Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257571 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0260 2010-03-19 10:28 2010-03-9 Show GitHub Exploit DB Packet Storm
257572 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0258 2010-03-19 10:27 2010-03-9 Show GitHub Exploit DB Packet Storm
257573 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0264 2010-03-19 10:27 2010-03-9 Show GitHub Exploit DB Packet Storm
257574 9.3 危険 マイクロソフト - Microsoft Office Excel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0257 2010-03-19 10:27 2010-03-9 Show GitHub Exploit DB Packet Storm
257575 9.3 危険 マイクロソフト - Microsoft Windows Movie Maker および Microsoft Producer におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0265 2010-03-19 10:27 2010-03-9 Show GitHub Exploit DB Packet Storm
257576 8.5 危険 Samba Project - Samba の smbd におけるファイルパーミッションを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0728 2010-03-18 12:09 2010-03-10 Show GitHub Exploit DB Packet Storm
257577 7.2 危険 IBM - IBM AIX および VIOS の qosmod におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0960 2010-03-18 12:09 2010-03-5 Show GitHub Exploit DB Packet Storm
257578 7.2 危険 IBM - IBM AIX および VIOS の qoslist におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0961 2010-03-18 12:09 2010-03-5 Show GitHub Exploit DB Packet Storm
257579 9 危険 マイクロソフト - Microsoft Virtual PC の VMM におけるゲスト OS 内で任意のカーネルモードコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1542 2010-03-17 12:18 2009-07-14 Show GitHub Exploit DB Packet Storm
257580 6.8 警告 IBM - IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0921 2010-03-16 11:15 2010-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211321 9.8 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One… CWE-78
OS Command  		CVE-2020-24054 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
211322 7.5 HIGH
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		Moog EXO Series EXVF5C-2 and EXVP7C2-3 units have a hardcoded credentials vulnerability. This could cause a confidentiality issue when using the FTP, Telnet, or SSH protocols. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-24053 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
211323 9.1 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition… CWE-611
XXE 		CVE-2020-24052 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
211324 9.8 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that th… CWE-306
Missing Authentication for Critical Function 		CVE-2020-24051 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
211325 7.5 HIGH
Network 		hashicorp vault-ssh-helper HashiCorp vault-ssh-helper up to and including version 0.1.6 incorrectly accepted Vault-issued SSH OTPs for the subnet in which a host's network interface was located, rather than the specific IP add… CWE-20
 Improper Input Validation  		CVE-2020-24359 2024-11-21 14:14 2020-08-21 Show GitHub Exploit DB Packet Storm
211326 9.8 CRITICAL
Network 		student_management_system_project student_management_system Kabir Alhasan Student Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". CWE-89
SQL Injection 		CVE-2020-23935 2024-11-21 14:14 2020-08-21 Show GitHub Exploit DB Packet Storm
211327 9.8 CRITICAL
Network 		phpgurukul vehicle_parking_management_system PHPGurukul Vehicle Parking Management System 1.0 is vulnerable to Authentication Bypass via "Username: admin'# && Password: (Write Something)". CWE-89
SQL Injection 		CVE-2020-23936 2024-11-21 14:14 2020-08-20 Show GitHub Exploit DB Packet Storm
211328 7.5 HIGH
Network 		icinga
debian
suse 		icinga_web_2
debian_linux
package_hub 		Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability which allows an attacker to access arbitrary files that are readable by the process running Icinga Web … CWE-22
Path Traversal 		CVE-2020-24368 2024-11-21 14:14 2020-08-20 Show GitHub Exploit DB Packet Storm
211329 7.1 HIGH
Local 		linux
canonical
opensuse
oracle
starwindsoftware 		linux_kernel
ubuntu_linux
leap
sd-wan_edge
starwind_virtual_san 		In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka CID-22cf8419f131. This occurs be… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-24394 2024-11-21 14:14 2020-08-19 Show GitHub Exploit DB Packet Storm
211330 7.5 HIGH
Network 		gunet open_eclass_platform GUnet Open eClass Platform (aka openeclass) before 3.11 might allow remote attackers to read students' submitted assessments because it does not ensure that the web server blocks directory listings, … CWE-200
Information Exposure 		CVE-2020-24381 2024-11-21 14:14 2020-08-19 Show GitHub Exploit DB Packet Storm