Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257781 9.3 危険 マイクロソフト - Microsoft Windows の Cabinet File Viewer Shell Extension における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0487 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
257782 9.3 危険 マイクロソフト - Microsoft Windows の Authenticode Signature Verification における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0486 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
257783 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
257784 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
257785 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-1565 2010-05-7 17:26 2010-04-9 Show GitHub Exploit DB Packet Storm
257786 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
257787 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
257788 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
257789 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
257790 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202311 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document. CWE-79
Cross-site Scripting 		CVE-2020-8777 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
202312 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via the URL property of a file. CWE-79
Cross-site Scripting 		CVE-2020-8776 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
202313 6.1 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the logout.jsp timeOut parameter. CWE-79
Cross-site Scripting 		CVE-2020-8952 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
202314 5.4 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the Source or Destination field of the Configuration Manager (Configuration Parameter Translation) page. CWE-79
Cross-site Scripting 		CVE-2020-8951 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
202315 8.1 HIGH
Network 		gurux device_language_message_specification_director An issue was discovered in Gurux GXDLMS Director through 8.5.1905.1301. When downloading OBIS codes, it does not verify that the downloaded files are actual OBIS codes and doesn't check for path trav… CWE-22
Path Traversal 		CVE-2020-8810 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202316 8.1 HIGH
Network 		gurux device_language_message_specification_director Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. A man-in-the-middle attacker can prompt the user to download updates by mo… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-8809 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202317 6.1 MEDIUM
Network 		wpjobboard wpjobboard The WPJobBoard plugin 5.5.3 for WordPress allows Persistent XSS via the Add Job form, as demonstrated by title and Description. CWE-79
Cross-site Scripting 		CVE-2020-9019 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202318 5.3 MEDIUM
Network 		litecart litecart LiteCart through 2.2.1 allows admin/?app=users&doc=edit_user CSRF to add a user. CWE-352
 Origin Validation Error 		CVE-2020-9018 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202319 5.4 MEDIUM
Network 		blackboard blackboard_learn Stored Cross-site scripting (XSS) vulnerability in Blackboard Learn/PeopleTool v9.1 allows users to inject arbitrary web script via the Tile widget in the People Tool profile editor. CWE-79
Cross-site Scripting 		CVE-2020-9008 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm
202320 8.0 HIGH
Network 		litecart litecart LiteCart through 2.2.1 allows CSV injection via a customer's profile. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-9017 2024-11-21 14:39 2020-02-26 Show GitHub Exploit DB Packet Storm