Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258321 7.5 危険 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの get_history_lastid 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4499 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
258322 6.8 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの node_process_command 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-4498 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
258323 6.9 警告 Mozilla Foundation - Windows 上で稼働する複数の Mozilla 製品における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3181 2010-11-11 15:07 2010-10-19 Show GitHub Exploit DB Packet Storm
258324 9.3 危険 アドビシステムズ - 複数の Adobe 製品における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3153 2010-11-10 15:34 2010-10-18 Show GitHub Exploit DB Packet Storm
258325 4.3 警告 アドビシステムズ - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2886 2010-11-10 15:34 2010-10-18 Show GitHub Exploit DB Packet Storm
258326 4.3 警告 アドビシステムズ - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2885 2010-11-10 15:33 2010-10-18 Show GitHub Exploit DB Packet Storm
258327 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の browser-plugin 実装における任意のプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3749 2010-11-10 15:33 2010-10-15 Show GitHub Exploit DB Packet Storm
258328 10 危険 リアルネットワークス - RealNetworks RealPlayer の RichFX コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3748 2010-11-10 15:32 2010-10-15 Show GitHub Exploit DB Packet Storm
258329 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3751 2010-11-10 15:32 2010-10-15 Show GitHub Exploit DB Packet Storm
258330 10 危険 SAP - SAP BusinessObjects Axis2 におけるデフォルトパスワードの問題 CWE-255
証明書・パスワード管理 		CVE-2010-0219 2010-11-10 15:32 2010-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224841 7.5 HIGH
Network 		siemens sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr2_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr3_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_… 		A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or … NVD-CWE-noinfo
CVE-2019-6574 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224842 9.1 CRITICAL
Network 		siemens simatic_hmi_comfort_panels_firmware
simatic_hmi_comfort_outdoor_panels_firmware
simatic_hmi_ktp_mobile_panels_ktp400f_firmware
simatic_hmi_ktp_mobile_panels_ktp700_firmware
simatic_hmi_kt… 		A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KT… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6572 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224843 5.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to force the application to perform requests to the internal workstation (port-scanning) and to perform requests to adjacent wor… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6516 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224844 5.3 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. Uploaded documents for API documentation are available to an unauthenticated user. NVD-CWE-noinfo
CVE-2019-6515 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224845 4.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to inject a JavaScript payload that will be stored in the database and then displayed and executed on the same page, aka XSS. CWE-79
Cross-site Scripting 		CVE-2019-6514 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224846 4.1 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. It is possible to force the application to perform requests to the internal workstation (SSRF port-scanning), other adjacent workstations (SSRF netw… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6512 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
224847 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to… NVD-CWE-Other
CVE-2019-6566 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
224848 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privi… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6564 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
224849 9.8 CRITICAL
Network 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Wind… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6548 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
224850 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI eleme… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6546 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm