Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
255191 5 警告 ヒューレット・パッカード - HP Insight Recovery における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足
CVE-2010-4102 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
255192 4.3 警告 ヒューレット・パッカード - HP Insight Recovery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4101 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
255193 5 警告 ヒューレット・パッカード - HP Insight Control Performance Management における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足
CVE-2010-4100 2012-03-27 18:42 2010-10-28 Show GitHub Exploit DB Packet Storm
255194 6.8 警告 nitrosecurity - NitroSecurity NitroView ESM の ess.pm における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-4099 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
255195 5 警告 monotone - monotone におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4098 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
255196 4.3 警告 avatic - Aardvark Topsites PHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4097 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
255197 4.6 警告 monkeysphere project - Monkeysphere の share/ma/keys_for_user における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-4096 2012-03-27 18:42 2010-10-27 Show GitHub Exploit DB Packet Storm
255198 9.3 危険 robo-ftp - Robo-FTP に組み込まれている Serengeti Systems の FTP クライアントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-4095 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
255199 5 警告 IBM - IBM Rational Quality Manager および Rational Test Lab Manager の Tomcat サーバにおける任意のコードを実行される脆弱性 CWE-255
証明書・パスワード管理
CVE-2010-4094 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
255200 1.9 注意 Linux - Linux kernel の sisfb_ioctl 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-4078 2012-03-27 18:42 2010-11-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215911 6.8 MEDIUM
Network
wolfssl wolfssl wolfSSL before 4.5.0 mishandles TLS 1.3 server data in the WAIT_CERT_CR state, within SanityCheckTls13MsgReceived() in tls13.c. This is an incorrect implementation of the TLS 1.3 client state machine… CWE-295
Improper Certificate Validation 
CVE-2020-24613 2024-11-21 14:15 2020-08-25 Show GitHub Exploit DB Packet Storm
215912 8.8 HIGH
Network
raspap raspap An issue was discovered in includes/webconsole.php in RaspAP 2.5. With authenticated access, an attacker can use a misconfigured (and virtually unrestricted) web console to attack the underlying OS (… CWE-78
OS Command 
CVE-2020-24572 2024-11-21 14:15 2020-08-25 Show GitHub Exploit DB Packet Storm
215913 4.7 MEDIUM
Local
fedoraproject selinux-policy An issue was discovered in the selinux-policy (aka Reference Policy) package 3.14 through 2020-08-24 because the .config/Yubico directory is mishandled. Consequently, when SELinux is in enforced mode… CWE-287
Improper Authentication
CVE-2020-24612 2024-11-21 14:15 2020-08-25 Show GitHub Exploit DB Packet Storm
215914 7.5 HIGH
Network
squid-cache
canonical
debian
fedoraproject
opensuse
squid
ubuntu_linux
debian_linux
fedora
leap
Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only o… CWE-667
 Improper Locking
CVE-2020-24606 2024-11-21 14:15 2020-08-25 Show GitHub Exploit DB Packet Storm
215915 6.5 MEDIUM
Network
wso2 identity_server_analytics
api_microgateway
api_manager
enterprise_integrator
api_manager_analytics
The Management Console in certain WSO2 products allows XXE attacks during EventReceiver updates. This affects API Manager through 3.0.0, API Manager Analytics 2.2.0 and 2.5.0, API Microgateway 2.2.0,… CWE-611
XXE
CVE-2020-24591 2024-11-21 14:15 2020-08-22 Show GitHub Exploit DB Packet Storm
215916 9.1 CRITICAL
Network
wso2 api_microgateway
api_manager
The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML Entity Expansion attacks. CWE-776
XML Entity Expansion
CVE-2020-24590 2024-11-21 14:15 2020-08-22 Show GitHub Exploit DB Packet Storm
215917 9.1 CRITICAL
Network
wso2 api_microgateway
api_manager
The Management Console in WSO2 API Manager through 3.1.0 and API Microgateway 2.2.0 allows XML External Entity injection (XXE) attacks. CWE-611
XXE
CVE-2020-24589 2024-11-21 14:15 2020-08-22 Show GitHub Exploit DB Packet Storm
215918 5.3 MEDIUM
Network
wolfssl wolfssl An issue was discovered in the DTLS handshake implementation in wolfSSL before 4.5.0. Clear DTLS application_data messages in epoch 0 do not produce an out-of-order error. Instead, these messages are… NVD-CWE-noinfo
CVE-2020-24585 2024-11-21 14:15 2020-08-21 Show GitHub Exploit DB Packet Storm
215919 7.8 HIGH
Local
gog galaxy The client (aka GalaxyClientService.exe) in GOG GALAXY through 2.0.41 (as of 12:58 AM Eastern, 9/26/21) allows local privilege escalation from any authenticated user to SYSTEM by instructing the Wind… CWE-798
 Use of Hard-coded Credentials
CVE-2020-24574 2024-11-21 14:15 2020-08-21 Show GitHub Exploit DB Packet Storm
215920 7.5 HIGH
Network
nexusdb nexusdb NexusQA NexusDB before 4.50.23 allows the reading of files via ../ directory traversal. CWE-22
Path Traversal
CVE-2020-24571 2024-11-21 14:15 2020-08-21 Show GitHub Exploit DB Packet Storm