Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258821	4.3	警告	アップル	-	Apple Safari におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1778	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

258822	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258823	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258824	5	警告	金子勇	-	Winny におけるノード情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2362	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258825	5	警告	金子勇	-	Winny における BBS 情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2361	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258826	10	危険	シマンテック IBM	-	Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3032	2010-08-19 18:22	2010-03-5	Show	GitHub Exploit DB Packet Storm

258827	5	警告	The PHP Group	-	PHP の phar 拡張における重要な情報を取得される脆弱性	CWE-134 書式文字列の問題	CVE-2010-2094	2010-08-18 18:26	2010-05-14	Show	GitHub Exploit DB Packet Storm

258828	7.5	危険	The PHP Group	-	PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1868	2010-08-18 18:26	2010-05-7	Show	GitHub Exploit DB Packet Storm

258829	7.5	危険	The PHP Group	-	PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1866	2010-08-18 18:26	2010-05-2	Show	GitHub Exploit DB Packet Storm

258830	5	警告	The PHP Group	-	PHP の chunk_split 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1862	2010-08-18 18:25	2010-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209091	9.8	CRITICAL Network	kaspersky	tinycheck	TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places.	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-36199	2024-11-21 14:29	2021-01-27	Show	GitHub Exploit DB Packet Storm

209092	7.5	HIGH Network	xerox	workcentre_3655_firmware workcentre_3655i_firmware workcentre_5865_firmware workcentre_5875_firmware workcentre_5890_firmware workcentre_5865i_firmware workcentre_5875i_firmware …	An issue was discovered in certain Xerox WorkCentre products. They do not properly encrypt passwords. This affects 3655, 3655i, 58XX, 58XXi 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi 78XX, 78XXi, 7970, 79…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-36201	2024-11-21 14:29	2021-01-27	Show	GitHub Exploit DB Packet Storm

209093	7.5	HIGH Network	cskaza	cszcms	SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive information via pm_sendmail parameter in csz_model.php.	CWE-89 SQL Injection	CVE-2020-36136	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209094	5.5	MEDIUM Local	foxit	pdf_reader	Buffer Overflow vulnerability in cFilenameInit parameter in browseForDoc function in Foxit Software Foxit PDF Reader version 10.1.0.37527, allows local attackers to cause a denial of service (DoS) vi…	CWE-120 Classic Buffer Overflow	CVE-2020-35990	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209095	7.5	HIGH Network	ffmpeg	ffmpeg	An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).	CWE-476 NULL Pointer Dereference	CVE-2020-36138	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209096	9.8	CRITICAL Network	bloofox	bloofoxcms	File Upload vulnerability in bloofoxCMS version 0.5.2.1, allows remote attackers to execute arbitrary code and escalate privileges via crafted webshell file to upload module.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-36082	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209097	8.8	HIGH Network	wuzhicms	wuzhicms	An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php.	NVD-CWE-noinfo	CVE-2020-36037	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209098	9.8	CRITICAL Network	school_faculty_scheduling_system_project	school_faculty_scheduling_system	SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows remote attacker to execute arbitrary code, escalate privilieges, and gain sensitive information via craft…	CWE-89 SQL Injection	CVE-2020-36034	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209099	5.5	MEDIUM Local	freedesktop	poppler	An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function.	CWE-476 NULL Pointer Dereference	CVE-2020-36024	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm

209100	6.5	MEDIUM Network	freedesktop	poppler	An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::cvtGlyph function.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2020-36023	2024-11-21 14:28	2023-08-11	Show	GitHub Exploit DB Packet Storm