Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255631 6.5 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性 CWE-Other
その他 		CVE-2009-4136 2010-06-7 16:48 2009-12-15 Show GitHub Exploit DB Packet Storm
255632 - - コンソナ - Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性 - - 2010-06-4 17:58 2010-05-13 Show GitHub Exploit DB Packet Storm
255633 7.5 危険 アップル
VMware
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性 CWE-DesignError
CVE-2009-1105 2010-06-4 15:54 2009-03-24 Show GitHub Exploit DB Packet Storm
255634 10 危険 日立 - Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-06-3 15:19 2010-05-12 Show GitHub Exploit DB Packet Storm
255635 10 危険 日立
CA Technologies		 - CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		- 2010-06-3 15:19 2010-03-18 Show GitHub Exploit DB Packet Storm
255636 6.4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4028 2010-06-3 14:57 2009-11-4 Show GitHub Exploit DB Packet Storm
255637 4 警告 富士通九州システムズ - e-Pares におけるセッション固定の脆弱性 CWE-Other
その他 		CVE-2010-2149 2010-06-2 15:05 2010-06-2 Show GitHub Exploit DB Packet Storm
255638 2.6 注意 富士通九州システムズ - e-Pares におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2151 2010-06-2 15:04 2010-06-2 Show GitHub Exploit DB Packet Storm
255639 4.3 警告 富士通九州システムズ - e-Pares におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2150 2010-06-2 15:02 2010-06-2 Show GitHub Exploit DB Packet Storm
255640 2.1 注意 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
CWE-noinfo
CVE-2010-1294 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211231 7.8 HIGH
Local 		pi-hole pi-hole An issue was discovered in Pi-Hole through 5.0. The local www-data user has sudo privileges to execute the pihole core script as root without a password, which could allow an attacker to obtain root … CWE-78
CWE-269
OS Command 
 Improper Privilege Management 		CVE-2020-14162 2024-11-21 14:02 2020-07-30 Show GitHub Exploit DB Packet Storm
211232 9.1 CRITICAL
Network 		abus secvest_hybrid_fumo50110_firmware The ABUS Secvest FUMO50110 hybrid module does not have any security mechanism that ensures confidentiality or integrity of RF packets that are exchanged with an alarm panel. This makes it easier to c… CWE-287
Improper Authentication 		CVE-2020-14158 2024-11-21 14:02 2020-07-30 Show GitHub Exploit DB Packet Storm
211233 6.7 MEDIUM
Local 		gnu
opensuse 		grub2
leap 		There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic ov… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-14309 2024-11-21 14:02 2020-07-30 Show GitHub Exploit DB Packet Storm
211234 6.4 MEDIUM
Local 		gnu
opensuse 		grub2
leap 		In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations … CWE-190
 Integer Overflow or Wraparound 		CVE-2020-14308 2024-11-21 14:02 2020-07-30 Show GitHub Exploit DB Packet Storm
211235 9.9 CRITICAL
Network 		kubevirt
redhat 		kubevirt
openshift_virtualization 		A flaw was found in kubevirt 0.29 and earlier. Virtual Machine Instances (VMIs) can be used to gain access to the host's filesystem. Successful exploitation allows an attacker to assume the privilege… NVD-CWE-noinfo
CVE-2020-14316 2024-11-21 14:02 2020-07-30 Show GitHub Exploit DB Packet Storm
211236 7.5 HIGH
Network 		shopware shopware In Shopware before 6.2.3, the database password is leaked to an unauthenticated user when a DriverException occurs and verbose error handling is enabled. CWE-209
Information Exposure Through an Error Message 		CVE-2020-13997 2024-11-21 14:02 2020-07-29 Show GitHub Exploit DB Packet Storm
211237 5.4 MEDIUM
Network 		shopware shopware In Shopware before 6.2.3, authenticated users are allowed to use the Mediabrowser fileupload feature to upload SVG images containing JavaScript. This leads to Persistent XSS. An uploaded image can be… CWE-79
Cross-site Scripting 		CVE-2020-13971 2024-11-21 14:02 2020-07-29 Show GitHub Exploit DB Packet Storm
211238 8.8 HIGH
Network 		shopware shopware Shopware before 6.2.3 is vulnerable to a Server-Side Request Forgery (SSRF) in its "Mediabrowser upload by URL" feature. This allows an authenticated user to send HTTP, HTTPS, FTP, and SFTP requests … CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-13970 2024-11-21 14:02 2020-07-29 Show GitHub Exploit DB Packet Storm
211239 9.8 CRITICAL
Network 		ruckuswireless unleashed_firmware emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to achieve command injection via a crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R31… CWE-77
Command Injection 		CVE-2020-13919 2024-11-21 14:02 2020-07-29 Show GitHub Exploit DB Packet Storm
211240 7.5 HIGH
Network 		ruckuswireless unleashed_firmware Incorrect access control in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to leak system information (that can be used for a jailbreak) via an unauthenticated cra… NVD-CWE-noinfo
CVE-2020-13918 2024-11-21 14:02 2020-07-29 Show GitHub Exploit DB Packet Storm