Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255111	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3460	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

255112	4.3	警告	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2995	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

255113	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-2989	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

255114	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat の画像デコーダにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-2984	2010-02-9 13:54	2009-10-13	Show	GitHub Exploit DB Packet Storm

255115	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3797	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

255116	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3796	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

255117	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3794	2010-02-9 12:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

255118	10	危険	IBM	-	IBM Lotus Domino Web Access におけるリンク処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0276	2010-02-8 13:19	2010-01-7	Show	GitHub Exploit DB Packet Storm

255119	10	危険	IBM	-	IBM Lotus Domino Web Access における脆弱性	CWE-noinfo 情報不足	CVE-2009-4594	2010-02-8 13:19	2009-06-5	Show	GitHub Exploit DB Packet Storm

255120	10	危険	IBM	-	IBM Lotus Domino Web Access の Ultra-light Mode における status-alerts URL の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0275	2010-02-8 13:18	2010-01-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197191	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling.	NVD-CWE-noinfo	CVE-2020-6833	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

197192	9.8	CRITICAL Network	dotcms	dotcms	dotCMS before 5.2.4 is vulnerable to directory traversal, leading to incorrect access control. It allows an attacker to read or execute files under $TOMCAT_HOME/webapps/ROOT/assets (which should be a…	CWE-22 CWE-434 Path Traversal Unrestricted Upload of File with Dangerous Type	CVE-2020-6754	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

197193	9.8	CRITICAL Network	automationdirect	c-more_ea9-rhi_firmware c-more_ea9-t6cl-r_firmware c-more_ea9-t6cl_firmware c-more_ea9-t7cl-r_firmware c-more_ea9-t7cl_firmware c-more_ea9-t8cl_firmware c-more_ea9-t10cl_firmware	It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versio…	CWE-522 Insufficiently Protected Credentials	CVE-2020-6969	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

197194	7.5	HIGH Network	opensuse	wicked leap	An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-7216	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

197195	7.8	HIGH Local	mariadb	mariadb	mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack …	CWE-59 Link Following	CVE-2020-7221	2024-11-21 14:36	2020-02-5	Show	GitHub Exploit DB Packet Storm

197196	7.5	HIGH Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7219	2024-11-21 14:36	2020-01-31	Show	GitHub Exploit DB Packet Storm

197197	7.5	HIGH Network	hashicorp	nomad	HashiCorp Nomad and Nonad Enterprise up to 0.10.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 0.10.3.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7218	2024-11-21 14:36	2020-01-31	Show	GitHub Exploit DB Packet Storm

197198	9.8	CRITICAL Network	openbsd debian fedoraproject canonical	opensmtpd debian_linux fedora ubuntu_linux	smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated …	CWE-78 CWE-755 OS Command Improper Handling of Exceptional Conditions	CVE-2020-7247	2024-11-21 14:36	2020-01-30	Show	GitHub Exploit DB Packet Storm

197199	7.5	HIGH Network	netty fedoraproject debian redhat	netty fedora debian_linux jboss_enterprise_application_platform jboss_enterprise_application_platform_text-only_advisories openshift_application_runtimes_text-only_advisories	Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exi…	CWE-444 HTTP Request Smuggling	CVE-2020-7238	2024-11-21 14:36	2020-01-28	Show	GitHub Exploit DB Packet Storm

197200	6.5	MEDIUM Network	codesys	control_for_beaglebone control_for_empc-a\/imx6 control_for_iot2000 control_for_linux control_for_plcnext control_for_pfc100 control_for_pfc200 control_for_raspberry_pi contro…	CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7052	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm