Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257631 7.2 危険 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-0233 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257632 6.3 警告 マイクロソフト - Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0035 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257633 7.1 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-0021 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257634 10 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性 CWE-264
CWE-310
CVE-2010-0231 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
257635 7.8 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0022 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257636 9 危険 マイクロソフト - Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性 CWE-20
CWE-94
CVE-2010-0020 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257637 6.9 警告 マイクロソフト - Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0023 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257638 4 警告 マイクロソフト - Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0026 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
257639 9.3 危険 日本電気
アップル
富士通
古河電気工業
ヒューレット・パッカード
インターネットイニシアティブ
アラクサラネットワークス
日立		 - IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2476 2010-03-3 11:43 2008-10-3 Show GitHub Exploit DB Packet Storm
257640 9.3 危険 マイクロソフト - Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0034 2010-03-2 11:29 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222801 5.4 MEDIUM
Network 		cybozu garoon DOM-based cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 4.10.2 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2019-5975 2024-11-21 13:45 2019-09-13 Show GitHub Exploit DB Packet Storm
222802 6.5 MEDIUM
Network 		wondercms wondercms Directory traversal vulnerability in WonderCMS 2.6.0 and earlier allows remote attackers to delete arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2019-5956 2024-11-21 13:45 2019-09-13 Show GitHub Exploit DB Packet Storm
222803 5.3 MEDIUM
Network 		netapp oncommand_workflow_automation OnCommand Workflow Automation versions prior to 5.0 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-5503 2024-11-21 13:45 2019-09-11 Show GitHub Exploit DB Packet Storm
222804 7.2 HIGH
Network 		gitlab gitlab An authentication issue was discovered in GitLab that allowed a bypass of email verification. This was addressed in GitLab 12.1.2 and 12.0.4. CWE-287
Improper Authentication 		CVE-2019-5473 2024-11-21 13:45 2019-09-10 Show GitHub Exploit DB Packet Storm
222805 5.3 MEDIUM
Network 		senecajs seneca Seneca < 3.9.0 contains a vulnerability that could lead to exposing environment variables to unauthorized users. CWE-209
Information Exposure Through an Error Message 		CVE-2019-5483 2024-11-21 13:45 2019-09-10 Show GitHub Exploit DB Packet Storm
222806 5.3 MEDIUM
Network 		statichttpserver_project statichttpserver A path traversal vulnerability in <= v0.9.7 of statichttpserver npm module allows attackers to list files in arbitrary folders. CWE-22
Path Traversal 		CVE-2019-5480 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
222807 7.5 HIGH
Network 		larvit larvitbase An unintended require vulnerability in <v0.5.5 larvitbase-api may allow an attacker to load arbitrary non-production code (JavaScript file). CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2019-5479 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
222808 5.5 MEDIUM
Local 		xilinx zynq_ultrascale\+_mpsoc_firmware
zynq_ultrascale\+_rfsoc_firmware 		A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an adversary being able to modify the control fields of the boot image leading to an incorrect secure bo… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2019-5478 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
222809 8.8 HIGH
Network 		sonatype nexus_repository_manager The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability. CWE-78
OS Command  		CVE-2019-5475 2024-11-21 13:45 2019-09-4 Show GitHub Exploit DB Packet Storm
222810 7.5 HIGH
Network 		onkyo tx-nr686_firmware Directory traversal vulnerability on ONKYO TX-NR686 1030-5000-1040-0010 A/V Receiver devices allows remote attackers to read arbitrary files via a .. (dot dot) and %2f to the default URI. CWE-22
Path Traversal 		CVE-2019-6113 2024-11-21 13:45 2019-08-30 Show GitHub Exploit DB Packet Storm