Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256841	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0875	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

256842	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0876	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

256843	4.3	警告	オラクル	-	Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0874	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

256844	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0879	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

256845	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0878	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

256846	5	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0877	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

256847	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0880	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

256848	3.5	注意	オラクル	-	Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0857	2010-05-13 15:10	2010-04-13	Show	GitHub Exploit DB Packet Storm

256849	3.5	注意	オラクル	-	Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0858	2010-05-13 15:10	2010-04-13	Show	GitHub Exploit DB Packet Storm

256850	4.3	警告	オラクル	-	Oracle E-Business Suite の Oracle Transportation Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0869	2010-05-13 15:10	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212541	9.8	CRITICAL Network	mitsubishielectric	qj71mes96_firmware qj71ws96_firmware q06ccpu-v_firmware q24dhccpu-v_firmware q24dhccpu-vg_firmware r12ccpu-v_firmware rd55up06-v_firmware rd55up12-v_firmware rj71gn11-t2_firmw…	Multiple Mitsubishi Electric products are vulnerable to impersonations of a legitimate device by a malicious actor, which may allow an attacker to remotely execute arbitrary commands.	-	CVE-2020-16226	2024-11-21 14:06	2020-10-6	Show	GitHub Exploit DB Packet Storm

212542	7.8	HIGH Local	fatek	winproladder	In PLC WinProladder Version 3.28 and prior, a stack-based buffer overflow vulnerability can be exploited when a valid user opens a specially crafted file, which may allow an attacker to remotely exec…	-	CVE-2020-16234	2024-11-21 14:06	2020-10-1	Show	GitHub Exploit DB Packet Storm

212543	7.2	HIGH Network	re-desk	re\	Re:Desk 2.3 has a blind authenticated SQL injection vulnerability in the SettingsController class, in the actionEmailTemplates() method. A malicious actor with access to an administrative account cou…	CWE-89 SQL Injection	CVE-2020-15849	2024-11-21 14:06	2020-10-1	Show	GitHub Exploit DB Packet Storm

212544	3.6	LOW Local	bitdefender	engines	An improper Input Validation vulnerability in the code handling file renaming and recovery in Bitdefender Engines allows an attacker to write an arbitrary file in a location hardcoded in a specially-…	CWE-20 Improper Input Validation	CVE-2020-15731	2024-11-21 14:06	2020-09-30	Show	GitHub Exploit DB Packet Storm

212545	7.3	HIGH Local	actfax	actfax	ActFax Version 7.10 Build 0335 (2020-05-25) is susceptible to a privilege escalation vulnerability due to insecure folder permissions on %PROGRAMFILES%\ActiveFax\Client\, %PROGRAMFILES%\ActiveFax\Ins…	CWE-276 Incorrect Default Permissions	CVE-2020-15843	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

212546	9.8	CRITICAL Network	nakivo	backup_\&_replication_transporter	Lack of access control in Nakivo Backup & Replication Transporter version 9.4.0.r43656 allows remote users to access unencrypted backup repositories and the Nakivo Controller configuration via a netw…	CWE-306 Missing Authentication for Critical Function	CVE-2020-15851	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

212547	7.8	HIGH Local	nakivo	backup_\&_replication_director	Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because …	CWE-276 Incorrect Default Permissions	CVE-2020-15850	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

212548	6.1	MEDIUM Network	joplin_project	joplin	An XSS issue in Joplin desktop 1.0.190 to 1.0.245 allows arbitrary code execution via a malicious HTML embed tag.	CWE-79 Cross-site Scripting	CVE-2020-15930	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

212549	5.3	MEDIUM Network	liferay	dxp liferay_portal	In Liferay Portal before 7.3.1, Liferay Portal 6.2 EE, and Liferay DXP 7.2, DXP 7.1 and DXP 7.0, the property 'portlet.resource.id.banned.paths.regexp' can be bypassed with doubled encoded URLs.	NVD-CWE-noinfo	CVE-2020-15840	2024-11-21 14:06	2020-09-25	Show	GitHub Exploit DB Packet Storm

212550	7.2	HIGH Network	telmat	accesslog_firmware educ\@box_firmware git\@box_firmware	The ping page of the administration panel in Telmat AccessLog <= 6.0 (TAL_20180415) allows an attacker to get root shell access via authenticated code injection over the network.	CWE-78 OS Command	CVE-2020-16148	2024-11-21 14:06	2020-09-24	Show	GitHub Exploit DB Packet Storm