link_master_8-eip_firmware
io-link_master_8-eip-l_firmware
io-link_master_dr-8-eip_firmware
io-link_master_dr-8-eip-p_firmware
io-link_master_dr-8-eip-… 		Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd CWE-476
 NULL Pointer Dereference 		CVE-2020-12514 2024-11-21 13:59 2021-01-23 Show GitHub Exploit DB Packet Storm
209693 8.8 HIGH
Network 		pepperl-fuchs io-link_master_4-eip_firmware
io-link_master_8-eip_firmware
io-link_master_8-eip-l_firmware
io-link_master_dr-8-eip_firmware
io-link_master_dr-8-eip-p_firmware
io-link_master_dr-8-eip-… 		Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection. CWE-78
OS Command  		CVE-2020-12513 2024-11-21 13:59 2021-01-23 Show GitHub Exploit DB Packet Storm
209694 5.4 MEDIUM
Network 		pepperl-fuchs io-link_master_4-eip_firmware
io-link_master_8-eip_firmware
io-link_master_8-eip-l_firmware
io-link_master_dr-8-eip_firmware
io-link_master_dr-8-eip-p_firmware
io-link_master_dr-8-eip-… 		Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting CWE-79
Cross-site Scripting 		CVE-2020-12512 2024-11-21 13:59 2021-01-23 Show GitHub Exploit DB Packet Storm
209695 8.8 HIGH
Network 		pepperl-fuchs io-link_master_4-eip_firmware
io-link_master_8-eip_firmware
io-link_master_8-eip-l_firmware
io-link_master_dr-8-eip_firmware
io-link_master_dr-8-eip-p_firmware
io-link_master_dr-8-eip-… 		Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site Request Forgery (CSRF) in the web interface. CWE-352
 Origin Validation Error 		CVE-2020-12511 2024-11-21 13:59 2021-01-23 Show GitHub Exploit DB Packet Storm
209696 4.3 MEDIUM
Network 		apache guacamole Apache Guacamole 1.2.0 and earlier do not consistently restrict access to connection history based on user visibility. If multiple users share access to the same connection, those users may be able t… CWE-276
Incorrect Default Permissions  		CVE-2020-11997 2024-11-21 13:59 2021-01-20 Show GitHub Exploit DB Packet Storm
209697 9.8 CRITICAL
Network 		apache dubbo A deserialization vulnerability existed in dubbo 2.7.5 and its earlier versions, which could lead to malicious code execution. Most Dubbo users use Hessian2 as the default serialization/deserializati… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-11995 2024-11-21 13:59 2021-01-11 Show GitHub Exploit DB Packet Storm
209698 9.8 CRITICAL
Network 		apache dolphinscheduler In DolphinScheduler 1.2.0 and 1.2.1, with mysql connectorj a remote code execution vulnerability exists when choosing mysql as database. NVD-CWE-noinfo
CVE-2020-11974 2024-11-21 13:59 2020-12-19 Show GitHub Exploit DB Packet Storm
209699 6.5 MEDIUM
Adjacent 		phoenixcontact plcnext_firmware On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS a specially crafted LLDP packet may lead to a high system load in the PROFINET stack. An attacker can cause failure of system ser… CWE-20
 Improper Input Validation  		CVE-2020-12521 2024-11-21 13:59 2020-12-18 Show GitHub Exploit DB Packet Storm
209700 9.8 CRITICAL
Network 		phoenixcontact plcnext_firmware On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges. CWE-269
 Improper Privilege Management 		CVE-2020-12519 2024-11-21 13:59 2020-12-18 Show GitHub Exploit DB Packet Storm