Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255391 2.6 注意 オラクル - Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0836 2010-08-5 16:36 2010-07-13 Show GitHub Exploit DB Packet Storm
255392 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0909 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255393 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0913 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255394 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0905 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255395 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0912 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255396 5.5 警告 オラクル - Oracle E-Business Suite の Oracle Advanced Product Catalog コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0915 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
255397 7.5 危険 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0908 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
255398 4.3 警告 オラクル - Oracle Enterprise Manager Grid Control の Console コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2373 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
255399 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Business Process Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2370 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
255400 5 警告 オラクル - Oracle Secure Backup における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0904 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197571 6.5 MEDIUM
Network 		themeum tutor_lms A CSRF vulnerability in the Tutor LMS plugin before 1.5.3 for WordPress can result in an attacker approving themselves as an instructor and performing other malicious actions (such as blocking legiti… CWE-352
 Origin Validation Error 		CVE-2020-8615 2024-11-21 14:39 2020-02-5 Show GitHub Exploit DB Packet Storm
197572 9.8 CRITICAL
Network 		point-to-point_protocol_project
wago
debian
canonical 		point-to-point_protocol
pfc_firmware
debian_linux
ubuntu_linux 		eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions. CWE-120
Classic Buffer Overflow 		CVE-2020-8597 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197573 9.8 CRITICAL
Network 		eginnovations eg_manager eG Manager 7.1.2 allows SQL Injection via the user parameter to com.eg.LoginHelperServlet (aka the Forgot Password feature). CWE-89
SQL Injection 		CVE-2020-8592 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197574 9.8 CRITICAL
Network 		eginnovations eg_manager eG Manager 7.1.2 allows authentication bypass via a com.egurkha.EgLoginServlet?uname=admin&upass=&accessKey=eGm0n1t0r request. CWE-287
Improper Authentication 		CVE-2020-8591 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197575 6.1 MEDIUM
Network 		wpchill strong_testimonials Stored XSS in the Strong Testimonials plugin before 2.40.1 for WordPress can result in an attacker performing malicious actions such as stealing session tokens. CWE-79
Cross-site Scripting 		CVE-2020-8549 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197576 6.1 MEDIUM
Network 		masscode masscode massCode 1.0.0-alpha.6 allows XSS via crafted Markdown text, with resultant remote code execution (because nodeIntegration in webPreferences is true). CWE-79
Cross-site Scripting 		CVE-2020-8548 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197577 9.8 CRITICAL
Network 		phplist phplist phpList 3.5.0 allows type juggling for admin login bypass because == is used instead of === for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical character… NVD-CWE-noinfo
CVE-2020-8547 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197578 7.5 HIGH
Network 		circl ail_framework Global.py in AIL framework 2.8 allows path traversal. CWE-22
Path Traversal 		CVE-2020-8545 2024-11-21 14:39 2020-02-4 Show GitHub Exploit DB Packet Storm
197579 - - - The server in Circontrol Raption through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The ocpp1.5 and pwrstudio bi… - CVE-2020-8006 2024-11-21 14:38 2024-04-12 Show GitHub Exploit DB Packet Storm
197580 7.2 HIGH
Network 		expressionengine expressionengine Unsanitized user input in ExpressionEngine <= 5.4.0 control panel member creation leads to an SQL injection. The user needs member creation/admin control panel access to execute the attack. CWE-89
SQL Injection 		CVE-2020-8242 2024-11-21 14:38 2022-02-19 Show GitHub Exploit DB Packet Storm