Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256171 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
256172 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
256173 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
256174 6.4 警告 マイクロソフト - Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0812 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
256175 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0256 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
256176 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0254 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
256177 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2010-0025 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
256178 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0024 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
256179 9.3 危険 マイクロソフト - Microsoft Office Publisher におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0479 2010-05-11 15:14 2010-04-13 Show GitHub Exploit DB Packet Storm
256180 4.7 警告 マイクロソフト - Microsoft Windows の kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0810 2010-05-11 15:14 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213041 6.1 MEDIUM
Network 		gnu
debian
fedoraproject
canonical
opensuse 		mailman
debian_linux
fedora
ubuntu_linux
leap
backports_sle 		GNU Mailman 2.x before 2.1.30 uses the .obj extension for scrubbed application/octet-stream MIME parts. This behavior may contribute to XSS attacks against list-archive visitors, because an HTTP repl… CWE-79
Cross-site Scripting 		CVE-2020-12137 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213042 5.5 MEDIUM
Local 		whoopsie_project
mongodb 		whoopsie
c_driver 		bson before 0.8 incorrectly uses int rather than size_t for many variables, parameters, and return values. In particular, the bson_ensure_space() parameter bytesNeeded could have an integer overflow … CWE-190
 Integer Overflow or Wraparound 		CVE-2020-12135 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213043 9.8 CRITICAL
Network 		nanometrics titansma
centaur 		Nanometrics Centaur through 4.3.23 and TitanSMA through 4.2.20 mishandle access control for the syslog log. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2020-12134 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213044 6.1 MEDIUM
Network 		fifthplay s.a.m.i Fifthplay S.A.M.I before 2019.3_HP2 allows unauthenticated stored XSS via a POST request. CWE-79
Cross-site Scripting 		CVE-2020-12132 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213045 6.1 MEDIUM
Network 		app2pro airdisk_pro The AirDisk Pro app 5.5.3 for iOS allows XSS via the devicename parameter (shown next to the UI logo). CWE-79
Cross-site Scripting 		CVE-2020-12131 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213046 5.3 MEDIUM
Network 		postfix postfix A certain Postfix 2.10.1-7 package could allow an attacker to send an email from an arbitrary-looking sender via a homoglyph attack, as demonstrated by the similarity of \xce\xbf to the 'o' character… NVD-CWE-Other
CVE-2020-12063 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213047 6.1 MEDIUM
Network 		app2pro airdisk_pro The AirDisk Pro app 5.5.3 for iOS allows XSS via the deleteFile parameter of the Delete function. CWE-79
Cross-site Scripting 		CVE-2020-12130 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213048 6.1 MEDIUM
Network 		app2pro airdisk_pro The AirDisk Pro app 5.5.3 for iOS allows XSS via the createFolder parameter of the Create Folder function. CWE-79
Cross-site Scripting 		CVE-2020-12129 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213049 7.5 HIGH
Network 		file_transfer_ifamily_project file_transfer_ifamily DONG JOO CHO File Transfer iFamily 2.1 allows directory traversal related to the ./etc/ path. CWE-22
Path Traversal 		CVE-2020-12128 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm
213050 8.2 HIGH
Network 		binance tss-lib The keygen protocol implementation in Binance tss-lib before 1.2.0 allows attackers to generate crafted h1 and h2 parameters in order to compromise a signing round or obtain sensitive information fro… CWE-276
Incorrect Default Permissions  		CVE-2020-12118 2024-11-21 13:59 2020-04-24 Show GitHub Exploit DB Packet Storm