Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255031	5	警告	サン・マイクロシステムズ VMware レッドハット	-	Sun Java SE の TrueType フォント解析機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3729	2010-02-23 11:51	2009-11-9	Show	GitHub Exploit DB Packet Storm

255032	5	警告	アップルサイバートラスト株式会社 VMware サン・マイクロシステムズレッドハット	-	Sun Java SE および OpenJDK の Java Runtime Environment (JRE) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3728	2010-02-23 11:51	2009-11-9	Show	GitHub Exploit DB Packet Storm

255033	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0248	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

255034	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0244	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

255035	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0027	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

255036	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0247	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

255037	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0246	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

255038	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0245	2010-02-22 12:13	2010-01-21	Show	GitHub Exploit DB Packet Storm

255039	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

255040	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198631	7.8	HIGH Local	sonicwall	netextender	SonicWall NetExtender Windows client vulnerable to arbitrary file write vulnerability, this allows attacker to overwrite a DLL and execute code with the same privilege in the host operating system. T…	CWE-20 Improper Input Validation	CVE-2020-5131	2024-11-21 14:33	2020-07-18	Show	GitHub Exploit DB Packet Storm

198632	5.3	MEDIUM Network	sonicwall	sonicos	SonicOS SSLVPN LDAP login request allows remote attackers to cause external service interaction (DNS) due to improper validation of the request. This vulnerability impact SonicOS version 6.5.4.4-44n …	CWE-20 Improper Input Validation	CVE-2020-5130	2024-11-21 14:33	2020-07-18	Show	GitHub Exploit DB Packet Storm

198633	6.5	MEDIUM Network	traccar	traccar	Traccar GPS Tracking System before version 4.9 has a LDAP injection vulnerability. It occurs when user input is being used in LDAP search filter. By providing specially crafted input, an attacker can…	CWE-74 Injection	CVE-2020-5246	2024-11-21 14:33	2020-07-15	Show	GitHub Exploit DB Packet Storm

198634	6.5	MEDIUM Network	dell	powerprotect_data_manager powerprotect_x400_firmware	Dell PowerProtect Data Manager (PPDM) versions prior to 19.4 and Dell PowerProtect X400 versions prior to 3.2 contain an improper authorization vulnerability. A remote authenticated malicious user ma…	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-5356	2024-11-21 14:33	2020-07-7	Show	GitHub Exploit DB Packet Storm

198635	8.8	HIGH Network	dell	emc_data_protection_advisor	Dell EMC Data Protection Advisor 6.4, 6.5 and 18.1 contain an OS command injection vulnerability. A remote authenticated malicious user may exploit this vulnerability to execute arbitrary commands on…	CWE-78 OS Command	CVE-2020-5352	2024-11-21 14:33	2020-07-7	Show	GitHub Exploit DB Packet Storm

198636	6.5	MEDIUM Network	github_flavored_markdown_project fedoraproject	github_flavored_markdown fedora	The table extension in GitHub Flavored Markdown before version 0.29.0.gfm.1 takes O(n * n) time to parse certain inputs. An attacker could craft a markdown table which would take an unreasonably long…	-	CVE-2020-5238	2024-11-21 14:33	2020-07-2	Show	GitHub Exploit DB Packet Storm

198637	5.4	MEDIUM Network	dell	powermax_os emc_unisphere_for_powermax_virtual_appliance emc_unisphere_for_powermax	Dell EMC Unisphere for PowerMax versions prior to 9.1.0.17, Dell EMC Unisphere for PowerMax Virtual Appliance versions prior to 9.1.0.17, and PowerMax OS Release 5978 contain an authorization bypass …	CWE-862 Missing Authorization	CVE-2020-5345	2024-11-21 14:33	2020-06-24	Show	GitHub Exploit DB Packet Storm

198638	7.8	HIGH Local	dell	endpoint_security_suite_enterprise encryption	Dell Encryption versions prior to 10.7 and Dell Endpoint Security Suite versions prior to 2.7 contain a privilege escalation vulnerability due to incorrect permissions. A local malicious user with lo…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-5358	2024-11-21 14:33	2020-06-16	Show	GitHub Exploit DB Packet Storm

198639	4.4	MEDIUM Local	dell	chengming_3967_firmware chengming_3977_firmware chengming_3980_firmware chengming_3988_firmware chengming_3990_firmware chengming_3991_firmware g3_15_3500_firmware g3_15_3590_fir…	Dell Client Consumer and Commercial platforms include an improper authorization vulnerability in the Dell Manageability interface for which an unauthorized actor, with local system access with OS adm…	CWE-862 Missing Authorization	CVE-2020-5362	2024-11-21 14:33	2020-06-11	Show	GitHub Exploit DB Packet Storm

198640	7.5	HIGH Network	whitesourcesoftware	whitesource	The dashboard in WhiteSource Application Vulnerability Management (AVM) before version 20.4.1 allows Log Injection via a %0A%0D substring in the idp parameter to the /saml/login URI. This closes the …	CWE-116 Improper Encoding or Escaping of Output	CVE-2020-5304	2024-11-21 14:33	2020-06-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed