Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258641	3.6	注意	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0895	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258642	4.3	警告	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0893	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258643	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-20 不適切な入力確認	CVE-2010-0453	2010-05-14 18:42	2010-02-3	Show	GitHub Exploit DB Packet Storm

258644	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0889	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258645	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0891	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258646	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0894	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258647	6.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0885	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258648	7.1	危険	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0896	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258649	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

258650	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211031	6.5	MEDIUM Network	biscom	secure_file_transfer	Biscom Secure File Transfer (SFT) before 5.1.1082 and 6.x before 6.0.1011 allows user credential theft.	NVD-CWE-noinfo	CVE-2020-27646	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211032	3.3	LOW Local	imagemagick debian opensuse	imagemagick debian_linux leap	ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service.	CWE-369 Divide By Zero	CVE-2020-27560	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211033	6.1	MEDIUM Network	bigbluebutton	greenlight	A cross-site scripting (XSS) vulnerability exists in the 'merge account' functionality in admins.js in BigBlueButton Greenlight 2.7.6.	CWE-79 Cross-site Scripting	CVE-2020-27642	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211034	7.5	HIGH Network	fastd_project debian fedoraproject	fastd debian_linux fedora	receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets with an invalid type code.	CWE-617 Reachable Assertion	CVE-2020-27638	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211035	4.3	MEDIUM Network	mediawiki	mediawiki	The FileImporter extension in MediaWiki through 1.35.0 was not properly attributing various user actions to a specific user's IP address. Instead, for various actions, it would report the IP address …	NVD-CWE-Other	CVE-2020-27621	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211036	6.1	MEDIUM Network	mediawiki	skin\	The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS because MediaWiki messages were not being properly escaped. This is related to wfMessage and Html::rawElement, as demonstrated by CosmosSoc…	CWE-79 Cross-site Scripting	CVE-2020-27620	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211037	9.8	CRITICAL Network	python fedoraproject oracle	python fedora communications_cloud_native_core_network_function_cloud_native_environment	In Python 3 through 3.9.0, the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP.	NVD-CWE-noinfo	CVE-2020-27619	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211038	9.8	CRITICAL Network	loginizer	loginizer	The Loginizer plugin before 1.6.4 for WordPress allows SQL injection (with resultant XSS), related to loginizer_login_failed and lz_valid_ip.	CWE-89 SQL Injection	CVE-2020-27615	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211039	6.1	MEDIUM Network	cminds	cm_download_manager	The cm-download-manager plugin before 2.8.0 for WordPress allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-27344	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm

211040	8.4	HIGH Local	bigbluebutton	bigbluebutton	The installation procedure in BigBlueButton before 2.2.28 (or earlier) uses ClueCon as the FreeSWITCH password, which allows local users to achieve unintended FreeSWITCH access.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-27613	2024-11-21 14:21	2020-10-22	Show	GitHub Exploit DB Packet Storm