Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227911 7.5 危険 speedtech - SpeedTech PHP Library における PHP リモートファイルインクルージョンの脆弱性 CWE-20
CWE-94
CVE-2007-4738 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
227912 7.5 危険 speedtech - STPHPLibrary における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4737 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
227913 10 危険 トレンドマイクロ - Trend Micro ServerProtect の TMReg.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4731 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
227914 5 警告 weboddity - Web Oddity におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4726 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
227915 7.5 危険 weblogicnet - Weblogicnet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4715 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
227916 7.5 危険 yvora - Yvora の error_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4714 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
227917 4.3 警告 roi revolution - Urchin の urchin.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4713 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
227918 4.3 警告 www.toms-seiten.at - Toms Gaestebuch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4711 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
227919 7.5 危険 phpBB - phpBB 用の Links MOD における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4653 2012-12-20 18:33 2007-09-4 Show GitHub Exploit DB Packet Storm
227920 6.4 警告 xgb - xGB の xGB.php における不特定の変更を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4637 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210201 5.5 MEDIUM
Local 		psyprax psyprax An issue was discovered in Psyprax before 3.2.2. The file %PROGRAMDATA%\Psyprax32\PPScreen.ini contains a hash for the lockscreen (aka screensaver) of the application. If that entry is removed, the l… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-10553 2024-11-21 13:55 2021-02-6 Show GitHub Exploit DB Packet Storm
210202 8.1 HIGH
Network 		psyprax psyprax An issue was discovered in Psyprax before 3.2.2. The Firebird database is accessible with the default user sysdba and password masterke after installation. This allows any user to access it and read … CWE-1188
 Insecure Default Initialization of Resource 		CVE-2020-10552 2024-11-21 13:55 2021-02-6 Show GitHub Exploit DB Packet Storm
210203 5.5 MEDIUM
Local 		newmediacompany smarty An issue was discovered in New Media Smarty before 9.10. Passwords are stored in the database in an obfuscated format that can be easily reversed. The file data.mdb contains these obfuscated password… CWE-326
Inadequate Encryption Strength 		CVE-2020-10375 2024-11-21 13:55 2021-02-6 Show GitHub Exploit DB Packet Storm
210204 6.5 MEDIUM
Network 		iobit advanced_systemcare The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode … NVD-CWE-noinfo
CVE-2020-10234 2024-11-21 13:55 2021-02-6 Show GitHub Exploit DB Packet Storm
210205 9.8 CRITICAL
Network 		epikur epikur An issue was discovered in Epikur before 20.1.1. The Epikur server contains the checkPasswort() function that, upon user login, checks the submitted password against the user password's MD5 hash stor… CWE-287
Improper Authentication 		CVE-2020-10539 2024-11-21 13:55 2021-02-5 Show GitHub Exploit DB Packet Storm
210206 5.5 MEDIUM
Local 		epikur epikur An issue was discovered in Epikur before 20.1.1. It stores the secret passwords of the users as MD5 hashes in the database. MD5 can be brute-forced efficiently and should not be used for such purpose… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-10538 2024-11-21 13:55 2021-02-5 Show GitHub Exploit DB Packet Storm
210207 7.8 HIGH
Local 		epikur epikur An issue was discovered in Epikur before 20.1.1. A Glassfish 4.1 server with a default configuration is running on TCP port 4848. No password is required to access it with the administrator account. CWE-306
Missing Authentication for Critical Function 		CVE-2020-10537 2024-11-21 13:55 2021-02-5 Show GitHub Exploit DB Packet Storm
210208 9.8 CRITICAL
Network 		proofpoint insider_threat_management_server The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteImage API. The vulnerability allows an anonymous… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10658 2024-11-21 13:55 2021-01-6 Show GitHub Exploit DB Packet Storm
210209 7.2 HIGH
Network 		proofpoint insider_threat_management_server The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM web console's ImportAlertRules feature. The vulnerability allows a remote … CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10657 2024-11-21 13:55 2021-01-6 Show GitHub Exploit DB Packet Storm
210210 9.8 CRITICAL
Network 		proofpoint insider_threat_management_server The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteWindowMouseWithChunksV2 API. The vulnerability a… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10656 2024-11-21 13:55 2021-01-6 Show GitHub Exploit DB Packet Storm