Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255851 6.8 警告 マイクロソフト - Windows の Windows Service Isolation 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1886 2010-09-2 14:07 2010-08-10 Show GitHub Exploit DB Packet Storm
255852 6.8 警告 マイクロソフト - Windows のサービスのトレース機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2554 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
255853 6.8 警告 マイクロソフト - Windows のサービスのトレース機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2555 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
255854 6.8 警告 マイクロソフト - Windwos の TCP/IP スタックにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1893 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
255855 9.3 危険 マイクロソフト - Microsoft Office Excel および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2562 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
255856 9.3 危険 マイクロソフト - Microsoft Windows Movie Maker におけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2564 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
255857 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1896 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
255858 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1895 2010-09-2 14:04 2010-08-10 Show GitHub Exploit DB Packet Storm
255859 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1894 2010-09-2 14:04 2010-08-10 Show GitHub Exploit DB Packet Storm
255860 4.4 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1887 2010-09-2 14:04 2010-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211931 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The outbox functionality of the TXT File module can be used to delete all/most files in a folder. Because the product usually runs as N… NVD-CWE-noinfo
CVE-2020-14031 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211932 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. By leveraging a path traversal vulnerability in the Autoreply module's Script Name, an attacker may write to or overwrite arbitrary fil… CWE-22
Path Traversal 		CVE-2020-14028 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211933 5.3 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The database connection strings accept custom unsafe arguments, such as ENABLE_LOCAL_INFILE, that can be leveraged by attackers to enab… CWE-88
Argument Injection 		CVE-2020-14027 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211934 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the Export Of Contacts feature in Ozeki NG SMS Gateway through 4.17.6 via a value that is mishandled in a CSV export. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-14026 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211935 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple CSRF vulnerabilities. For example, an administrator, by following a link, can be tricked into making unwanted changes such as installing new modules o… CWE-352
 Origin Validation Error 		CVE-2020-14025 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211936 6.1 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple authenticated stored and/or reflected XSS vulnerabilities via the (1) Receiver or Recipient field in the Mailbox feature, (2) OZFORM_GROUPNAME field i… CWE-79
Cross-site Scripting 		CVE-2020-14024 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211937 4.9 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To SMS. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-14023 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211938 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway 4.17.1 through 4.17.6 does not check the file type when bulk importing new contacts ("Import Contacts" functionality) from a file. It is possible to upload an executable or .bat … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-14022 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211939 4.3 MEDIUM
Network 		atlassian jira_service_desk Affected versions of Atlassian Jira Service Desk Server and Data Center allow remote attackers authenticated as a non-administrator user to view Project Request-Types and Descriptions, via an Informa… NVD-CWE-noinfo
CVE-2020-14180 2024-11-21 14:02 2020-09-21 Show GitHub Exploit DB Packet Storm
211940 5.3 MEDIUM
Network 		atlassian jira_server
jira_data_center 		Affected versions of Atlassian Jira Server and Data Center allow remote, unauthenticated attackers to view custom field names and custom SLA names via an Information Disclosure vulnerability in the /… NVD-CWE-noinfo
CVE-2020-14179 2024-11-21 14:02 2020-09-21 Show GitHub Exploit DB Packet Storm