Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254881	4	警告	サイバートラスト株式会社 MIT Kerberos ターボリナックスレッドハット	-	MIT Kerberos の kadmind におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0629	2010-06-16 16:17	2010-04-6	Show	GitHub Exploit DB Packet Storm

254882	6.4	警告	OpenSSL Project	-	OpenSSL の EVP_PKEY_verify_recover 関数における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1633	2010-06-15 18:26	2010-06-1	Show	GitHub Exploit DB Packet Storm

254883	3.6	注意	レッドハット	-	RHEL の yum-rhn-plugin における Red Hat Network プロファイルを閲覧される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1439	2010-06-15 18:25	2010-06-1	Show	GitHub Exploit DB Packet Storm

254884	9.3	危険	アドビシステムズ	-	Adobe Photoshop CS4 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1296	2010-06-15 18:25	2010-05-26	Show	GitHub Exploit DB Packet Storm

254885	5	警告	日立	-	Groupmax World Wide Web Desktop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-06-14 16:24	2010-05-26	Show	GitHub Exploit DB Packet Storm

254886	4.3	警告	日立	-	Hitachi Web Server の SSL クライアント認証における CRL 失効確認不可の脆弱性	CWE-287 不適切な認証	-	2010-06-14 16:24	2010-05-17	Show	GitHub Exploit DB Packet Storm

254887	5	警告	日立	-	TP1/Message Control におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-06-14 16:23	2010-05-17	Show	GitHub Exploit DB Packet Storm

254888	10	危険	日立 CA Technologies	-	CA XOsoft におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1223	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

254889	5	警告	日立 CA Technologies	-	CA XOsoft における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-1222	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

254890	5	警告	日立 CA Technologies	-	CA XOsoft におけるユーザ名を列挙される脆弱性	CWE-287 不適切な認証	CVE-2010-1221	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198001	7.8	HIGH Local	fsa_project	fsa	fsa through 0.5.1 is vulnerable to Command Injection. The first argument of 'execGitCommand()', located within 'lib/rep.js#63' can be controlled by users without any sanitization to inject arbitrary …	CWE-78 OS Command	CVE-2020-7615	2024-11-21 14:37	2020-04-7	Show	GitHub Exploit DB Packet Storm

198002	9.8	CRITICAL Network	npm-programmatic_project	npm-programmatic	npm-programmatic through 0.0.12 is vulnerable to Command Injection.The packages and option properties are concatenated together without any validation and are used by the 'exec' function directly.	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-7614	2024-11-21 14:37	2020-04-7	Show	GitHub Exploit DB Packet Storm

198003	8.1	HIGH Network	clamscan_project	clamscan	clamscan through 1.2.0 is vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the `_is_clamav_binary` function located within `Index.js`. It should be noted that t…	CWE-78 OS Command	CVE-2020-7613	2024-11-21 14:37	2020-04-7	Show	GitHub Exploit DB Packet Storm

198004	9.8	CRITICAL Network	jooby	jooby	This affects the package io.jooby:jooby-netty before 1.6.9, from 2.0.0 and before 2.2.1. The DefaultHttpHeaders is set to false which means it does not validates that the header isn't being abused fo…	NVD-CWE-Other	CVE-2020-7622	2024-11-21 14:37	2020-04-7	Show	GitHub Exploit DB Packet Storm

198005	5.3	MEDIUM Network	dot_project	dot	eivindfjeldstad-dot below 1.0.3 is vulnerable to Prototype Pollution.The function 'set' could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7639	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

198006	5.3	MEDIUM Network	confinit_project	confinit	confinit through 0.3.0 is vulnerable to Prototype Pollution.The 'setDeepProperty' function could be tricked into adding or modifying properties of 'Object.prototype' using a '__proto__' payload.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7638	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

198007	5.3	MEDIUM Network	class-transformer_project	class-transformer	class-transformer before 0.3.1 allow attackers to perform Prototype Pollution. The classToPlainFromExist function could be tricked into adding or modifying properties of Object.prototype using a __pr…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7637	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

198008	9.8	CRITICAL Network	adb-driver_project	adb-driver	adb-driver through 0.1.8 is vulnerable to Command Injection.It allows execution of arbitrary commands via the command function.	CWE-78 OS Command	CVE-2020-7636	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

198009	9.8	CRITICAL Network	compass-compile_project	compass-compile	compass-compile through 0.0.1 is vulnerable to Command Injection.It allows execution of arbitrary commands via tha options argument.	CWE-78 OS Command	CVE-2020-7635	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm

198010	9.8	CRITICAL Network	heroku-addonpool_project	heroku-addonpool	heroku-addonpool through 0.1.15 is vulnerable to Command Injection.	CWE-78 OS Command	CVE-2020-7634	2024-11-21 14:37	2020-04-6	Show	GitHub Exploit DB Packet Storm