Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256331 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Agile Engineering Data Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0871 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
256332 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Agile Engineering Data Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0865 2010-05-13 15:09 2010-04-13 Show GitHub Exploit DB Packet Storm
256333 5 警告 オラクル - Oracle E-Business Suite の Oracle HRMS (Self Service) コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0861 2010-05-13 15:09 2010-04-13 Show GitHub Exploit DB Packet Storm
256334 7.6 危険 マイクロソフト - Internet Explorer において VBScript および Windows Help を使用する際に任意のコードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0483 2010-05-12 15:20 2010-03-2 Show GitHub Exploit DB Packet Storm
256335 7.1 危険 マイクロソフト - Microsoft Windows の kernel における SMB 応答パケットの処理に関するサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3676 2010-05-12 15:20 2009-11-13 Show GitHub Exploit DB Packet Storm
256336 5.8 警告 オラクル - Oracle E-Business Suite の Oracle iStore コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0868 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
256337 6.4 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0859 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
256338 4.3 警告 オラクル - Oracle Collaboration Suite の User Interface コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0881 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
256339 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0855 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
256340 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0086 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209501 9.8 CRITICAL
Network 		phpok phpok Buffer overflow vulnerability in framework/init.php in qinggan phpok 5.1, allows attackers to execute arbitrary code. CWE-120
Classic Buffer Overflow 		CVE-2020-18440 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209502 9.1 CRITICAL
Network 		phpok phpok An issue was discoverered in in function edit_save_f in framework/admin/tpl_control.php in qinggan phpok 5.1, allows attackers to write arbitrary files or get a shell. NVD-CWE-noinfo
CVE-2020-18439 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209503 7.5 HIGH
Network 		phpok phpok Directory traversal vulnerability in qinggan phpok 5.1, allows attackers to disclose sensitive information, via the title parameter to admin.php. CWE-22
Path Traversal 		CVE-2020-18438 2024-11-21 14:08 2021-11-3 Show GitHub Exploit DB Packet Storm
209504 5.3 MEDIUM
Network 		liftoffsoftware gate_one An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by the origins list and connect to Gate One instances used by hosts not on the origins list. CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-19003 2024-11-21 14:08 2021-10-6 Show GitHub Exploit DB Packet Storm
209505 9.8 CRITICAL
Network 		atlassian floodlight Floodlight through 1.2 has poor input validation in checkFlow in StaticFlowEntryPusherResource.java because of unchecked prerequisites related to TCP or UDP ports, or group or table IDs. CWE-20
 Improper Input Validation  		CVE-2020-18685 2024-11-21 14:08 2021-09-30 Show GitHub Exploit DB Packet Storm
209506 9.8 CRITICAL
Network 		atlassian floodlight Floodlight through 1.2 has an integer overflow in checkFlow in StaticFlowEntryPusherResource.java via priority or port number. CWE-190
 Integer Overflow or Wraparound 		CVE-2020-18684 2024-11-21 14:08 2021-09-30 Show GitHub Exploit DB Packet Storm
209507 9.8 CRITICAL
Network 		atlassian floodlight Floodlight through 1.2 has poor input validation in checkFlow in StaticFlowEntryPusherResource.java because of undefined fields mishandling. CWE-20
 Improper Input Validation  		CVE-2020-18683 2024-11-21 14:08 2021-09-30 Show GitHub Exploit DB Packet Storm
209508 8.8 HIGH
Network 		laiketui laiketui Cross Site Request Forgery (CSRF) in LaikeTui v3 allows remote attackers to execute arbitrary code via the component '/index.php?module=member&action=add'. CWE-352
 Origin Validation Error 		CVE-2020-19159 2024-11-21 14:08 2021-09-15 Show GitHub Exploit DB Packet Storm
209509 5.4 MEDIUM
Network 		s-cms s-cms Cross Site Scripting (XSS) in S-CMS build 20191014 and earlier allows remote attackers to execute arbitrary code via the 'Site Title' parameter of the component '/data/admin/#/app/config/'. CWE-79
Cross-site Scripting 		CVE-2020-19158 2024-11-21 14:08 2021-09-15 Show GitHub Exploit DB Packet Storm
209510 6.1 MEDIUM
Network 		wenkucms_project wenkucms Cross Site Scripting (CSS) in Wenku CMS v3.4 allows remote attackers to execute arbitrary code via the 'Intro' parameter for the component '/index.php?m=ucenter&a=index'. CWE-79
Cross-site Scripting 		CVE-2020-19157 2024-11-21 14:08 2021-09-15 Show GitHub Exploit DB Packet Storm