Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256131	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0246	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

256132	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0245	2010-02-22 12:13	2010-01-21	Show	GitHub Exploit DB Packet Storm

256133	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

256134	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

256135	10	危険	Rockwell Automation	-	Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性	CWE-noinfo 情報不足	CVE-2009-3739	2010-02-19 14:22	2010-01-21	Show	GitHub Exploit DB Packet Storm

256136	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer において任意のコードが実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0249	2010-02-19 14:21	2010-01-15	Show	GitHub Exploit DB Packet Storm

256137	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0227	2010-02-19 11:37	2008-01-10	Show	GitHub Exploit DB Packet Storm

256138	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0226	2010-02-19 11:32	2008-01-10	Show	GitHub Exploit DB Packet Storm

256139	7.5	危険	Linux レッドハット	-	Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性	-	CVE-2006-6304	2010-02-18 14:28	2006-12-14	Show	GitHub Exploit DB Packet Storm

256140	7.8	危険	Linux レッドハット	-	Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4272	2010-02-18 14:28	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198971	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling.	NVD-CWE-noinfo	CVE-2020-6833	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

198972	9.8	CRITICAL Network	dotcms	dotcms	dotCMS before 5.2.4 is vulnerable to directory traversal, leading to incorrect access control. It allows an attacker to read or execute files under $TOMCAT_HOME/webapps/ROOT/assets (which should be a…	CWE-22 CWE-434 Path Traversal Unrestricted Upload of File with Dangerous Type	CVE-2020-6754	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

198973	9.8	CRITICAL Network	automationdirect	c-more_ea9-rhi_firmware c-more_ea9-t6cl-r_firmware c-more_ea9-t6cl_firmware c-more_ea9-t7cl-r_firmware c-more_ea9-t7cl_firmware c-more_ea9-t8cl_firmware c-more_ea9-t10cl_firmware	It is possible to unmask credentials and other sensitive information on “unprotected” project files, which may allow an attacker to remotely access the C-More Touch Panels EA9 series: firmware versio…	CWE-522 Insufficiently Protected Credentials	CVE-2020-6969	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

198974	7.5	HIGH Network	opensuse	wicked leap	An ni_dhcp4_parse_response memory leak in openSUSE wicked 0.6.55 and earlier allows network attackers to cause a denial of service by sending DHCP4 packets without a message type option.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-7216	2024-11-21 14:36	2020-02-6	Show	GitHub Exploit DB Packet Storm

198975	7.8	HIGH Local	mariadb	mariadb	mysql_install_db in MariaDB 10.4.7 through 10.4.11 allows privilege escalation from the mysql user account to root because chown and chmod are performed unsafely, as demonstrated by a symlink attack …	CWE-59 Link Following	CVE-2020-7221	2024-11-21 14:36	2020-02-5	Show	GitHub Exploit DB Packet Storm

198976	7.5	HIGH Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7219	2024-11-21 14:36	2020-01-31	Show	GitHub Exploit DB Packet Storm

198977	7.5	HIGH Network	hashicorp	nomad	HashiCorp Nomad and Nonad Enterprise up to 0.10.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 0.10.3.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7218	2024-11-21 14:36	2020-01-31	Show	GitHub Exploit DB Packet Storm

198978	9.8	CRITICAL Network	openbsd debian fedoraproject canonical	opensmtpd debian_linux fedora ubuntu_linux	smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated …	CWE-78 CWE-755 OS Command Improper Handling of Exceptional Conditions	CVE-2020-7247	2024-11-21 14:36	2020-01-30	Show	GitHub Exploit DB Packet Storm

198979	7.5	HIGH Network	netty fedoraproject debian redhat	netty fedora debian_linux jboss_enterprise_application_platform jboss_enterprise_application_platform_text-only_advisories openshift_application_runtimes_text-only_advisories	Netty 4.1.43.Final allows HTTP Request Smuggling because it mishandles Transfer-Encoding whitespace (such as a [space]Transfer-Encoding:chunked line) and a later Content-Length header. This issue exi…	CWE-444 HTTP Request Smuggling	CVE-2020-7238	2024-11-21 14:36	2020-01-28	Show	GitHub Exploit DB Packet Storm

198980	6.5	MEDIUM Network	codesys	control_for_beaglebone control_for_empc-a\/imx6 control_for_iot2000 control_for_linux control_for_plcnext control_for_pfc100 control_for_pfc200 control_for_raspberry_pi contro…	CODESYS Control V3, Gateway V3, and HMI V3 before 3.5.15.30 allow uncontrolled memory allocation which can result in a remote denial of service condition.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-7052	2024-11-21 14:36	2020-01-25	Show	GitHub Exploit DB Packet Storm