Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227561	4.3	警告	webSPELL	-	webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6309	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

227562	5	警告	phpmychat	-	phpMyChat の users_popupL.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6296	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

227563	7.5	危険	xigla	-	Xigla Absolute Banner Manager .NET の abm.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6291	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

227564	7.5	危険	tecnick.com	-	TCExam における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6288	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

227565	10	危険	stbernard	-	St. Bernard Open File Manager の Open File Manager service におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6281	2012-12-20 18:34	2007-12-19	Show	GitHub Exploit DB Packet Storm

227566	9.3	危険	SonicWALL	-	SonicWALL GLobal VPN Client のコンフィギュレーションファイルにおけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2007-6273	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

227567	5	警告	xigla	-	Absolute News Manager.NET における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2007-6271	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

227568	4.3	警告	xigla	-	Absolute News Manager.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6270	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

227569	7.5	危険	xigla	-	Absolute News Manager.NET の xlaabsolutenm.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6269	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

227570	5	警告	xigla	-	Absolute News Manager.NET の pages/default.aspx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6268	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200261	5.3	MEDIUM Network	canto	canto	The Canto plugin 1.3.0 for WordPress contains blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/get.php?subdomai…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-28977	2024-11-21 14:23	2020-11-30	Show	GitHub Exploit DB Packet Storm

200262	5.3	MEDIUM Network	canto	canto	The Canto plugin 1.3.0 for WordPress contains a blind SSRF vulnerability. It allows an unauthenticated attacker can make a request to any internal and external server via /includes/lib/detail.php?sub…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-28976	2024-11-21 14:23	2020-11-30	Show	GitHub Exploit DB Packet Storm

200263	9.8	CRITICAL Network	fujitsu	eternus_storage_dx200_s4_firmware	An issue was discovered on Fujitsu Eternus Storage DX200 S4 devices through 2020-11-25. After logging into the portal as a root user (using any web browser), the portal can be accessed with root priv…	CWE-287 Improper Authentication	CVE-2020-29127	2024-11-21 14:23	2020-11-30	Show	GitHub Exploit DB Packet Storm

200264	7.8	HIGH Local	vsolcn	v1600d4l_firmware v1600d-mini_firmware	An issue was discovered on V-SOL V1600D4L V1.01.49 and V1600D-MINI V1.01.48 OLT devices. A hardcoded RSA private key (specific to V1600D4L and V1600D-MINI) is contained in the firmware images.	CWE-798 Use of Hard-coded Credentials	CVE-2020-29383	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200265	7.8	HIGH Local	vsolcn	v1600d_firmware v1600g1_firmware v1600g2_firmware	An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. A hardcoded RSA private key (specific to V1600D, V1600G1, and V1600G2) is con…	CWE-798 Use of Hard-coded Credentials	CVE-2020-29382	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200266	9.8	CRITICAL Network	vsolcn	v1600d_firmware v1600d4l_firmware v1600d-mini_firmware v1600g1_firmware v1600g2_firmware	An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. Command injection can occur in "uplo…	CWE-78 OS Command	CVE-2020-29381	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200267	5.9	MEDIUM Network	vsolcn	v1600d_firmware v1600d4l_firmware v1600d-mini_firmware v1600g1_firmware v1600g2_firmware	An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. TELNET is offered by default but SSH…	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2020-29380	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200268	5.5	MEDIUM Local	vsolcn	v1600d4l_firmware v1600d-mini_firmware	An issue was discovered on V-SOL V1600D4L V1.01.49 and V1600D-MINI V1.01.48 OLT devices. During the process of updating the firmware, the update script starts a telnetd -l /bin/sh process that does n…	CWE-306 Missing Authentication for Critical Function	CVE-2020-29379	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200269	8.8	HIGH Network	vsolcn	v1600d_firmware v1600d4l_firmware v1600d-mini_firmware v1600g1_firmware v1600g2_firmware	An issue was discovered on V-SOL V1600D V2.03.69 and V2.03.57, V1600D4L V1.01.49, V1600D-MINI V1.01.48, V1600G1 V2.0.7 and V1.9.7, and V1600G2 V1.1.4 OLT devices. It is possible to elevate the privil…	CWE-287 Improper Authentication	CVE-2020-29378	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm

200270	9.8	CRITICAL Network	vsolcn	v1600d_firmware	An issue was discovered on V-SOL V1600D V2.03.69 OLT devices. The string K0LTdi@gnos312$ is compared to the password provided by the the remote attacker. If it matches, access is provided.	CWE-798 Use of Hard-coded Credentials	CVE-2020-29377	2024-11-21 14:23	2020-11-29	Show	GitHub Exploit DB Packet Storm