Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255441 4.3 警告 サイバートラスト株式会社
LibTIFF
レッドハット		 - LibTIFF の TIFFRGBAImageGet 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2483 2010-07-28 19:31 2010-07-6 Show GitHub Exploit DB Packet Storm
255442 4.3 警告 サイバートラスト株式会社
LibTIFF
レッドハット		 - LibTIFF の TIFFExtractData マクロにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-2481 2010-07-28 19:31 2010-07-6 Show GitHub Exploit DB Packet Storm
255443 5 警告 レッドハット - iSNS 実装におけるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2221 2010-07-28 19:30 2010-07-8 Show GitHub Exploit DB Packet Storm
255444 7.5 危険 シスコシステムズ - Cisco Content Services Switch における HTTP Request Smuggling 攻撃の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1576 2010-07-27 17:29 2010-07-2 Show GitHub Exploit DB Packet Storm
255445 7.5 危険 シスコシステムズ - Cisco Content Services Switch における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1575 2010-07-27 17:28 2010-07-2 Show GitHub Exploit DB Packet Storm
255446 6.8 警告 サイバートラスト株式会社
The Perl Foundation
レッドハット		 - Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4829 2010-07-26 18:29 2007-11-2 Show GitHub Exploit DB Packet Storm
255447 9.3 危険 マイクロソフト - Microsoft Windows Help and Support Center に脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2010-1885 2010-07-23 18:55 2010-06-10 Show GitHub Exploit DB Packet Storm
255448 4.9 警告 マイクロソフト - Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2009-3678 2010-07-23 18:55 2010-05-14 Show GitHub Exploit DB Packet Storm
255449 9.3 危険 サン・マイクロシステムズ
レッドハット
リアルネットワークス		 - Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性 CWE-119
バッファエラー 		CVE-2009-4247 2010-07-23 18:55 2010-01-19 Show GitHub Exploit DB Packet Storm
255450 10 危険 サイバートラスト株式会社
Apache Software Foundation		 - Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-4548 2010-07-22 20:51 2007-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212531 7.8 HIGH
Local 		intelliants subrion Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/. NVD-CWE-Other
CVE-2020-12468 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212532 6.5 MEDIUM
Network 		intelliants subrion Subrion CMS 4.2.1 allows session fixation via an alphanumeric value in a session cookie. CWE-384
 Session Fixation 		CVE-2020-12467 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212533 7.2 HIGH
Network 		mono monox MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program. NVD-CWE-noinfo
CVE-2020-12473 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212534 5.4 MEDIUM
Network 		mono monox MonoX through 5.1.40.5152 allows stored XSS via User Status, Blog Comments, or Blog Description. CWE-79
Cross-site Scripting 		CVE-2020-12472 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212535 6.7 MEDIUM
Local 		linux
netapp 		linux_kernel
cloud_backup
steelstore_cloud_integrated_storage
hci_storage_nodes
aff_a700s
active_iq_unified_manager
hci_compute_node
solidfire_\&_hci_storage_node
solidfir… 		usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925. CWE-416
 Use After Free 		CVE-2020-12464 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212536 6.7 MEDIUM
Local 		linux
netapp 		linux_kernel
cloud_backup
steelstore_cloud_integrated_storage
solidfire_\&_hci_management_node
active_iq_unified_manager
hci_compute_node
solidfire_baseboard_management_controll… 		An array overflow was discovered in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel before 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragmen… CWE-120
Classic Buffer Overflow 		CVE-2020-12465 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212537 6.1 MEDIUM
Network 		ninjaforms ninja_forms The ninja-forms plugin before 3.4.24.2 for WordPress allows CSRF with resultant XSS. CWE-352
 Origin Validation Error 		CVE-2020-12462 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212538 8.8 HIGH
Network 		php-fusion php-fusion PHP-Fusion 9.03.50 allows SQL Injection because maincore.php has an insufficient protection mechanism. An attacker can develop a crafted payload that can be inserted into the sort_order GET parameter… CWE-89
SQL Injection 		CVE-2020-12461 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212539 5.3 MEDIUM
Network 		gitlab gitlab GitLab 10.8 through 12.9 has a vulnerability that allows someone to mirror a repository even if the feature is not activated. CWE-276
Incorrect Default Permissions  		CVE-2020-12277 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm
212540 4.8 MEDIUM
Network 		gitlab gitlab GitLab 9.5.9 through 12.9 is vulnerable to stored XSS in an admin notification feature. CWE-79
Cross-site Scripting 		CVE-2020-12276 2024-11-21 13:59 2020-04-30 Show GitHub Exploit DB Packet Storm