Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257451	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash に脆弱性	CWE-noinfo 情報不足	CVE-2010-2884	2010-12-21 15:57	2010-09-15	Show	GitHub Exploit DB Packet Storm

257452	6.9	警告	CVS レッドハット	-	CVS の rcs.c 内にある apply_rcs_change 関数における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2010-3846	2010-12-21 15:30	2010-11-5	Show	GitHub Exploit DB Packet Storm

257453	10	危険	RealFlex Technologies	-	RealFlex RealWin HMI サービスにバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4142	2010-12-21 15:25	2010-11-22	Show	GitHub Exploit DB Packet Storm

257454	4.3	警告	Webmin Project オラクル	-	Webmin および Usermin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4568	2010-12-21 15:14	2010-01-5	Show	GitHub Exploit DB Packet Storm

257455	6.8	警告	富士通	-	Interstage Application Server における許可されていない IP アドレスからのリクエストのアクセスを許可する脆弱性	CWE-noinfo 情報不足	-	2010-12-21 14:14	2010-11-19	Show	GitHub Exploit DB Packet Storm

257456	8.3	危険	日立	-	日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-12-21 14:06	2010-11-17	Show	GitHub Exploit DB Packet Storm

257457	4.3	警告	The PHP Group アップルサイバートラスト株式会社レッドハット	-	PHP の var_export 関数における、重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2531	2010-12-20 16:08	2010-07-22	Show	GitHub Exploit DB Packet Storm

257458	4.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0435	2010-12-20 16:01	2010-08-19	Show	GitHub Exploit DB Packet Storm

257459	5	警告	レッドハット Pidgin オラクル	-	Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1624	2010-12-20 16:00	2010-05-12	Show	GitHub Exploit DB Packet Storm

257460	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社富士通ヒューレット・パッカードターボリナックス日立	-	Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6203	2010-12-20 15:38	2007-12-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210631	9.8	CRITICAL Network	online_library_management_system_project	online_library_management_system	An Arbitrary File Upload in the Upload Image component in SourceCodester Online Library Management System 1.0 allows the user to conduct remote code execution via admin/borrower/index.php?view=add be…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28130	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210632	6.1	MEDIUM Network	adrianmercurio	gym_management_system	Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields…	CWE-79 Cross-site Scripting	CVE-2020-28129	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210633	8.8	HIGH Network	phpgurukul	tourism_management_system	An Arbitrary File Upload is discovered in SourceCodester Tourism Management System 1.0 allows the user to conduct remote code execution via admin/create-package.php vulnerable page.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28136	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210634	9.8	CRITICAL Network	simple_grocery_store_sales_and_inventory_sales_project	simple_grocery_store_sales_and_inventory_system	An issue was discovered in SourceCodester Simple Grocery Store Sales And Inventory System 1.0. There was authentication bypass in web login functionality allows an attacker to gain client privileges …	CWE-89 SQL Injection	CVE-2020-28133	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210635	9.8	CRITICAL Network	online_clothing_store_project	online_clothing_store	SourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-28140	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210636	6.1	MEDIUM Network	online_clothing_store_project	online_clothing_store	SourceCodester Online Clothing Store 1.0 is affected by a cross-site scripting (XSS) vulnerability via a Offer Detail field in offer.php.	CWE-79 Cross-site Scripting	CVE-2020-28139	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210637	9.8	CRITICAL Network	online_clothing_store_project	online_clothing_store	SourceCodester Online Clothing Store 1.0 is affected by a SQL Injection via the txtUserName parameter to login.php.	CWE-89 SQL Injection	CVE-2020-28138	2024-11-21 14:22	2020-11-18	Show	GitHub Exploit DB Packet Storm

210638	5.4	MEDIUM Network	nagios	nagios_xi	Nagios XI before 5.7.5 is vulnerable to XSS in Account Information (Email field).	CWE-79 Cross-site Scripting	CVE-2020-27991	2024-11-21 14:22	2020-11-17	Show	GitHub Exploit DB Packet Storm

210639	5.4	MEDIUM Network	nagios	nagios_xi	Nagios XI before 5.7.5 is vulnerable to XSS in the Deployment tool (add agent).	CWE-79 Cross-site Scripting	CVE-2020-27990	2024-11-21 14:22	2020-11-17	Show	GitHub Exploit DB Packet Storm

210640	5.4	MEDIUM Network	nagios	nagios_xi	Nagios XI before 5.7.5 is vulnerable to XSS in Dashboard Tools (Edit Dashboard).	CWE-79 Cross-site Scripting	CVE-2020-27989	2024-11-21 14:22	2020-11-17	Show	GitHub Exploit DB Packet Storm