Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254891 7.8 危険 VMware - VMware Fusion の vmx86 のカーネル拡張における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3282 2010-03-24 12:23 2009-10-1 Show GitHub Exploit DB Packet Storm
254892 7.2 危険 VMware - VMware Fusion の vmx86 のカーネル拡張における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3281 2010-03-24 12:22 2009-10-1 Show GitHub Exploit DB Packet Storm
254893 9.3 危険 VMware - 複数の VMware 製品の VMnc media コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2628 2010-03-24 12:22 2009-09-4 Show GitHub Exploit DB Packet Storm
254894 9.3 危険 VMware - 複数の VMware 製品の VMnc media コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0199 2010-03-24 12:22 2009-09-4 Show GitHub Exploit DB Packet Storm
254895 5 警告 VMware - VMware Studio の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2968 2010-03-24 12:22 2009-08-31 Show GitHub Exploit DB Packet Storm
254896 4 警告 VMware - 複数の VMware 製品の Descheduled Time Accounting ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1805 2010-03-24 12:22 2009-05-28 Show GitHub Exploit DB Packet Storm
254897 6.8 警告 VMware - 複数の VMware 製品の仮想マシン表示機能における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-1244 2010-03-24 12:21 2009-04-10 Show GitHub Exploit DB Packet Storm
254898 7.2 危険 VMware - 複数の VMware 製品の仮想マシン通信インターフェイスにおける権限昇格の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1147 2010-03-24 12:21 2009-04-3 Show GitHub Exploit DB Packet Storm
254899 4.9 警告 VMware - 複数の VMware 製品の ioctl におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-1146 2010-03-23 14:11 2010-04-3 Show GitHub Exploit DB Packet Storm
254900 6.8 警告 VMware - 複数の VMware 製品の VNnc コーデックにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0910 2010-03-23 14:11 2010-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212311 8.8 HIGH
Network 		vestacp vesta_control_panel An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script). NVD-CWE-noinfo
CVE-2020-10787 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
212312 8.8 HIGH
Network 		vestacp vesta_control_panel A remote command execution in Vesta Control Panel through 0.9.8-26 allows any authenticated user to execute arbitrary commands on the system via cron jobs. CWE-863
 Incorrect Authorization 		CVE-2020-10786 2024-11-21 13:56 2020-04-22 Show GitHub Exploit DB Packet Storm
212313 8.8 HIGH
Network 		tortoise_orm_project tortoise_orm In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only… CWE-89
SQL Injection 		CVE-2020-11010 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
212314 5.4 MEDIUM
Network 		zulip zulip_server Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover. CWE-79
Cross-site Scripting 		CVE-2020-10935 2024-11-21 13:56 2020-04-21 Show GitHub Exploit DB Packet Storm
212315 8.8 HIGH
Network 		sophos anti-virus_for_sophos_central
anti-virus_for_sophos_home 		Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation. CWE-59
Link Following 		CVE-2020-10947 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
212316 7.5 HIGH
Network 		ftpdmin_project ftpdmin A buffer overflow vulnerability in FTPDMIN 0.96 allows attackers to crash the server via a crafted packet. CWE-120
Classic Buffer Overflow 		CVE-2020-10813 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
212317 6.5 MEDIUM
Network 		shopizer shopizer In Shopizer before version 2.11.0, using API or Controller based versions negative quantity is not adequately validated hence creating incorrect shopping cart and order total. This vulnerability make… CWE-20
 Improper Input Validation  		CVE-2020-11007 2024-11-21 13:56 2020-04-17 Show GitHub Exploit DB Packet Storm
212318 4.7 MEDIUM
Network 		westerndigital ibi
my_cloud_home 		Western Digital My Cloud Home and ibi devices before 2.2.0 allow clickjacking on sign-in pages. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2020-10951 2024-11-21 13:56 2020-04-16 Show GitHub Exploit DB Packet Storm
212319 8.1 HIGH
Network 		fraction oasis Oasis before version 2.15.0 has a potential DNS rebinding or CSRF vulnerability. If you're running a vulnerable application on your computer and an attacker can trick you into visiting a malicious we… CWE-352
 Origin Validation Error 		CVE-2020-11003 2024-11-21 13:56 2020-04-15 Show GitHub Exploit DB Packet Storm
212320 4.7 MEDIUM
Local 		arm
fedoraproject
debian 		mbed_tls
fedora
debian_linux 		An issue was discovered in Arm Mbed TLS before 2.16.6 and 2.7.x before 2.7.15. An attacker that can get precise enough side-channel measurements can recover the long-term ECDSA private key by (1) rec… CWE-327
CWE-203
 Use of a Broken or Risky Cryptographic Algorithm
 Information Exposure Through Discrepancy 		CVE-2020-10932 2024-11-21 13:56 2020-04-15 Show GitHub Exploit DB Packet Storm