Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257581	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

257582	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

257583	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257584	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257585	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257586	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257587	6	警告	オラクル	-	Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0076	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

257588	9	危険	オラクル	-	Oracle Database の Oracle OLAP コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3415	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

257589	10	危険	オラクル	-	Oracle Database の Listener コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0071	2010-02-12 12:20	2010-01-12	Show	GitHub Exploit DB Packet Storm

257590	5	警告	Pidgin Adium レッドハット	-	Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0013	2010-02-10 13:39	2010-01-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201581	6.1	MEDIUM Network	horde	groupware	The image view functionality in Horde Groupware Webmail Edition before 5.2.22 is affected by a stored Cross-Site Scripting (XSS) vulnerability via an SVG image upload containing a JavaScript payload.…	CWE-79 Cross-site Scripting	CVE-2020-8035	2024-11-21 14:38	2020-05-19	Show	GitHub Exploit DB Packet Storm

201582	9.8	CRITICAL Network	logkitty_project	logkitty	Lack of output sanitization allowed an attack to execute arbitrary shell commands via the logkitty npm package before version 0.7.1.	CWE-94 Code Injection	CVE-2020-8149	2024-11-21 14:38	2020-05-16	Show	GitHub Exploit DB Packet Storm

201583	7.5	HIGH Network	bitdefender	engines	Improper Input Validation vulnerability in the cevakrnl.rv0 module as used in the Bitdefender Engines allows an attacker to trigger a denial of service while scanning a specially-crafted sample. This…	CWE-20 Improper Input Validation	CVE-2020-8100	2024-11-21 14:38	2020-05-15	Show	GitHub Exploit DB Packet Storm

201584	6.1	MEDIUM Network	opensuse debian	open_build_service debian_linux	A Improper Neutralization of Input During Web Page Generation vulnerability in open-build-service allows remote attackers to store arbitrary JS code to cause XSS. This issue affects: openSUSE open-bu…	-	CVE-2020-8020	2024-11-21 14:38	2020-05-14	Show	GitHub Exploit DB Packet Storm

201585	9.8	CRITICAL Network	rubyonrails debian	actionpack_page-caching debian_linux	There is a vulnerability in actionpack_page-caching gem < v1.2.1 that allows an attacker to write arbitrary files to a web server, potentially resulting in remote code execution if the attacker can w…	CWE-22 Path Traversal	CVE-2020-8159	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201586	7.0	HIGH Network	nextcloud fedoraproject	mail fedora	A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.	CWE-295 Improper Certificate Validation	CVE-2020-8156	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201587	5.4	MEDIUM Network	nextcloud	nextcloud_server	An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross-site scripting vulnerability when opening a malicious PDF.	CWE-79 Cross-site Scripting	CVE-2020-8155	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201588	7.7	HIGH Network	nextcloud	nextcloud_server	An Insecure direct object reference vulnerability in Nextcloud Server 18.0.2 allowed an attacker to remote wipe devices of other users when sending a malicious request directly to the endpoint.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-8154	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201589	8.1	HIGH Network	nextcloud fedoraproject	group_folders fedora	Improper access control in Groupfolders app 4.0.3 allowed to delete hidden directories when when renaming an accessible item to the same name.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-8153	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm

201590	7.5	HIGH Network	rubyonrails fedoraproject	active_resource fedora	There is a possible information disclosure issue in Active Resource <v5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak inf…	CWE-863 Incorrect Authorization	CVE-2020-8151	2024-11-21 14:38	2020-05-12	Show	GitHub Exploit DB Packet Storm