Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255231	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

255232	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

255233	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

255234	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

255235	10	危険	オラクル	-	Oracle Database の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0071	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

255236	5	警告	Pidgin Adium レッドハット	-	Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0013	2010-02-10 13:39	2010-01-8	Show	GitHub Exploit DB Packet Storm

255237	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-3959	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

255238	10	危険	アドビシステムズ	-	Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3958	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

255239	5	警告	アドビシステムズ	-	Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3957	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

255240	10	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるスクリプトインジェクションの脆弱性に関連した脆弱性	CWE-16 環境設定	CVE-2009-3956	2010-02-10 13:39	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210221	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14077	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210222	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain multiple command injections in apply.cgi via the action pppoe_connect, ru_pppoe_connect, or dhcp_connect with the key wan_ifname (or wan0_dns), all…	CWE-78 OS Command	CVE-2020-14075	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210223	8.8	HIGH Network	trendnet	tew-827dru_firmware	TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via th…	CWE-787 Out-of-bounds Write	CVE-2020-14074	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210224	9.8	CRITICAL Network	naviwebs	navigatecms	The install_from_hash functionality in Navigate CMS 2.9 does not consider the .phtml extension when examining files within a ZIP archive that may contain PHP code, in check_upload in lib/packages/ext…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-14067	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210225	8.1	HIGH Network	fasterxml netapp oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager agile_plm banking_digital_experience communications_diameter_signaling_router communications_evolved_c…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool (aka apache/drill).	CWE-502 Deserialization of Untrusted Data	CVE-2020-14060	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210226	8.1	HIGH Network	fasterxml netapp debian oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager debian_linux agile_plm banking_digital_experience communications_diameter_signaling_router communic…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool (aka xalan2…	CWE-502 Deserialization of Untrusted Data	CVE-2020-14062	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210227	8.1	HIGH Network	fasterxml netapp debian oracle	jackson-databind steelstore_cloud_integrated_storage active_iq_unified_manager debian_linux agile_plm banking_digital_experience communications_instant_messaging_server communica…	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oracle.jms.AQjmsQueueConnectionFactory, oracle.jms.AQjmsXATopicConnectio…	CWE-502 Deserialization of Untrusted Data	CVE-2020-14061	2024-11-21 14:02	2020-06-15	Show	GitHub Exploit DB Packet Storm

210228	7.8	HIGH Local	icinga opensuse	icinga leap backports_sle	An issue was discovered in Icinga2 before v2.12.0-rc1. The prepare-dirs script (run as part of the icinga2 systemd service) executes chmod 2750 /run/icinga2/cmd. /run/icinga2 is under control of an u…	CWE-59 Link Following	CVE-2020-14004	2024-11-21 14:02	2020-06-13	Show	GitHub Exploit DB Packet Storm

210229	7.5	HIGH Network	zohocorp	manageengine_servicedesk_plus	Zoho ManageEngine ServiceDesk Plus before 11.1 build 11115 allows remote unauthenticated attackers to change the installation status of deployed agents.	CWE-306 Missing Authentication for Critical Function	CVE-2020-14048	2024-11-21 14:02	2020-06-12	Show	GitHub Exploit DB Packet Storm

210230	7.2	HIGH Network	pandorafms	pandora_fms	Artica Pandora FMS 7.44 allows arbitrary file upload (leading to remote command execution) via the File Repository Manager feature.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-13855	2024-11-21 14:02	2020-06-11	Show	GitHub Exploit DB Packet Storm