Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227321 10 危険 sweetphp - TotalCalendar の view_event.php における SQL インジェクションの脆弱性 - CVE-2007-3515 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227322 7.5 危険 シマンテック - Windows Servers 用の Symantec Backup Exec におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-3509 2012-12-20 18:19 2007-07-11 Show GitHub Exploit DB Packet Storm
227323 6.4 警告 qt-cute - QuickTalk フォーラムにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-3505 2012-12-20 18:19 2007-07-2 Show GitHub Exploit DB Packet Storm
227324 10 危険 xeforum - Xeweb XEForum における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3500 2012-12-20 18:19 2007-06-29 Show GitHub Exploit DB Packet Storm
227325 6.4 警告 slackroll - SlackRoll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3499 2012-12-20 18:19 2007-06-29 Show GitHub Exploit DB Packet Storm
227326 4.3 警告 SAP - SAP NetWeaver Nw04 の BC-WD-JAV におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3496 2012-12-20 18:19 2007-06-29 Show GitHub Exploit DB Packet Storm
227327 4.3 警告 SAP - SAP Basis コンポーネントの BC-MID-ICF におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3495 2012-12-20 18:19 2007-06-29 Show GitHub Exploit DB Packet Storm
227328 7.5 危険 Progress Software Corporation - Progress Software OpenEdge の _mprosrv におけるバッファオーバーフローの脆弱性 - CVE-2007-3491 2012-12-20 18:19 2007-06-29 Show GitHub Exploit DB Packet Storm
227329 4.3 警告 Yandex - Yandex Server におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3485 2012-12-20 18:19 2007-06-28 Show GitHub Exploit DB Packet Storm
227330 10 危険 BlackBerry - Research in Motion BlackBerry Enterprise Server におけるマルウェアを読み込む脆弱性 - CVE-2007-3483 2012-12-20 18:19 2007-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197831 7.0 HIGH
Local 		pam_setquota_project pam_setquota pam_setquota.c in the pam_setquota module before 2020-05-29 for Linux-PAM allows local attackers to set their quota on an arbitrary filesystem, in certain situations where the attacker's home directo… NVD-CWE-noinfo
CVE-2020-36394 2024-11-21 14:29 2021-06-23 Show GitHub Exploit DB Packet Storm
197832 4.3 MEDIUM
Network 		civicrm civicrm In CiviCRM before 5.28.1 and CiviCRM ESR before 5.27.5 ESR, the CKEditor configuration form allows CSRF. CWE-352
 Origin Validation Error 		CVE-2020-36389 2024-11-21 14:29 2021-06-18 Show GitHub Exploit DB Packet Storm
197833 8.8 HIGH
Network 		civicrm civicrm In CiviCRM before 5.21.3 and 5.22.x through 5.24.x before 5.24.3, users may be able to upload and execute a crafted PHAR archive. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-36388 2024-11-21 14:29 2021-06-18 Show GitHub Exploit DB Packet Storm
197834 7.8 HIGH
Local 		linux
netapp 		linux_kernel
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_firmware
h700e_firmware
h410s_firmware
h410c_firmware 		An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx reference holding, aka CID-6d816e088c35. CWE-416
 Use After Free 		CVE-2020-36387 2024-11-21 14:29 2021-06-8 Show GitHub Exploit DB Packet Storm
197835 7.1 HIGH
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.8.1. net/bluetooth/hci_event.c has a slab out-of-bounds read in hci_extended_inquiry_result_evt, aka CID-51c19bf3d5cf. CWE-125
Out-of-bounds Read 		CVE-2020-36386 2024-11-21 14:29 2021-06-8 Show GitHub Exploit DB Packet Storm
197836 7.8 HIGH
Local 		linux
netapp
starwindsoftware 		linux_kernel
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_firmware
h700e_firmware
h410s_firmware
h410c_firmware
starwind_san_\&_nas
starwind_vir… 		An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_… CWE-416
 Use After Free 		CVE-2020-36385 2024-11-21 14:29 2021-06-7 Show GitHub Exploit DB Packet Storm
197837 6.1 MEDIUM
Network 		pagelayer pagelayer PageLayer before 1.3.5 allows reflected XSS via color settings. CWE-79
Cross-site Scripting 		CVE-2020-36384 2024-11-21 14:29 2021-06-7 Show GitHub Exploit DB Packet Storm
197838 6.1 MEDIUM
Network 		pagelayer pagelayer PageLayer before 1.3.5 allows reflected XSS via the font-size parameter. CWE-79
Cross-site Scripting 		CVE-2020-36383 2024-11-21 14:29 2021-06-7 Show GitHub Exploit DB Packet Storm
197839 7.5 HIGH
Network 		openvpn openvpn_access_server OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user authentication phase via incorrect authentication token data in an early phase of the user authentica… CWE-617
 Reachable Assertion 		CVE-2020-36382 2024-11-21 14:29 2021-06-4 Show GitHub Exploit DB Packet Storm
197840 5.5 MEDIUM
Local 		cesanta mjs Stack overflow vulnerability in parse_equality Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file. CWE-674
 Uncontrolled Recursion 		CVE-2020-36375 2024-11-21 14:29 2021-05-29 Show GitHub Exploit DB Packet Storm