Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 4:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259391	7.5	危険	アップル	-	Apple Mac OS X の AFP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0533	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

259392	7.5	危険	アップル	-	Apple Mac OS X の AFP サーバにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0057	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

259393	6.4	警告	アップル	-	Apple Mac OS X のアプリケーションファイアウォールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2801	2010-04-13 15:15	2010-03-29	Show	GitHub Exploit DB Packet Storm

259394	6.8	警告	アップル	-	Apple Mac OS X の Cocoa のスペルチェック機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0056	2010-04-13 15:15	2010-03-29	Show	GitHub Exploit DB Packet Storm

259395	4.4	警告	アップルサイバートラスト株式会社 Carnegie Mellon University (Project Cyrus) レッドハット	-	Cyrus IMAPd にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2632	2010-04-13 14:46	2009-09-10	Show	GitHub Exploit DB Packet Storm

259396	7.5	危険	Haxx アップルサイバートラスト株式会社レッドハット	-	cURL および libcurl における、任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-2417	2010-04-13 14:46	2009-08-12	Show	GitHub Exploit DB Packet Storm

259397	6.8	警告	Haxx アップルサイバートラスト株式会社レッドハット	-	curl および libcurl の redirect 実装における任意のコマンドを実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-0037	2010-04-13 14:45	2009-03-3	Show	GitHub Exploit DB Packet Storm

259398	9.3	危険	ジャストシステム	-	一太郎シリーズにおける任意のコードが実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1424	2010-04-12 15:32	2010-04-12	Show	GitHub Exploit DB Packet Storm

259399	4.4	警告	ヒューレット・パッカード	-	HP HP-UX におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1030	2010-04-12 12:19	2010-03-26	Show	GitHub Exploit DB Packet Storm

259400	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter Config HICP におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4462	2010-04-12 12:19	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210741	7.5	HIGH Network	pybbs_project	pybbs	A SQL injection vulnerability in TopicMapper.xml of PybbsCMS v5.2.1 allows attackers to access sensitive database information.	CWE-89 SQL Injection	CVE-2020-28702	2024-11-21 14:23	2021-11-1	Show	GitHub Exploit DB Packet Storm

210742	7.8	HIGH Local	aplixio	pdf_shapingup	Aplioxio PDF ShapingUp 5.0.0.139 contains a buffer overflow which allows attackers to cause a denial of service (DoS) via a crafted PDF file.	CWE-120 Classic Buffer Overflow	CVE-2020-28969	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210743	5.4	MEDIUM Network	draytek	vigorap_1000c_firmware vigorap_700_firmware vigorap_710_firmware vigorap_800_firmware vigorap_802_firmware vigorap_810_firmware vigorap_900_firmware vigorap_902_firmware vigor…	Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary w…	CWE-79 Cross-site Scripting	CVE-2020-28968	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210744	8.8	HIGH Network	flashget	flashget	FlashGet v1.9.6 was discovered to contain a buffer overflow in the 'current path directory' function. This vulnerability allows attackers to elevate local process privileges via overwriting the regis…	CWE-120 Classic Buffer Overflow	CVE-2020-28967	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210745	6.7	MEDIUM Local	tonec	internet_download_manager	Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified …	CWE-787 Out-of-bounds Write	CVE-2020-28964	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210746	7.8	HIGH Local	krylack	zip_password_recovery	Passcovery Co. Ltd ZIP Password Recovery v3.70.69.0 was discovered to contain a buffer overflow via the decompress function.	CWE-120 Classic Buffer Overflow	CVE-2020-28963	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210747	5.4	MEDIUM Network	perfexcrm	perfex_crm	Perfex CRM v2.4.4 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component ./clients/client via the company name parameter.	CWE-79 Cross-site Scripting	CVE-2020-28961	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210748	9.8	CRITICAL Network	cct95	chichen_tech_cms	Chichen Tech CMS v1.0 was discovered to contain multiple SQL injection vulnerabilities in the file product_list.php via the id and cid parameters.	CWE-89 SQL Injection	CVE-2020-28960	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210749	5.4	MEDIUM Network	froxlor	froxlor	Multiple cross-site scripting (XSS) vulnerabilities in the Customer Add module of Foxlor v0.10.16 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the name…	CWE-79 Cross-site Scripting	CVE-2020-28957	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm

210750	5.4	MEDIUM Network	sugarcrm	sugarcrm	Multiple cross-site scripting (XSS) vulnerabilities in the Sales module of SugarCRM v6.5.18 allows attackers to execute arbitrary web scripts or HTML via crafted payloads entered into the primary add…	CWE-79 Cross-site Scripting	CVE-2020-28956	2024-11-21 14:23	2021-10-23	Show	GitHub Exploit DB Packet Storm