Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227881 4.3 警告 xmb forum - XMB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6728 2012-12-20 18:34 2009-07-5 Show GitHub Exploit DB Packet Storm
227882 10 危険 synce - SynCE (SynCE-dccm) の vdccm におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6703 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
227883 7.5 危険 Simple DirectMedia Layer - SDL_image の IMG_gif.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6697 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227884 2.1 注意 webcalendar - WebCalendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6696 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227885 5 警告 VideoLAN - VideoLAN VLC の RTSP モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6684 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227886 5 警告 VideoLAN - VideoLAN VLC のブラウザプラグインにおける任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2007-6683 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227887 7.5 危険 VideoLAN - VideoLAN VLC の httpd_FileCallBack 関数 におけるフォーマットストリングの脆弱性 CWE-DesignError
CVE-2007-6682 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227888 7.5 危険 VideoLAN - VideoLAN VLC の modules/demux/subtitle.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6681 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227889 5 警告 uber uploader - UU の初期設定におけるアップロードに危険な拡張子を使用される脆弱性 CWE-16
環境設定 		CVE-2007-6676 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
227890 4.3 警告 rapidshare - RapidShare Database の Default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6674 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209931 5.7 MEDIUM
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-12046 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
209932 6.5 MEDIUM
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. Paths specified within the zip files used to update the SoftPAC firmware are not sanitized. As a result, an attacker with user privileges can gain arbit… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-12042 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
209933 9.8 CRITICAL
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router 		Apache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade t… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-11973 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
209934 9.8 CRITICAL
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router 		Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrad… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-11972 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
209935 7.5 HIGH
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router
communications_diameter_intelligence_hub 		Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0. NVD-CWE-noinfo
CVE-2020-11971 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
209936 8.8 HIGH
Network 		westerndigital wd_discovery The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting dis… CWE-352
 Origin Validation Error 		CVE-2020-12427 2024-11-21 13:59 2020-05-14 Show GitHub Exploit DB Packet Storm
209937 9.8 CRITICAL
Network 		zulipchat zulip_desktop Zulip Desktop before 5.2.0 has Missing SSL Certificate Validation because all validation was inadvertently disabled during an attempt to recognize the ignoreCerts option. CWE-295
Improper Certificate Validation  		CVE-2020-12637 2024-11-21 13:59 2020-05-10 Show GitHub Exploit DB Packet Storm
209938 8.8 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application… CWE-22
Path Traversal 		CVE-2020-12026 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
209939 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can b… CWE-129
 Improper Validation of Array Index 		CVE-2020-12022 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
209940 7.5 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An out-of-bounds vulnerability exists that may allow access to unauthorized data. CWE-125
Out-of-bounds Read 		CVE-2020-12018 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm