Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256831	4.3	警告	サン・マイクロシステムズ Pidgin レッドハット	-	Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0420	2010-05-14 18:38	2010-02-18	Show	GitHub Exploit DB Packet Storm

256832	7.5	危険	Carnegie Mellon University (Project Cyrus) アップルサイバートラスト株式会社サン・マイクロシステムズオラクルレッドハット	-	Cyrus SASL ライブラリにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0688	2010-05-14 18:37	2009-05-15	Show	GitHub Exploit DB Packet Storm

256833	7.5	危険	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0587	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

256834	5.8	警告	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0582	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

256835	1.2	注意	日本電気サイバートラスト株式会社サン・マイクロシステムズターボリナックス OpenSSL Project レッドハット	-	RSA key reconstruction vulnerability	-	CVE-2007-3108	2010-05-14 18:37	2007-08-16	Show	GitHub Exploit DB Packet Storm

256836	5	警告	ヒューレット・パッカードサイバートラスト株式会社 OpenSSL Project ターボリナックスレッドハット	-	OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-4355	2010-05-13 17:21	2010-01-13	Show	GitHub Exploit DB Packet Storm

256837	9.3	危険	日立	-	XMAP3 における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-13 15:14	2010-04-12	Show	GitHub Exploit DB Packet Storm

256838	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0863	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

256839	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0864	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

256840	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0862	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208131	7.2	HIGH Network	openmage	openmage	OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, an administrator with permission to import/export data and to edit cms pages was able to inje…	CWE-22 CWE-434 Path Traversal Unrestricted Upload of File with Dangerous Type	CVE-2020-26295	2024-11-21 14:19	2021-01-21	Show	GitHub Exploit DB Packet Storm

208132	7.2	HIGH Network	openmage	openmage	OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.5, there is a vulnerability which enables remote code execution. In affected versions an adminis…	-	CVE-2020-26285	2024-11-21 14:19	2021-01-21	Show	GitHub Exploit DB Packet Storm

208133	7.2	HIGH Network	openmage	openmage	OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.6, there is a vulnerability which enables remote code execution. In affected versions an adminis…	-	CVE-2020-26252	2024-11-21 14:19	2021-01-21	Show	GitHub Exploit DB Packet Storm

208134	8.0	HIGH Adjacent	weave	weave	Weave Net is open source software which creates a virtual network that connects Docker containers across multiple hosts and enables their automatic discovery. Weave Net before version 2.8.0 has a vul…	-	CVE-2020-26278	2024-11-21 14:19	2021-01-21	Show	GitHub Exploit DB Packet Storm

208135	6.5	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting from 12.4. The regex used for package names is written in a way that makes execution time have quadratic growth based on the len…	NVD-CWE-noinfo	CVE-2020-26414	2024-11-21 14:19	2021-01-16	Show	GitHub Exploit DB Packet Storm

208136	7.2	HIGH Network	coturn_project fedoraproject	coturn fedora	Coturn is free open source implementation of TURN and STUN Server. Coturn before version 4.5.2 by default does not allow peers to connect and relay packets to loopback addresses in the range of `127.…	-	CVE-2020-26262	2024-11-21 14:19	2021-01-14	Show	GitHub Exploit DB Packet Storm

208137	7.8	HIGH Local	safervpn	safervpn	SaferVPN for Windows Ver 5.0.3.3 through 5.0.4.15 could allow local privilege escalation from low privileged users to SYSTEM via a crafted openssl configuration file. This issue is similar to CVE-201…	CWE-427 Uncontrolled Search Path Element	CVE-2020-26050	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208138	5.4	MEDIUM Network	redcarpet_project debian	redcarpet debian_linux	Redcarpet is a Ruby library for Markdown processing. In Redcarpet before version 3.5.1, there is an injection vulnerability which can enable a cross-site scripting attack. In affected versions no HTM…	-	CVE-2020-26298	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208139	8.8	HIGH Network	smartbear	collaborator	In SmartBear Collaborator Server through 13.3.13302, use of the Google Web Toolkit (GWT) API introduces a post-authentication Java deserialization vulnerability. The application's UpdateMemento class…	CWE-502 Deserialization of Untrusted Data	CVE-2020-26118	2024-11-21 14:19	2021-01-12	Show	GitHub Exploit DB Packet Storm

208140	6.8	MEDIUM Physics	dell	inspiron_5675_firmware	Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. A local attacker with access to system memory may exploit this vulnerability by overwritin…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-26186	2024-11-21 14:19	2021-01-9	Show	GitHub Exploit DB Packet Storm