Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257131	7.5	危険	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0587	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

257132	5.8	警告	サン・マイクロシステムズ GNOME Project レッドハット	-	Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0582	2010-05-14 18:37	2009-03-14	Show	GitHub Exploit DB Packet Storm

257133	1.2	注意	日本電気サイバートラスト株式会社サン・マイクロシステムズターボリナックス OpenSSL Project レッドハット	-	RSA key reconstruction vulnerability	-	CVE-2007-3108	2010-05-14 18:37	2007-08-16	Show	GitHub Exploit DB Packet Storm

257134	5	警告	ヒューレット・パッカードサイバートラスト株式会社 OpenSSL Project ターボリナックスレッドハット	-	OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-4355	2010-05-13 17:21	2010-01-13	Show	GitHub Exploit DB Packet Storm

257135	9.3	危険	日立	-	XMAP3 における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-13 15:14	2010-04-12	Show	GitHub Exploit DB Packet Storm

257136	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0863	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

257137	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0864	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

257138	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0862	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

257139	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0875	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

257140	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0876	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208981	5.3	MEDIUM Network	filecloud	filecloud	CodeLathe FileCloud before 20.2.0.11915 allows username enumeration.	NVD-CWE-noinfo	CVE-2020-26524	2024-11-21 14:20	2020-10-2	Show	GitHub Exploit DB Packet Storm

208982	6.1	MEDIUM Network	froala	froala_editor	Froala Editor before 3.2.2 allows XSS via pasted content.	CWE-79 Cross-site Scripting	CVE-2020-26523	2024-11-21 14:20	2020-10-2	Show	GitHub Exploit DB Packet Storm

208983	-		-	-	Dotmesh is a git-like command-line interface for capturing, organizing and sharing application states. In versions 0.8.1 and prior, the unsafe handling of symbolic links in an unpacking routine may …	-	CVE-2020-26312	2024-11-21 14:19	2024-05-15	Show	GitHub Exploit DB Packet Storm

208984	9.8	CRITICAL Network	evenbalance	punkbuster	Directory Traversal vulnerability in Server functionalty in Even Balance Punkbuster version 1.902 before 1.905 allows remote attackers to execute arbitrary code.	CWE-22 Path Traversal	CVE-2020-26037	2024-11-21 14:19	2023-08-16	Show	GitHub Exploit DB Packet Storm

208985	5.3	MEDIUM Network	cisco	asyncos	A vulnerability in the zip decompression engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass content filters that are c…	NVD-CWE-noinfo	CVE-2020-26082	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208986	6.5	MEDIUM Network	cisco	catalyst_sd-wan_manager	A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct path traversal attacks and obtain read access to sensit…	CWE-22 Path Traversal	CVE-2020-26065	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208987	8.1	HIGH Network	cisco	catalyst_sd-wan_manager	A vulnerability in the web UI of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected system. The v…	CWE-611 XXE	CVE-2020-26064	2024-11-21 14:19	2023-08-5	Show	GitHub Exploit DB Packet Storm

208988	9.8	CRITICAL Network	gnuplot_project	gnuplot	gnuplot v5.5 was discovered to contain a buffer overflow via the function plotrequest().	CWE-120 Classic Buffer Overflow	CVE-2020-25969	2024-11-21 14:19	2023-07-6	Show	GitHub Exploit DB Packet Storm

208989	7.5	HIGH Network	is.js_project	is.js	is.js is a general-purpose check library. Versions 0.9.0 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service (ReDoS). is.js uses a regex copy…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2020-26302	2024-11-21 14:19	2022-12-23	Show	GitHub Exploit DB Packet Storm

208990	7.5	HIGH Network	dell oracle	bsafe_micro-edition-suite http_server security_service database weblogic_server_proxy_plug-in	Dell BSAFE Micro Edition Suite, versions prior to 4.5.1, contain a Buffer Over-Read Vulnerability.	CWE-125 Out-of-bounds Read	CVE-2020-26185	2024-11-21 14:19	2022-06-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed