Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255201 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
255202 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
255203 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255204 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255205 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
255206 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
255207 10 危険 サイバートラスト株式会社
XEmacs		 - XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2688 2010-01-12 14:48 2009-08-5 Show GitHub Exploit DB Packet Storm
255208 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
255209 5 警告 アップル - Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2009-2842 2010-01-7 12:09 2009-11-11 Show GitHub Exploit DB Packet Storm
255210 5.5 警告 シックス・アパート株式会社 - Movable Type におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-01-6 15:01 2010-01-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209801 7.5 HIGH
Network 		rockwellautomation rslinx A denial-of-service vulnerability exists in the Ethernet/IP server functionality of Rockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3. A specially crafted network request can lead to a denial … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-13573 2024-11-21 14:01 2021-01-8 Show GitHub Exploit DB Packet Storm
209802 7.8 HIGH
Local 		softmaker softmaker_office An exploitable signed conversion vulnerability exists in the TextMaker document parsing functionality of SoftMaker Office 2021’s TextMaker application. A specially crafted document can cause the docu… CWE-787
CWE-681
 Out-of-bounds Write
 Incorrect Conversion between Numeric Types 		CVE-2020-13545 2024-11-21 14:01 2021-01-7 Show GitHub Exploit DB Packet Storm
209803 7.8 HIGH
Local 		softmaker softmaker_office An exploitable sign extension vulnerability exists in the TextMaker document parsing functionality of SoftMaker Office 2021’s TextMaker application. A specially crafted document can cause the documen… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2020-13544 2024-11-21 14:01 2021-01-7 Show GitHub Exploit DB Packet Storm
209804 8.8 HIGH
Local 		win911 mobile-911_server An exploitable local privilege elevation vulnerability exists in the file system permissions of the Mobile-911 Server V2.5 install directory. Depending on the vector chosen, an attacker can overwrite… CWE-276
Incorrect Default Permissions  		CVE-2020-13541 2024-11-21 14:01 2021-01-6 Show GitHub Exploit DB Packet Storm
209805 7.8 HIGH
Local 		win911 win-911 An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via WIN-911 Account Change Utility. Depending on the … CWE-276
Incorrect Default Permissions  		CVE-2020-13540 2024-11-21 14:01 2021-01-6 Show GitHub Exploit DB Packet Storm
209806 7.8 HIGH
Local 		win911 win-911 An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory via “WIN-911 Mobile Runtime” service. Depending on th… CWE-276
Incorrect Default Permissions  		CVE-2020-13539 2024-11-21 14:01 2021-01-6 Show GitHub Exploit DB Packet Storm
209807 7.5 HIGH
Network 		xwiki xwiki XWiki Platform before 12.8 mishandles escaping in the property displayer. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2020-13654 2024-11-21 14:01 2020-12-31 Show GitHub Exploit DB Packet Storm
209808 4.8 MEDIUM
Network 		nchsoftware express_invoice NCH Express Invoice 8.06 to 8.24 is vulnerable to Reflected XSS in the Quotes List module. CWE-79
Cross-site Scripting 		CVE-2020-13476 2024-11-21 14:01 2020-12-29 Show GitHub Exploit DB Packet Storm
209809 6.5 MEDIUM
Network 		nchsoftware express_accounts In NCH Express Accounts 8.24 and earlier, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users. CWE-425
 Direct Request ('Forced Browsing') 		CVE-2020-13474 2024-11-21 14:01 2020-12-29 Show GitHub Exploit DB Packet Storm
209810 5.5 MEDIUM
Local 		nchsoftware express_accounts NCH Express Accounts 8.24 and earlier allows local users to discover the cleartext password by reading the configuration file. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-13473 2024-11-21 14:01 2020-12-29 Show GitHub Exploit DB Packet Storm