Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227211 4.3 警告 サン・マイクロシステムズ - Windows 用の SJS Application Server における JSP ソースコードを取得される脆弱性 - CVE-2007-4025 2012-12-20 18:33 2007-07-24 Show GitHub Exploit DB Packet Storm
227212 4.3 警告 w1l3d4 - W1L3D4 Philboard の W1L3D4_aramasonuc.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4024 2012-12-20 18:33 2007-07-26 Show GitHub Exploit DB Packet Storm
227213 4.3 警告 WordPress.org - WordPress 用の Blix テーマなどに関する特定の index.php インストールスクリプトにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4014 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227214 6.8 警告 virtual hosting control system - VHCS におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-3988 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227215 5 警告 securecomputing - Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性 - CVE-2007-3986 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227216 5 警告 securecomputing - SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3985 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227217 7.5 危険 zenturi - sasatl.dll の NixonMyPrograms クラスにおけるバッファオーバーフローの脆弱性 - CVE-2007-3984 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227218 7.5 危険 wsnlinks - WSN Links Basic Edition の index.php における SQL インジェクションの脆弱性 - CVE-2007-3981 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227219 10 危険 rcms pro - RCMS Pro RGameScript Pro の page.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3980 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
227220 6.8 警告 ufmod - uFMOD における脆弱性 - CVE-2007-3965 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198071 6.1 MEDIUM
Network 		thinkific thinkific Thinkific Thinkific Online Course Creation Platform 1.0 is affected by: Cross Site Scripting (XSS). The impact is: execute arbitrary code (remote). The component is: Affected Source code of the websi… CWE-79
Cross-site Scripting 		CVE-2020-35698 2024-11-21 14:27 2023-07-26 Show GitHub Exploit DB Packet Storm
198072 9.8 CRITICAL
Network 		inxedu inxedu SQL Injection vulnerability in file /inxedu/demo_inxedu_open/src/main/resources/mybatis/inxedu/website/WebsiteImagesMapper.xml in inxedu 2.0.6 via the id value. CWE-89
SQL Injection 		CVE-2020-35326 2024-11-21 14:27 2023-01-19 Show GitHub Exploit DB Packet Storm
198073 4.3 MEDIUM
Adjacent 		bluetooth bluetooth_core_specification An information leakage vulnerability in the Bluetooth Low Energy advertisement scan response in Bluetooth Core Specifications 4.0 through 5.2, and extended scan response in Bluetooth Core Specificati… CWE-203
CWE-294
 Information Exposure Through Discrepancy
Authentication Bypass by Capture-replay  		CVE-2020-35473 2024-11-21 14:27 2022-11-8 Show GitHub Exploit DB Packet Storm
198074 8.8 HIGH
Network 		bigprof online_invoicing_system BigProf Online Invoicing System before 3.0 offers a functionality that allows an administrator to move the records of members across groups. The applicable endpoint (admin/pageTransferOwnership.php) … CWE-352
 Origin Validation Error 		CVE-2020-35675 2024-11-21 14:27 2022-09-29 Show GitHub Exploit DB Packet Storm
198075 9.8 CRITICAL
Network 		bigprof online_invoicing_system BigProf Online Invoicing System before 2.9 suffers from an unauthenticated SQL Injection found in /membership_passwordReset.php (the endpoint that is responsible for issuing self-service password res… CWE-89
SQL Injection 		CVE-2020-35674 2024-11-21 14:27 2022-09-29 Show GitHub Exploit DB Packet Storm
198076 5.5 MEDIUM
Local 		libraw libraw In LibRaw, there is an out-of-bounds read vulnerability within the "LibRaw::parseSonySRF()" function (libraw\src\metadata\sony.cpp) when processing srf files. CWE-125
Out-of-bounds Read 		CVE-2020-35535 2024-11-21 14:27 2022-09-2 Show GitHub Exploit DB Packet Storm
198077 5.5 MEDIUM
Local 		libraw libraw In LibRaw, there is a memory corruption vulnerability within the "crxFreeSubbandData()" function (libraw\src\decoders\crx.cpp) when processing cr3 files. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-35534 2024-11-21 14:27 2022-09-2 Show GitHub Exploit DB Packet Storm
198078 5.5 MEDIUM
Local 		libraw
debian 		libraw
debian_linux 		In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()" function (libraw\src\decoders\dng.cpp) when reading data from the image file. CWE-125
Out-of-bounds Read 		CVE-2020-35533 2024-11-21 14:27 2022-09-2 Show GitHub Exploit DB Packet Storm
198079 5.5 MEDIUM
Local 		libraw
debian 		libraw
debian_linux 		In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function (libraw\src\x3f\x3f_utils_patched.cpp) which can be triggered via an image with a large row_stride fiel… CWE-125
Out-of-bounds Read 		CVE-2020-35532 2024-11-21 14:27 2022-09-2 Show GitHub Exploit DB Packet Storm
198080 5.5 MEDIUM
Local 		libraw
debian 		libraw
debian_linux 		In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function (libraw\src\x3f\x3f_utils_patched.cpp) when reading data from an image file. CWE-125
Out-of-bounds Read 		CVE-2020-35531 2024-11-21 14:27 2022-09-2 Show GitHub Exploit DB Packet Storm