Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255051	9.3	危険	アップル	-	Apple Safari の WebKit におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2195	2010-07-13 16:27	2009-08-11	Show	GitHub Exploit DB Packet Storm

255052	4.3	警告	xmlsoft.org アップルサイバートラスト株式会社サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	libxml2 および libxml の Notation または Enumeration 属性タイプの処理におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2416	2010-07-13 16:27	2009-08-11	Show	GitHub Exploit DB Packet Storm

255053	4.3	警告	xmlsoft.org アップルサイバートラスト株式会社サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	libxml2 および libxml における DTD 内の要素宣言の処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2414	2010-07-13 16:26	2009-08-11	Show	GitHub Exploit DB Packet Storm

255054	4.3	警告	アップル	-	Apple Mac OS の CFNetwork における任意の HTTPS Web サイトを訪問しているように偽装可能な脆弱性	CWE-Other その他	CVE-2009-1723	2010-07-13 16:25	2009-08-5	Show	GitHub Exploit DB Packet Storm

255055	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1382	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

255056	3.5	注意	アップル	-	Apple Mac OS X の SMB ファイルサーバにおける任意のファイルにアクセスされる脆弱性	CWE-16 環境設定	CVE-2010-1381	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

255057	7.5	危険	アップル	-	Apple Mac OS X の cgtexttops CUPS フィルタにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1380	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

255058	5	警告	アップル	-	Apple Mac OS X のプリンタ設定におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1379	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

255059	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-noinfo	CVE-2010-0775	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

255060	4.3	警告	IBM	-	IBM WebSphere Application Server におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0774	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208981	9.8	CRITICAL Network	rockoa	rockoa	SQL Injection in Rockoa v1.8.7 allows remote attackers to gain privileges due to loose filtering of parameters in wordModel.php's getdata function.	CWE-89 SQL Injection	CVE-2020-18714	2024-11-21 14:08	2021-02-5	Show	GitHub Exploit DB Packet Storm

208982	9.8	CRITICAL Network	rockoa	rockoa	SQL Injection in Rockoa v1.8.7 allows remote attackers to gain privileges due to loose filtering of parameters in customerAction.php	CWE-89 SQL Injection	CVE-2020-18713	2024-11-21 14:08	2021-02-5	Show	GitHub Exploit DB Packet Storm

208983	5.4	MEDIUM Network	altn	mdaemon_webmail	Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening…	CWE-79 Cross-site Scripting	CVE-2020-18724	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208984	5.4	MEDIUM Network	altn	mdaemon_webmail	Stored cross-site scripting (XSS) in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially ma…	CWE-79 Cross-site Scripting	CVE-2020-18723	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208985	9.8	CRITICAL Network	apache	shiro	Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.	CWE-287 Improper Authentication	CVE-2020-17523	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208986	7.5	HIGH Network	apache	cassandra	Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc' or 'rack' internode_encryption setting, allows both encrypted and unencrypted intern…	CWE-290 Authentication Bypass by Spoofing	CVE-2020-17516	2024-11-21 14:08	2021-02-4	Show	GitHub Exploit DB Packet Storm

208987	9.8	CRITICAL Network	dlink	dsr-250_firmware dsr-1000n_firmware	The D-Link DSR-250 (3.14) DSR-1000N (2.11B201) UPnP service contains a command injection vulnerability, which can cause remote command execution.	CWE-78 OS Command	CVE-2020-18568	2024-11-21 14:08	2021-02-2	Show	GitHub Exploit DB Packet Storm

208988	5.8	MEDIUM Network	apache	traffic_control	When ORT (now via atstccfg) generates ip_allow.config files in Apache Traffic Control 3.0.0 to 3.1.0 and 4.0.0 to 4.1.0, those files include permissions that allow bad actors to push arbitrary conten…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-17522	2024-11-21 14:08	2021-01-27	Show	GitHub Exploit DB Packet Storm

208989	8.8	HIGH Network	apache	java_chassis	When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3…	CWE-502 Deserialization of Untrusted Data	CVE-2020-17532	2024-11-21 14:08	2021-01-25	Show	GitHub Exploit DB Packet Storm

208990	7.0	HIGH Local	apache	html\/java_api	There exists a race condition between the deletion of the temporary file and the creation of the temporary directory in `webkit` subproject of HTML/Java API version 1.7. A similar vulnerability has r…	CWE-362 Race Condition	CVE-2020-17534	2024-11-21 14:08	2021-01-12	Show	GitHub Exploit DB Packet Storm