Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255621	5	警告	日立	-	TP1/Message Control におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-06-14 16:23	2010-05-17	Show	GitHub Exploit DB Packet Storm

255622	10	危険	日立 CA Technologies	-	CA XOsoft におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1223	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

255623	5	警告	日立 CA Technologies	-	CA XOsoft における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-1222	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

255624	5	警告	日立 CA Technologies	-	CA XOsoft におけるユーザ名を列挙される脆弱性	CWE-287 不適切な認証	CVE-2010-1221	2010-06-14 16:23	2010-04-6	Show	GitHub Exploit DB Packet Storm

255625	6.8	警告	フェンリル株式会社	-	ActiveGeckoBrowser における複数の脆弱性	CWE-Other その他	CVE-2010-2420	2010-06-14 12:01	2010-06-14	Show	GitHub Exploit DB Packet Storm

255626	6.8	警告	サン・マイクロシステムズ GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU tar および GNU cpio の rmt_read__ 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0624	2010-06-11 18:45	2010-03-15	Show	GitHub Exploit DB Packet Storm

255627	3.5	注意	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0733	2010-06-9 16:54	2010-03-19	Show	GitHub Exploit DB Packet Storm

255628	6.5	警告	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL の bitsubstr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0442	2010-06-9 16:54	2010-02-2	Show	GitHub Exploit DB Packet Storm

255629	6.8	警告	アップル	-	Java の window drawing 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0539	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

255630	6.8	警告	アップル	-	Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0538	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221401	7.8	HIGH Local	atlassian	confluence confluence_server	The usage of Tomcat in Confluence on the Microsoft Windows operating system before version 7.0.5, and from version 7.1.0 before version 7.1.1 allows local system attackers who have permission to writ…	CWE-427 Uncontrolled Search Path Element	CVE-2019-20406	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221402	4.3	MEDIUM Network	atlassian	jira_server jira_data_center	The JMX monitoring flag in Atlassian Jira Server and Data Center before version 8.6.0 allows remote attackers to turn the JMX monitoring flag off or on via a Cross-site request forgery (CSRF) vulnera…	CWE-352 Origin Validation Error	CVE-2019-20405	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221403	4.3	MEDIUM Network	atlassian	jira_server jira_data_center	The API in Atlassian Jira Server and Data Center before version 8.6.0 allows authenticated remote attackers to determine project titles they do not have access to via an improper authorization vulner…	NVD-CWE-noinfo	CVE-2019-20404	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221404	5.3	MEDIUM Network	atlassian	jira_server jira_data_center	The API in Atlassian Jira Server and Data Center before version 8.6.0 allows remote attackers to determine if a Jira project key exists or not via an information disclosure vulnerability.	NVD-CWE-noinfo	CVE-2019-20403	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221405	4.9	MEDIUM Network	atlassian	jira jira_software_data_center	Support zip files in Atlassian Jira Server and Data Center before version 8.6.0 could be downloaded by a System Administrator user without requiring the user to re-enter their password via an imprope…	NVD-CWE-noinfo	CVE-2019-20402	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221406	6.5	MEDIUM Network	atlassian	jira_server	Various installation setup resources in Jira before version 8.5.2 allow remote attackers to configure a Jira instance, which has not yet finished being installed, via Cross-site request forgery (CSRF…	CWE-352 Origin Validation Error	CVE-2019-20401	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221407	7.8	HIGH Local	atlassian	jira_server	The usage of Tomcat in Jira before version 8.5.2 allows local attackers with permission to write a dll file to a directory in the global path environmental variable can inject code into via a DLL hij…	CWE-427 Uncontrolled Search Path Element	CVE-2019-20400	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221408	4.3	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0 before version 8.5.4, and 8.6.0 before version 8.6.1 allows remote attackers to make comments on a ticke…	CWE-276 Incorrect Default Permissions	CVE-2019-20106	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221409	7.5	HIGH Network	atlassian	crowd	The OpenID client application in Atlassian Crowd before version 3.6.2, and from version 3.7.0 before 3.7.1 allows remote attackers to perform a Denial of Service attack via an XML Entity Expansion vu…	CWE-776 XML Entity Expansion	CVE-2019-20104	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

221410	9.8	CRITICAL Network	jobberbase	jobberbase	Jobberbase 2.0 has SQL injection via the PATH_INFO to the jobs-in endpoint.	CWE-89 SQL Injection	CVE-2019-20447	2024-11-21 13:38	2020-02-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed