Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256661 7.8 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0242 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256662 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0241 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256663 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0240 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256664 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0239 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256665 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-0017 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
256666 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0016 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
256667 5 警告 日立 - uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-02-26 11:36 2010-01-29 Show GitHub Exploit DB Packet Storm
256668 2.6 注意 tDiary開発プロジェクト - tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0726 2010-02-25 15:03 2010-02-25 Show GitHub Exploit DB Packet Storm
256669 4.3 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 CWE-Other
その他 		CVE-2003-1578 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
256670 2.6 注意 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2003-1577 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212031 5.3 MEDIUM
Network 		powerdns recursor In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced. CWE-863
 Incorrect Authorization 		CVE-2020-14196 2024-11-21 14:02 2020-07-2 Show GitHub Exploit DB Packet Storm
212032 9.8 CRITICAL
Network 		monstaftp monsta_ftp Monsta FTP 2.10.1 or below allows external control of paths used in filesystem operations. This allows attackers to read and write arbitrary local files, allowing an attacker to gain remote code exec… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2020-14057 2024-11-21 14:02 2020-07-2 Show GitHub Exploit DB Packet Storm
212033 9.8 CRITICAL
Network 		monstaftp monsta_ftp Monsta FTP 2.10.1 or below is prone to a server-side request forgery vulnerability due to insufficient restriction of the web fetch functionality. This allows attackers to read arbitrary local files … CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-14056 2024-11-21 14:02 2020-07-2 Show GitHub Exploit DB Packet Storm
212034 6.1 MEDIUM
Network 		monstaftp monsta_ftp Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding. CWE-79
Cross-site Scripting 		CVE-2020-14055 2024-11-21 14:02 2020-07-2 Show GitHub Exploit DB Packet Storm
212035 6.1 MEDIUM
Network 		atlassian jira
jira_software_data_center 		The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability CWE-79
Cross-site Scripting 		CVE-2020-14169 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
212036 5.9 MEDIUM
Network 		atlassian jira
jira_software_data_center
jira_server
jira_data_center 		The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails… NVD-CWE-noinfo
CVE-2020-14168 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
212037 7.5 HIGH
Network 		atlassian jira
jira_software_data_center
jira_server
jira_data_center 		The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impac… NVD-CWE-noinfo
CVE-2020-14167 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
212038 4.8 MEDIUM
Network 		atlassian jira_service_desk The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or … CWE-79
Cross-site Scripting 		CVE-2020-14166 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
212039 5.3 MEDIUM
Network 		atlassian jira
jira_software_data_center 		The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper au… NVD-CWE-noinfo
CVE-2020-14165 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm
212040 6.1 MEDIUM
Network 		atlassian jira
jira_software_data_center 		The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by… CWE-79
Cross-site Scripting 		CVE-2020-14164 2024-11-21 14:02 2020-07-1 Show GitHub Exploit DB Packet Storm