Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256161 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Excel ファイルにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0821 2010-07-2 16:23 2010-06-8 Show GitHub Exploit DB Packet Storm
256162 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0819 2010-07-1 16:21 2010-06-8 Show GitHub Exploit DB Packet Storm
256163 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1255 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256164 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0485 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256165 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0484 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256166 4.3 警告 マイクロソフト - Microsoft SharePoint Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0817 2010-07-1 16:02 2010-04-29 Show GitHub Exploit DB Packet Storm
256167 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Data Analyzer ActiveX コントロール における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0252 2010-07-1 16:02 2010-02-9 Show GitHub Exploit DB Packet Storm
256168 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0255 2010-07-1 16:01 2010-02-3 Show GitHub Exploit DB Packet Storm
256169 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1262 2010-06-30 18:53 2010-06-8 Show GitHub Exploit DB Packet Storm
256170 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1259 2010-06-30 18:53 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212701 5.5 MEDIUM
Local 		pulsesecure
ivanti 		pulse_connect_secure
connect_secure
pulse_policy_secure
policy_secure 		An issue was discovered in Pulse Policy Secure (PPS) and Pulse Connect Secure (PCS) Virtual Appliance before 9.1R8. By manipulating a certain kernel boot parameter, it can be tricked into dropping in… NVD-CWE-noinfo
CVE-2020-12880 2024-11-21 14:00 2020-07-28 Show GitHub Exploit DB Packet Storm
212702 9.8 CRITICAL
Network 		fortinet fortios An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0.9 and below may result in a user being able to log in successfully without being prompted for the second fact… CWE-287
CWE-178
Improper Authentication
 Improper Handling of Case Sensitivity 		CVE-2020-12812 2024-11-21 14:00 2020-07-25 Show GitHub Exploit DB Packet Storm
212703 6.7 MEDIUM
Local 		dlink dsl-7740c_firmware D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command. CWE-78
OS Command  		CVE-2020-12774 2024-11-21 14:00 2020-07-22 Show GitHub Exploit DB Packet Storm
212704 8.8 HIGH
Network 		seczetta neprofile A remote code execution vulnerability was identified in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can invoke code execution upon uploading a carefully crafted JPEG file as part of t… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-12854 2024-11-21 14:00 2020-07-16 Show GitHub Exploit DB Packet Storm
212705 9.8 CRITICAL
Network 		inetsoftware i-net_clear_reports XXE injection can occur in i-net Clear Reports 2019 19.0.287 (Designer), as used in i-net HelpDesk and other products, when XML input containing a reference to an external entity is processed by a we… CWE-611
XXE 		CVE-2020-12684 2024-11-21 14:00 2020-07-16 Show GitHub Exploit DB Packet Storm
212706 4.6 MEDIUM
Physics 		yubico libykpiv
piv_tool_manager
yubikey_smart_card_minidriver 		An issue was discovered in Yubico libykpiv before 2.1.0. An attacker can trigger an incorrect free() in the ykpiv_util_generate_key() function in lib/util.c through incorrect error handling code. Thi… CWE-763
 Release of Invalid Pointer or Reference 		CVE-2020-13132 2024-11-21 14:00 2020-07-10 Show GitHub Exploit DB Packet Storm
212707 4.3 MEDIUM
Physics 		yubico libykpiv
piv_tool_manager
yubikey_smart_card_minidriver 		An issue was discovered in Yubico libykpiv before 2.1.0. lib/util.c in this library (which is included in yubico-piv-tool) does not properly check embedded length fields during device communication. … CWE-125
Out-of-bounds Read 		CVE-2020-13131 2024-11-21 14:00 2020-07-10 Show GitHub Exploit DB Packet Storm
212708 9.8 CRITICAL
Network 		protocol gossipsub Gossipsub 1.0 does not properly resist invalid message spam, such as an eclipse attack or a sybil attack. NVD-CWE-noinfo
CVE-2020-12821 2024-11-21 14:00 2020-07-8 Show GitHub Exploit DB Packet Storm
212709 7.2 HIGH
Network 		code42 code42 Code42 environments with on-premises server versions 7.0.4 and earlier allow for possible remote code execution. When an administrator creates a local (non-SSO) user via a Code42-generated email, the… CWE-74
Injection 		CVE-2020-12736 2024-11-21 14:00 2020-07-8 Show GitHub Exploit DB Packet Storm
212710 8.8 HIGH
Network 		obdev little_snitch Little Snitch version 4.5.1 and older changed ownership of a directory path controlled by the user. This allowed the user to escalate to root by linking the path to a directory containing code execut… CWE-59
Link Following 		CVE-2020-13095 2024-11-21 14:00 2020-07-1 Show GitHub Exploit DB Packet Storm