Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257931	7.5	危険	Google	-	Google Chrome におけるフォームの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-1500	2010-11-24 14:29	2010-04-20	Show	GitHub Exploit DB Packet Storm

257932	9.3	危険	アップルアドビシステムズ	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3976	2010-11-24 14:28	2010-11-4	Show	GitHub Exploit DB Packet Storm

257933	4.3	警告	Google	-	HTC Hero 上で稼働する Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1731	2010-11-24 14:19	2010-05-6	Show	GitHub Exploit DB Packet Storm

257934	10	危険	IBM	-	IBM AIX の ftpd におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3187	2010-11-22 15:19	2010-08-25	Show	GitHub Exploit DB Packet Storm

257935	4.3	警告	アップルアドビシステムズ	-	Mac OS X 上で稼働する Adobe Flash Player における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3638	2010-11-19 14:13	2010-11-4	Show	GitHub Exploit DB Packet Storm

257936	-	-	Attachmate	-	Attachmate Reflection for the Web におけるクロスサイトスクリプティングの脆弱性	-	-	2010-11-19 13:55	2010-11-2	Show	GitHub Exploit DB Packet Storm

257937	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4090	2010-11-18 15:47	2010-10-28	Show	GitHub Exploit DB Packet Storm

257938	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4089	2010-11-18 15:47	2010-10-28	Show	GitHub Exploit DB Packet Storm

257939	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4088	2010-11-18 15:46	2010-10-28	Show	GitHub Exploit DB Packet Storm

257940	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4087	2010-11-17 16:51	2010-10-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210871	7.8	HIGH Local	broadcom	unified_infrastructure_management	CA Unified Infrastructure Management 20.1 and earlier contains a vulnerability in the robot (controller) component that allows local attackers to elevate privileges.	NVD-CWE-noinfo	CVE-2020-28421	2024-11-21 14:22	2020-11-24	Show	GitHub Exploit DB Packet Storm

210872	6.5	MEDIUM Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6.	CWE-863 Incorrect Authorization	CVE-2020-28053	2024-11-21 14:22	2020-11-23	Show	GitHub Exploit DB Packet Storm

210873	7.8	HIGH Local	securityonionsolutions	security_onion	Security Onion v2 prior to 2.3.10 has an incorrect sudo configuration, which allows the administrative user to obtain root access without using the sudo password by editing and executing /home/<user>…	CWE-306 Missing Authentication for Critical Function	CVE-2020-27985	2024-11-21 14:22	2020-11-23	Show	GitHub Exploit DB Packet Storm

210874	8.8	HIGH Network	schneider-electric	ecostruxure_control_expert	A CWE-494: Download of Code Without Integrity Check vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized command execution…	-	CVE-2020-28213	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210875	9.8	CRITICAL Network	schneider-electric	ecostruxure_control_expert	A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause unauthorized …	-	CVE-2020-28212	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210876	7.8	HIGH Local	schneider-electric	ecostruxure_control_expert	A CWE-863: Incorrect Authorization vulnerability exists in PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions) that could cause bypass of authentication when overwriting memor…	-	CVE-2020-28211	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210877	7.0	HIGH Local	schneider-electric	enterprise_server_installer	A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation Enterprise Server installer V1.9 - V3.1 and Enterprise Central installer V2.0 - V3.1 that could cause any…	-	CVE-2020-28209	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210878	6.1	MEDIUM Network	sokrates	sowasql	A Cross Site Scripting (XSS) vulnerability exists in OPAC in Sokrates SOWA SowaSQL through 5.6.1 via the sowacgi.php typ parameter.	CWE-79 Cross-site Scripting	CVE-2020-28350	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210879	6.1	MEDIUM Network	schneider-electric	ecostruxure_building_operation	A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker …	-	CVE-2020-28210	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm

210880	7.5	HIGH Network	tsmmanager	tsmmanager	JamoDat TSMManager Collector version up to 6.5.0.21 is vulnerable to an Authorization Bypass because the Collector component is not properly validating an authenticated session with the Viewer. If th…	NVD-CWE-noinfo	CVE-2020-28054	2024-11-21 14:22	2020-11-20	Show	GitHub Exploit DB Packet Storm