Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227791 10 危険 realink - C-Arbre における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1721 2012-12-20 18:19 2007-03-27 Show GitHub Exploit DB Packet Storm
227792 7.5 危険 sb-websoft - PHP-Nuke 用の Addressbook モジュールにおけるディレクトリトラバーサルの脆弱性 - CVE-2007-1720 2012-12-20 18:19 2007-03-27 Show GitHub Exploit DB Packet Storm
227793 7.5 危険 ttcms - ttCMS の lib/db/ez_sql.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1708 2012-12-20 18:19 2007-03-26 Show GitHub Exploit DB Packet Storm
227794 7.8 危険 yet another telephony engine - Yate の SIP チャネルモジュールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1693 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
227795 6.8 警告 second sight software - Second Sight Software ActiveGS ActiveX コントロール におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1691 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
227796 6.8 警告 second sight software - Second Sight Software ActiveGS ActiveX コントロール におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1690 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
227797 10 危険 シマンテック - Norton Personal Firewall および Internet Security 用の ISAlertDataCOM ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-1689 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
227798 9.3 危険 solidworks - sldimdownload.dll の SolidWorks sldimdownload ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2007-1684 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
227799 9.3 危険 Yahoo! - Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1680 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
227800 7.5 危険 Python Software Foundation - Python の Modules/zlib におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1657 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199801 9.8 CRITICAL
Network 		simple_college_project simple_college A SQL injection vulnerability in Simple College Website 1.0 allows remote unauthenticated attackers to bypass the admin authentication mechanism in college_website/admin/ajax.php?action=login, thus g… CWE-89
SQL Injection 		CVE-2020-28172 2024-11-21 14:22 2021-03-31 Show GitHub Exploit DB Packet Storm
199802 7.5 HIGH
Network 		projectacrn acrn ACRN through 2.2 has a devicemodel/hw/pci/virtio/virtio.c NULL Pointer Dereference. CWE-476
 NULL Pointer Dereference 		CVE-2020-28346 2024-11-21 14:22 2021-03-26 Show GitHub Exploit DB Packet Storm
199803 9.8 CRITICAL
Network 		gulpjs copy-props The package copy-props before 2.0.5 are vulnerable to Prototype Pollution via the main functionality. NVD-CWE-Other
CVE-2020-28503 2024-11-21 14:22 2021-03-23 Show GitHub Exploit DB Packet Storm
199804 7.5 HIGH
Network 		crawlerdetect_project crawlerdetect This affects the package es6-crawler-detect before 3.1.3. No limitation of user agent string length supplied to regex operators. NVD-CWE-Other
CVE-2020-28501 2024-11-21 14:22 2021-03-22 Show GitHub Exploit DB Packet Storm
199805 9.6 CRITICAL
Network 		mydbr mydbr myDBR 5.8.3/4262 is affected by: Cross Site Scripting (XSS). The impact is: execute arbitrary code (remote). The component is: CSRF Token. The attack vector is: CSRF token injection to XSS. CWE-79
Cross-site Scripting 		CVE-2020-28149 2024-11-21 14:22 2021-03-16 Show GitHub Exploit DB Packet Storm
199806 5.5 MEDIUM
Local 		siemens solid_edge A vulnerability has been identified in Solid Edge SE2020 (All Versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP3). When opening a specially crafted SEECTCXML file, the application co… - CVE-2020-28387 2024-11-21 14:22 2021-03-16 Show GitHub Exploit DB Packet Storm
199807 7.8 HIGH
Local 		siemens solid_edge A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data … CWE-787
 Out-of-bounds Write 		CVE-2020-28385 2024-11-21 14:22 2021-03-16 Show GitHub Exploit DB Packet Storm
199808 6.1 MEDIUM
Network 		inetsoftware i-net_clear_reports I-Net Software Clear Reports 20.10.136 web application accepts a user-controlled input that specifies a link to an external site, and uses the user supplied data in a Redirect. CWE-601
Open Redirect 		CVE-2020-28150 2024-11-21 14:22 2021-03-10 Show GitHub Exploit DB Packet Storm
199809 7.5 HIGH
Network 		nats nats_server This affects all versions of package github.com/nats-io/nats-server/server. Untrusted accounts are able to crash the server using configs that represent a service export/import cycles. Disclaimer fro… NVD-CWE-noinfo
CVE-2020-28466 2024-11-21 14:22 2021-03-7 Show GitHub Exploit DB Packet Storm
199810 8.1 HIGH
Network 		xmlhttprequest_project xmlhttprequest This affects the package xmlhttprequest before 1.7.0; all versions of package xmlhttprequest-ssl. Provided requests are sent synchronously (async=False on xhr.open), malicious user input flowing into… CWE-94
Code Injection 		CVE-2020-28502 2024-11-21 14:22 2021-03-6 Show GitHub Exploit DB Packet Storm