Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256731 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256732 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256733 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256734 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0879 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
256735 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0878 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256736 5 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0877 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256737 4 警告 オラクル - 複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0880 2010-05-13 15:11 2010-04-13 Show GitHub Exploit DB Packet Storm
256738 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0857 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
256739 3.5 注意 オラクル - Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0858 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
256740 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0869 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223091 7.2 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There is SQL injection by admins via SearchAllChannels. CWE-89
SQL Injection 		CVE-2019-20842 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223092 8.8 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. CSRF can sometimes occur via a crafted web site for account takeover attacks. CWE-352
 Origin Validation Error 		CVE-2019-20841 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223093 7.5 HIGH
Network 		libvnc_project
canonical
debian
siemens
opensuse 		libvncserver
ubuntu_linux
debian_linux
simatic_itc1500_firmware
simatic_itc1500_pro_firmware
simatic_itc1900_firmware
simatic_itc1900_pro_firmware
simatic_itc2200_firmware
sim… 		An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode. CWE-787
 Out-of-bounds Write 		CVE-2019-20840 2024-11-21 13:39 2020-06-18 Show GitHub Exploit DB Packet Storm
223094 7.5 HIGH
Network 		libvnc_project
canonical
debian
siemens
opensuse 		libvncserver
ubuntu_linux
debian_linux
simatic_itc1500_firmware
simatic_itc1500_pro_firmware
simatic_itc1900_firmware
simatic_itc1900_pro_firmware
simatic_itc2200_firmware
sim… 		libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename. CWE-120
Classic Buffer Overflow 		CVE-2019-20839 2024-11-21 13:39 2020-06-18 Show GitHub Exploit DB Packet Storm
223095 7.5 HIGH
Network 		pcre
apple
splunk 		pcre
macos
universal_forwarder 		libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. CWE-125
Out-of-bounds Read 		CVE-2019-20838 2024-11-21 13:39 2020-06-16 Show GitHub Exploit DB Packet Storm
223096 7.5 HIGH
Network 		foxitsoftware phantompdf
reader 		An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It allows signature validation bypass via a modified file or a file with non-standard signatures. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2019-20837 2024-11-21 13:39 2020-06-5 Show GitHub Exploit DB Packet Storm
223097 7.5 HIGH
Network 		foxitsoftware phantompdf
reader 		An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has mishandling of cloud credentials, as demonstrated by Google Drive. CWE-200
Information Exposure 		CVE-2019-20836 2024-11-21 13:39 2020-06-5 Show GitHub Exploit DB Packet Storm
223098 4.3 MEDIUM
Network 		foxitsoftware phantompdf
reader 		An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has homograph mishandling. NVD-CWE-noinfo
CVE-2019-20835 2024-11-21 13:39 2020-06-5 Show GitHub Exploit DB Packet Storm
223099 7.5 HIGH
Network 		foxitsoftware phantompdf An issue was discovered in Foxit PhantomPDF before 8.3.10. It allows signature validation bypass via a modified file or a file with non-standard signatures. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2019-20834 2024-11-21 13:39 2020-06-5 Show GitHub Exploit DB Packet Storm
223100 7.5 HIGH
Network 		foxitsoftware phantompdf An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive. CWE-287
Improper Authentication 		CVE-2019-20833 2024-11-21 13:39 2020-06-5 Show GitHub Exploit DB Packet Storm