Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254851	9.3	危険	シマンテック IBM	-	Autonomy KeyView の library におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0126	2010-08-24 18:41	2010-08-4	Show	GitHub Exploit DB Packet Storm

254852	9.3	危険	シマンテック IBM	-	Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1524	2010-08-24 18:41	2010-08-4	Show	GitHub Exploit DB Packet Storm

254853	9.3	危険	シマンテック IBM	-	Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-1525	2010-08-24 18:41	2010-08-4	Show	GitHub Exploit DB Packet Storm

254854	9.3	危険	シマンテック IBM	-	Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0133	2010-08-24 18:40	2010-08-4	Show	GitHub Exploit DB Packet Storm

254855	9.3	危険	シマンテック IBM	-	Lotus 1-2-3 reader (wkssr.dll) の SpreadSheet におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0131	2010-08-24 18:40	2010-08-4	Show	GitHub Exploit DB Packet Storm

254856	4.3	警告	サイバートラスト株式会社 LibTIFF レッドハット	-	x86_64 プラットフォーム上で稼動する RHEL の LibTIFF におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2598	2010-08-24 13:44	2010-07-8	Show	GitHub Exploit DB Packet Storm

254857	6.8	警告	アップルサイバートラスト株式会社 LibTIFF レッドハット	-	LibTIFF の FAX3 デコーダの Fax3SetupState 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1411	2010-08-24 13:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

254858	2.6	注意	アップル	-	Apple Safari の AutoFill 機能におけるアドレスブックカードの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1796	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

254859	4.3	警告	アップル	-	Apple Safari におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1778	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

254860	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208981	9.8	CRITICAL Network	rockoa	rockoa	SQL Injection in Rockoa v1.8.7 allows remote attackers to gain privileges due to loose filtering of parameters in wordModel.php's getdata function.	CWE-89 SQL Injection	CVE-2020-18714	2024-11-21 14:08	2021-02-5	Show	GitHub Exploit DB Packet Storm

208982	9.8	CRITICAL Network	rockoa	rockoa	SQL Injection in Rockoa v1.8.7 allows remote attackers to gain privileges due to loose filtering of parameters in customerAction.php	CWE-89 SQL Injection	CVE-2020-18713	2024-11-21 14:08	2021-02-5	Show	GitHub Exploit DB Packet Storm

208983	5.4	MEDIUM Network	altn	mdaemon_webmail	Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening…	CWE-79 Cross-site Scripting	CVE-2020-18724	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208984	5.4	MEDIUM Network	altn	mdaemon_webmail	Stored cross-site scripting (XSS) in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially ma…	CWE-79 Cross-site Scripting	CVE-2020-18723	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208985	9.8	CRITICAL Network	apache	shiro	Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.	CWE-287 Improper Authentication	CVE-2020-17523	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208986	7.5	HIGH Network	apache	cassandra	Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted intern…	CWE-290 Authentication Bypass by Spoofing	CVE-2020-17516	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208987	9.8	CRITICAL Network	dlink	dsr-250_firmware dsr-1000n_firmware	The D-Link DSR-250 (3.14) DSR-1000N (2.11B201) UPnP service contains a command injection vulnerability, which can cause remote command execution.	CWE-78 OS Command	CVE-2020-18568	2024-11-21 14:08	2021-02-2	Show	GitHub Exploit DB Packet Storm

208988	5.8	MEDIUM Network	apache	traffic_control	When ORT (now via atstccfg) generates ip_allow.config files in Apache Traffic Control 3.0.0 to 3.1.0 and 4.0.0 to 4.1.0, those files include permissions that allow bad actors to push arbitrary conten…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-17522	2024-11-21 14:08	2021-01-27	Show	GitHub Exploit DB Packet Storm

208989	8.8	HIGH Network	apache	java_chassis	When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3…	CWE-502 Deserialization of Untrusted Data	CVE-2020-17532	2024-11-21 14:08	2021-01-25	Show	GitHub Exploit DB Packet Storm

208990	7.0	HIGH Local	apache	html\/java_api	There exists a race condition between the deletion of the temporary file and the creation of the temporary directory in `webkit` subproject of HTML/Java API version 1.7. A similar vulnerability has r…	CWE-362 Race Condition	CVE-2020-17534	2024-11-21 14:08	2021-01-12	Show	GitHub Exploit DB Packet Storm