Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258051 6.4 警告 The PHP Group
サイバートラスト株式会社
レッドハット		 - PHP の Linear Congruential Generator における値を推測される脆弱性 CWE-310
暗号の問題 		CVE-2010-1128 2010-12-15 15:26 2010-03-26 Show GitHub Exploit DB Packet Storm
258052 6.9 警告 GNU Project
日本電気
ターボリナックス
サイバートラスト株式会社
レッドハット		 - GNU Libtool の libltdl における権限昇格の脆弱性 CWE-DesignError
CVE-2009-3736 2010-12-15 15:26 2009-11-16 Show GitHub Exploit DB Packet Storm
258053 6.4 警告 アップル
日本電気
Fetchmail Project		 - fetchmail における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-2666 2010-12-15 15:25 2009-08-6 Show GitHub Exploit DB Packet Storm
258054 4.3 警告 アップル - Apple Safari の WebKit におけるロケーションバーの URL を偽装される脆弱性 CWE-Other
その他 		CVE-2010-3810 2010-12-15 14:42 2010-11-22 Show GitHub Exploit DB Packet Storm
258055 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3809 2010-12-15 14:39 2010-11-22 Show GitHub Exploit DB Packet Storm
258056 9.3 危険 アップル - Apple Safari の WebKit における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3808 2010-12-15 14:37 2010-11-22 Show GitHub Exploit DB Packet Storm
258057 9.3 危険 アップル - Apple Safari の WebKit 内にある JavaScript 実装における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3805 2010-12-15 14:32 2010-11-22 Show GitHub Exploit DB Packet Storm
258058 5 警告 アップル - Apple Safari の WebKit 内にある JavaScript 実装におけるユーザを追跡可能な脆弱性 CWE-310
暗号の問題 		CVE-2010-3804 2010-12-15 14:29 2010-11-22 Show GitHub Exploit DB Packet Storm
258059 9.3 危険 アップル - Apple Safari の WebKit における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3803 2010-12-15 14:25 2010-11-22 Show GitHub Exploit DB Packet Storm
258060 2.6 注意 マイクロソフト - Internet Explorer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3348 2010-12-15 14:08 2010-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219541 4.3 MEDIUM
Network 		octopus octopus_deploy In Octopus Deploy before 2019.12.9 and 2020 before 2020.1.12, the TaskView permission is not scoped to any dimension. For example, a scoped user who is scoped to only one tenant can view server tasks… NVD-CWE-noinfo
CVE-2020-12286 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219542 9.8 CRITICAL
Network 		ffmpeg
canonical
debian 		ffmpeg
ubuntu_linux
debian_linux 		cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check. CWE-787
 Out-of-bounds Write 		CVE-2020-12284 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219543 8.8 HIGH
Network 		opmantek open-audit An issue was discovered in Open-AudIT 3.3.1. There is shell metacharacter injection via attributes to an open-audit/configuration/ URI. An attacker can exploit this by adding an excluded IP address t… CWE-78
OS Command  		CVE-2020-12078 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219544 9.8 CRITICAL
Network 		libgit2
debian 		libgit2
debian_linux 		An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. checkout.c mishandles equivalent filenames that exist because of NTFS short names. This may allow remote code execution when c… CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2020-12279 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219545 9.8 CRITICAL
Network 		libgit2
debian 		libgit2
debian_linux 		An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution… CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2020-12278 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219546 7.5 HIGH
Network 		wavlink wl-wn579g3_firmware
wl-wn575a3_firmware
wl-wn530hg4_firmware
wn531g3_firmware
wn533a8_firmware
wn531a6_firmware
wn551k1_firmware
wn535g3_firmware
wn530h4_firmware
wn57x93_f… 		An issue was discovered where there are multiple externally accessible pages that do not require any sort of authentication, and store system information for internal usage. The devices automatically… CWE-306
Missing Authentication for Critical Function 		CVE-2020-12266 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219547 7.8 HIGH
Local 		valvesoftware source Valve Source allows local users to gain privileges by writing to the /tmp/hl2_relaunch file, which is later executed in the context of a different user account. CWE-78
OS Command  		CVE-2020-12242 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219548 8.8 HIGH
Network 		amd atillk64 AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space o… CWE-862
 Missing Authorization 		CVE-2020-12138 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219549 9.8 CRITICAL
Network 		farukawa electric_consciousmap The Apros Evolution, ConsciusMap, and Furukawa provisioning systems through 2.8.1 allow remote code execution because of javax.faces.ViewState Java deserialization. CWE-502
 Deserialization of Untrusted Data 		CVE-2020-12133 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm
219550 7.5 HIGH
Network 		prestashop correos_express The Correos Express addon for PrestaShop 1.6 through 1.7 allows remote attackers to obtain sensitive information, such as a service's owner password that can be used to modify orders via SOAP. Attack… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-12120 2024-11-21 13:59 2020-04-28 Show GitHub Exploit DB Packet Storm