Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256731 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256732 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256733 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256734 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0879 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256735 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0878 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256736 5 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0877 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256737 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0880 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256738 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0857 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
256739 3.5 注意 オラクル - Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0858 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
256740 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0869 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
215461 3.3 LOW
Network 		freerdp
debian
canonical 		freerdp
debian_linux
ubuntu_linux 		In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in in update_read_bitmap_data that allows client memory to be read to an image buffer. The result displayed on screen as colour. - CVE-2020-11045 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215462 2.2 LOW
Network 		freerdp
canonical
debian 		freerdp
ubuntu_linux
debian_linux 		In FreeRDP greater than 1.2 and before 2.0.0, a double free in update_read_cache_bitmap_v3_order crashes the client application if corrupted data from a manipulated server is parsed. This has been pa… - CVE-2020-11044 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215463 5.9 MEDIUM
Network 		freerdp
debian
canonical 		freerdp
debian_linux
ubuntu_linux 		In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. It allows reading a attacker-defined amount of client memory (32bit unsigned -> 4GB) to an inter… - CVE-2020-11042 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215464 7.5 HIGH
Network 		wavlink wl-wn575a3_firmware
wl-wn579g3_firmware
wn531a6_firmware
wn535g3_firmware
wn530h4_firmware
wn57x93_firmware
wn572hg3_firmware
wn575a4_firmware
wn578a2_firmware
wn579g3_firm… 		An issue was discovered affecting a backup feature where a crafted POST request returns the current configuration of the device in cleartext, including the administrator password. No authentication i… CWE-306
Missing Authentication for Critical Function 		CVE-2020-10974 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215465 7.5 HIGH
Network 		wavlink wn530hg4_firmware
wn531g3_firmware
wn533a8_firmware
wn551k1_firmware 		An issue was discovered in Wavlink WN530HG4, Wavlink WN531G3, Wavlink WN533A8, and Wavlink WN551K1 affecting /cgi-bin/ExportAllSettings.sh where a crafted POST request returns the current configurati… CWE-306
Missing Authentication for Critical Function 		CVE-2020-10973 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215466 7.5 HIGH
Network 		wavlink wn530hg4_firmware
wn531g3_firmware
wn572hg3_firmware 		An issue was discovered where a page is exposed that has the current administrator password in cleartext in the source code of the page. No authentication is required in order to reach the page (a ce… CWE-306
CWE-522
Missing Authentication for Critical Function
 Insufficiently Protected Credentials 		CVE-2020-10972 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215467 8.8 HIGH
Network 		wavlink wl-wn575a3_firmware
wl-wn530hg4_firmware
wl-wn579g3_firmware 		An issue was discovered on Wavlink Jetstream devices where a crafted POST request can be sent to adm.cgi that will result in the execution of the supplied command if there is an active session at the… CWE-20
 Improper Input Validation  		CVE-2020-10971 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
215468 5.4 MEDIUM
Network 		glpi-project glpi In GLPI before version 9.4.6 there are multiple related stored XSS vulnerabilities. The package is vulnerable to Stored XSS in the comments of items in the Knowledge base. Adding a comment with conte… CWE-79
Cross-site Scripting 		CVE-2020-11036 2024-11-21 13:56 2020-05-6 Show GitHub Exploit DB Packet Storm
215469 9.3 CRITICAL
Network 		glpi-project
fedoraproject 		glpi
fedora 		In GLPI after version 0.83.3 and before version 9.4.6, the CSRF tokens are generated using an insecure algorithm. The implementation uses rand and uniqid and MD5 which does not provide secure values.… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-11035 2024-11-21 13:56 2020-05-6 Show GitHub Exploit DB Packet Storm
215470 6.1 MEDIUM
Network 		glpi-project glpi In GLPI before version 9.4.6, there is a vulnerability that allows bypassing the open redirect protection based which is based on a regexp. This is fixed in version 9.4.6. CWE-601
Open Redirect 		CVE-2020-11034 2024-11-21 13:56 2020-05-6 Show GitHub Exploit DB Packet Storm