Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257771	10	危険	リアルネットワークス	-	RealNetworks RealPlayer の RichFX コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3748	2010-11-10 15:32	2010-10-15	Show	GitHub Exploit DB Packet Storm

257772	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3751	2010-11-10 15:32	2010-10-15	Show	GitHub Exploit DB Packet Storm

257773	10	危険	SAP	-	SAP BusinessObjects Axis2 におけるデフォルトパスワードの問題	CWE-255 証明書・パスワード管理	CVE-2010-0219	2010-11-10 15:32	2010-10-14	Show	GitHub Exploit DB Packet Storm

257774	4	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-0781	2010-11-9 15:30	2010-09-13	Show	GitHub Exploit DB Packet Storm

257775	10	危険	IBM	-	IBM WebSphere Application Server における脆弱性	CWE-20 不適切な入力確認	CVE-2010-3186	2010-11-9 15:30	2010-08-26	Show	GitHub Exploit DB Packet Storm

257776	7.5	危険	IBM Apache Software Foundation	-	Apache Axis2 における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2010-1632	2010-11-9 15:29	2010-06-22	Show	GitHub Exploit DB Packet Storm

257777	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における QCP ファイルの処理に関するヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2578	2010-11-9 14:51	2010-10-15	Show	GitHub Exploit DB Packet Storm

257778	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の rjrmrpln.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3750	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

257779	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3747	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

257780	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2998	2010-11-9 14:50	2010-10-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219441	9.8	CRITICAL Network	search_meter_project	search_meter	The Search Meter plugin through 2.13.2 for WordPress allows user input introduced in the search bar to be any formula. The attacker could achieve remote code execution via CSV injection if a wp-admin…	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2020-11548	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219442	5.3	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor before 20.1.57.1745 allows remote unauthenticated attackers to obtain information about probes running or the server itself (CPU usage, memory, Windows version, and internal stat…	CWE-306 Missing Authentication for Critical Function	CVE-2020-11547	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219443	9.8	CRITICAL Network	3xlogic	infinias_eidc32_firmware infinias_eidc32_web	3xLOGIC Infinias eIDC32 2.213 devices with Web 1.107 allow Authentication Bypass via CMD.HTM?CMD= because authentication depends on the client side's interpretation of the <KEY>MYKEY</KEY> substring.	CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information	CVE-2020-11542	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219444	5.5	MEDIUM Local	ivanti	workspace_control	Ivanti Workspace Control before 10.4.30.0, when SCCM integration is enabled, allows local users to obtain sensitive information (keying material).	NVD-CWE-noinfo	CVE-2020-11533	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219445	6.1	MEDIUM Network	getgrav	grav	Common/Grav.php in Grav before 1.7 has an Open Redirect. This is partially fixed in 1.6.23 and still present in 1.6.x.	CWE-601 Open Redirect	CVE-2020-11529	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219446	7.5	HIGH Network	bit2spr_project	bit2spr	bit2spr 1992-06-07 has a stack-based buffer overflow (129-byte write) in conv_bitmap in bit2spr.c via a long line in a bitmap file.	CWE-787 Out-of-bounds Write	CVE-2020-11528	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219447	7.5	HIGH Network	zohocorp	manageengine_opmanager	In Zoho ManageEngine OpManager before 12.4.181, an unauthenticated remote attacker can send a specially crafted URI to read arbitrary files.	NVD-CWE-noinfo	CVE-2020-11527	2024-11-21 13:58	2020-04-5	Show	GitHub Exploit DB Packet Storm

219448	9.8	CRITICAL Network	zohocorp	manageengine_adselfservice_plus	Zoho ManageEngine ADSelfService Plus before 5815 allows unauthenticated remote code execution.	NVD-CWE-noinfo	CVE-2020-11518	2024-11-21 13:58	2020-04-4	Show	GitHub Exploit DB Packet Storm

219449	7.4	HIGH Network	gnu debian opensuse canonical fedoraproject	gnutls debian_linux leap ubuntu_linux fedora	GnuTLS 3.6.x before 3.6.13 uses incorrect cryptography for DTLS. The earliest affected version is 3.6.3 (2018-07-16) because of an error in a 2017-10-06 commit. The DTLS client always uses 32 '\0' by…	CWE-330 Use of Insufficiently Random Values	CVE-2020-11501	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

219450	7.5	HIGH Network	zoom	meetings	Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-11500	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm