Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257791 3.6 注意 オラクル - Oracle Solaris および OpenSolaris における SCSI enclosure services デバイスドライバの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3576 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
257792 4 警告 オラクル - Oracle Solaris および OpenSolaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3540 2010-11-2 15:53 2010-10-12 Show GitHub Exploit DB Packet Storm
257793 4 警告 オラクル - Oracle Solaris および OpenSolaris における InfiniBand の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3516 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
257794 4 警告 オラクル - Oracle Solaris および OpenSolaris の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3515 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
257795 4.3 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3514 2010-11-2 15:52 2010-10-12 Show GitHub Exploit DB Packet Storm
257796 4.9 警告 オラクル - Oracle Solaris および OpenSolaris における Kernel/X86 の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3517 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
257797 5.8 警告 オラクル - Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3545 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
257798 6.3 警告 オラクル - Oracle Solaris における su の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3503 2010-11-2 15:51 2010-10-12 Show GitHub Exploit DB Packet Storm
257799 9.3 危険 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット		 - FreeType 2 における CFF フォントの処理に脆弱性 CWE-119
バッファエラー 		CVE-2010-1797 2010-11-2 15:24 2010-08-9 Show GitHub Exploit DB Packet Storm
257800 6.6 警告 オラクル - Oracle Solaris における Live Upgrade の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2010-3507 2010-11-1 15:41 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211771 9.8 CRITICAL
Network 		mobile_shop_system_project mobile_shop_system An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in (1) login.php or (2) LoginAsAdmin.php. CWE-89
SQL Injection 		CVE-2020-25905 2024-11-21 14:18 2022-01-29 Show GitHub Exploit DB Packet Storm
211772 9.1 CRITICAL
Network 		getsymphony symphony A XML External Entity (XXE) vulnerability was discovered in symphony\lib\toolkit\class.xmlelement.php in Symphony 2.7.10 which can lead to an information disclosure or denial of service (DOS). CWE-611
XXE 		CVE-2020-25912 2024-11-21 14:18 2021-11-1 Show GitHub Exploit DB Packet Storm
211773 9.1 CRITICAL
Network 		modx modx_revolution A XML External Entity (XXE) vulnerability was discovered in the modRestServiceRequest component in MODX CMS 2.7.3 which can lead to an information disclosure or denial of service (DOS). CWE-611
XXE 		CVE-2020-25911 2024-11-21 14:18 2021-11-1 Show GitHub Exploit DB Packet Storm
211774 5.5 MEDIUM
Local 		ranko rkcms A vulnerability was discovered in the filename parameter in pathindex.php?r=cms-backend/attachment/delete&sub=&filename=../../../../111.txt&filetype=image/jpeg of the master version of RKCMS. This vu… CWE-22
Path Traversal 		CVE-2020-25881 2024-11-21 14:18 2021-10-30 Show GitHub Exploit DB Packet Storm
211775 6.5 MEDIUM
Network 		baijiacms_project baijiacms A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "i… CWE-22
Path Traversal 		CVE-2020-25873 2024-11-21 14:18 2021-10-30 Show GitHub Exploit DB Packet Storm
211776 4.9 MEDIUM
Network 		frogcms_project frogcms A vulnerability exists within the FileManagerController.php function in FrogCMS 0.9.5 which allows an attacker to perform a directory traversal attack via a GET request urlencode parameter. CWE-22
Path Traversal 		CVE-2020-25872 2024-11-21 14:18 2021-10-30 Show GitHub Exploit DB Packet Storm
211777 7.5 HIGH
Network 		hcc-embedded nichestack_ipv4 An issue was discovered in HCC Embedded NicheStack IPv4 4.1. The dnc_copy_in routine for parsing DNS domain names does not check whether a domain name compression pointer is pointing within the bound… CWE-125
Out-of-bounds Read 		CVE-2020-25767 2024-11-21 14:18 2021-08-19 Show GitHub Exploit DB Packet Storm
211778 9.8 CRITICAL
Network 		sapphireims sapphireims In SapphireIMS 5.0, it is possible to take over an account by sending a request to the Save_Password form as shown in POC. Notice that we do not require a JSESSIONID in this request and can reset any… CWE-306
Missing Authentication for Critical Function 		CVE-2020-25566 2024-11-21 14:18 2021-08-12 Show GitHub Exploit DB Packet Storm
211779 9.8 CRITICAL
Network 		sapphireims sapphireims In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients (username: sapphire, password: ims) and gain access to the portal. Once the access is available, the attacker can inject … CWE-798
 Use of Hard-coded Credentials 		CVE-2020-25565 2024-11-21 14:18 2021-08-12 Show GitHub Exploit DB Packet Storm
211780 8.8 HIGH
Network 		sapphireims sapphireims In SapphireIMS 5.0, it is possible to create local administrator on any client with credentials of a non-privileged user by directly accessing RemoteMgmtTaskSave (Automation Tasks) feature. CWE-863
 Incorrect Authorization 		CVE-2020-25564 2024-11-21 14:18 2021-08-12 Show GitHub Exploit DB Packet Storm