Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255241	7.1	危険	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0896	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

255242	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

255243	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

255244	10	危険	オラクル	-	Oracle Sun Product Suite の Sun Ray Server Software コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0888	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

255245	5	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の gtkimhtml.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0423	2010-05-14 18:39	2010-02-18	Show	GitHub Exploit DB Packet Storm

255246	4.3	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0420	2010-05-14 18:38	2010-02-18	Show	GitHub Exploit DB Packet Storm

255247	7.5	危険	Carnegie Mellon University (Project Cyrus) アップルサイバートラスト株式会社サン・マイクロシステムズオラクルレッドハット	-	Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0688	2010-05-14 18:37	2009-05-15	Show	GitHub Exploit DB Packet Storm

255248	7.5	危険	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0587	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

255249	5.8	警告	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0582	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

255250	1.2	注意	日本電気サイバートラスト株式会社サン・マイクロシステムズターボリナックス OpenSSL Project レッドハット	-	RSA key reconstruction vulnerability	-	CVE-2007-3108	2010-05-14 18:37	2007-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212111	7.5	HIGH Network	prestashop	correos_express	The Correos Express addon for PrestaShop 1.6 through 1.7 allows remote attackers to obtain sensitive information, such as a service's owner password that can be used to modify orders via SOAP. Attack…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-12120	2024-11-21 13:59	2020-04-28	Show	GitHub Exploit DB Packet Storm

212112	5.3	MEDIUM Network	trusteddomain fedoraproject	opendmarc fedora	OpenDMARC through 1.3.2 and 1.4.x allows attacks that inject authentication results to provide false information about the domain that originated an e-mail message. This is caused by incorrect parsin…	CWE-290 Authentication Bypass by Spoofing	CVE-2020-12272	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212113	9.8	CRITICAL Network	testlink	testlink	In TestLink 1.9.20, the lib/cfields/cfieldsExport.php goback_url parameter causes a security risk because it depends on client input and is not constrained to lib/cfields/cfieldsView.php at the web s…	NVD-CWE-noinfo	CVE-2020-12274	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212114	7.5	HIGH Network	testlink	testlink	In TestLink 1.9.20, a crafted login.php viewer parameter exposes cleartext credentials.	CWE-311 CWE-522 Missing Encryption of Sensitive Data Insufficiently Protected Credentials	CVE-2020-12273	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212115	6.1	MEDIUM Network	grafana	grafana	Grafana version < 6.7.3 is vulnerable for annotation popup XSS.	CWE-79 Cross-site Scripting	CVE-2020-12052	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212116	9.8	CRITICAL Network	sophos	sfos	A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with eithe…	CWE-89 SQL Injection	CVE-2020-12271	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212117	9.8	CRITICAL Network	artifex debian opensuse	jbig2dec debian_linux leap	jbig2_image_compose in jbig2_image.c in Artifex jbig2dec before 0.18 has a heap-based buffer overflow.	CWE-787 Out-of-bounds Write	CVE-2020-12268	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212118	9.8	CRITICAL Network	qt	qt	setMarkdown in Qt before 5.14.2 has a use-after-free related to QTextMarkdownImporter::insertBlock.	CWE-416 Use After Free	CVE-2020-12267	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212119	9.8	CRITICAL Network	decompress_project	decompress	The decompress package before 4.2.1 for Node.js is vulnerable to Arbitrary File Write via ../ in an archive member, when a symlink is used, because of Directory Traversal.	CWE-22 CWE-59 Path Traversal Link Following	CVE-2020-12265	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm

212120	7.8	HIGH Local	avira	antivirus	Avira Antivirus before 5.0.2003.1821 on Windows allows privilege escalation or a denial of service via abuse of a symlink.	CWE-59 Link Following	CVE-2020-12254	2024-11-21 13:59	2020-04-27	Show	GitHub Exploit DB Packet Storm