Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255541 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1798 2010-03-12 15:13 2009-12-28 Show GitHub Exploit DB Packet Storm
255542 6.8 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1797 2010-03-12 15:12 2009-12-28 Show GitHub Exploit DB Packet Storm
255543 6.6 警告 日立 - JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-03-12 15:12 2010-02-26 Show GitHub Exploit DB Packet Storm
255544 9.3 危険 Panda Security - Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題 CWE-94
コード・インジェクション 		CVE-2009-3735 2010-03-12 15:12 2010-02-12 Show GitHub Exploit DB Packet Storm
255545 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_retrieve_buffered_fragment 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1379 2010-03-12 14:44 2009-05-19 Show GitHub Exploit DB Packet Storm
255546 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_process_out_of_seq_message 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1378 2010-03-12 14:44 2009-05-19 Show GitHub Exploit DB Packet Storm
255547 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1377 2010-03-12 14:43 2009-05-19 Show GitHub Exploit DB Packet Storm
255548 5 警告 アップル
サイバートラスト株式会社
OpenSSL Project
Apache Software Foundation
レッドハット		 - OpenSSL の zlib_stateful_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1678 2010-03-12 14:43 2008-07-10 Show GitHub Exploit DB Packet Storm
255549 5.8 警告 OpenPNEプロジェクト - OpenPNE におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1040 2010-03-11 12:39 2010-03-5 Show GitHub Exploit DB Packet Storm
255550 10 危険 アドビシステムズ - Adobe Download Manager における任意のプログラムをダウンロードおよびインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2010-0189 2010-03-11 12:07 2010-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197591 5.3 MEDIUM
Network 		sage adxadmin Sage X3 Installation Pathname Disclosure. A specially crafted packet can elicit a response from the AdxDSrv.exe component that reveals the installation directory of the product. Note that this vulner… NVD-CWE-noinfo
CVE-2020-7387 2024-11-21 14:37 2021-07-23 Show GitHub Exploit DB Packet Storm
197592 9.8 CRITICAL
Network 		tobesoft xplatform When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation CWE-20
 Improper Input Validation  		CVE-2020-7866 2024-11-21 14:37 2021-07-20 Show GitHub Exploit DB Packet Storm
197593 7.8 HIGH
Local 		hmtalk daviewindy DaviewIndy v8.98.7.0 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed format file that is mishandled by DaviewIndy. Attackers could exploit this a… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-7872 2024-11-21 14:37 2021-07-12 Show GitHub Exploit DB Packet Storm
197594 7.2 HIGH
Network 		unidocs ezpdf_reader
ezpdf_editor 		A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This vulnerability exists due to insufficient validation of the parameter. CWE-787
 Out-of-bounds Write 		CVE-2020-7870 2024-11-21 14:37 2021-06-29 Show GitHub Exploit DB Packet Storm
197595 8.8 HIGH
Network 		mastersoft zook An improper input validation vulnerability of ZOOK software (remote administration tool) could allow a remote attacker to create arbitrary file. The ZOOK viewer has the "Tight file CMD" function to c… CWE-20
 Improper Input Validation  		CVE-2020-7869 2024-11-21 14:37 2021-06-29 Show GitHub Exploit DB Packet Storm
197596 9.8 CRITICAL
Network 		helpu helpu A remote code execution vulnerability exists in helpUS(remote administration tool) due to improper validation of parameter of ShellExecutionExA function used for login. NVD-CWE-Other
CVE-2020-7868 2024-11-21 14:37 2021-06-29 Show GitHub Exploit DB Packet Storm
197597 9.8 CRITICAL
Network 		cnesty helpcom A vulnerability of Helpcom could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insufficient validation of the parameter. This issue affects: Cnesty … CWE-20
 Improper Input Validation  		CVE-2020-7871 2024-11-21 14:37 2021-06-29 Show GitHub Exploit DB Packet Storm
197598 8.8 HIGH
Network 		helpu helpuviewer
helpuserver
helpuftclient
helpuftserver 		A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santizatio… CWE-20
 Improper Input Validation  		CVE-2020-7862 2024-11-21 14:37 2021-06-24 Show GitHub Exploit DB Packet Storm
197599 9.8 CRITICAL
Network 		dext5 dext5_editor Parameter manipulation can bypass authentication to cause file upload and execution. This will execute the remote code. This issue affects: Raonwiz DEXT5Editor versions prior to 3.5.1405747.1100.03. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-7864 2024-11-21 14:37 2021-06-16 Show GitHub Exploit DB Packet Storm
197600 7.8 HIGH
Local 		unegg_project unegg UnEGG v0.5 and eariler versions have a Integer overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by UnEGG. Attackers could exploit this and arbitrary … CWE-190
 Integer Overflow or Wraparound 		CVE-2020-7860 2024-11-21 14:37 2021-06-12 Show GitHub Exploit DB Packet Storm