Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228231	7.5	危険	web-app.org	-	web-app.org WebAPP の cgi-bin/cgi-lib/user.pl における脆弱性	-	CVE-2007-3419	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228232	6.5	警告	web-app.org	-	web-app.org WebAPP の cgi-bin/cgi-lib/forum_display.pl における他のユーザになりすまされる脆弱性	-	CVE-2007-3418	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228233	4.3	警告	web-app.org	-	web-app.org WebAPP の cgi-bin/cgi-lib/search.pl におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3417	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228234	5	警告	web-app.org web-app.net	-	web-app.org WebAPP などのプロフィールなどの管理におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-3416	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228235	7.5	危険	phpraider	-	phpRaider の index.php における SQL インジェクションの脆弱性	-	CVE-2007-3415	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228236	5	警告	sergey lyubka	-	Sergey Lyubka Simple HTTPD における重要な情報を取得される脆弱性	-	CVE-2007-3407	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228237	5	警告	sitedepth	-	SiteDepth CMS の ShowImage.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3404	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228238	7.5	危険	phpee	-	PPhlogger の include/get_userdata.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3399	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228239	2.1	注意	レッドハット	-	x86_64 プラットフォーム上で稼動している RHEL のカーネルにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2007-3379	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

228240	5	警告	レッドハット	-	redhat-cluster-suite における以前のリクエストから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2007-3373	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197151	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9150_firmware mdm9607_firmware mdm9640_firmware	u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Sna…	CWE-20 CWE-787 Improper Input Validation Out-of-bounds Write	CVE-2020-3621	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197152	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8053_firmware apq8096au_firmware apq8098_firmware bitra_firmware kamorta_firmware mdm9206_firmware mdm9150_firmware mdm9607_firmware mdm9640_firmware	u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Au…	CWE-190 Integer Overflow or Wraparound	CVE-2020-3620	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197153	7.0	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8098_firmware ipq8074_firmware kamorta_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9650_firmware	u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectiv…	CWE-787 CWE-367 Out-of-bounds Write Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-3619	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197154	7.8	HIGH Local	qualcomm	apq8098_firmware kamorta_firmware msm8998_firmware qcs404_firmware qcs605_firmware sda660_firmware sda845_firmware sdm630_firmware sdm636_firmware sdm660_firmware sdm670…	u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, …	NVD-CWE-noinfo	CVE-2020-3611	2024-11-21 14:31	2020-09-8	Show	GitHub Exploit DB Packet Storm

197155	6.5	MEDIUM Network	cisco	jabber	A vulnerability in Cisco Jabber software could allow an authenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper validation of message contents. An…	CWE-20 Improper Input Validation	CVE-2020-3498	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197156	6.8	MEDIUM Adjacent	cisco	rv340w_firmware rv340_firmware rv345_firmware rv345p_firmware	Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar…	CWE-20 Improper Input Validation	CVE-2020-3453	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197157	4.7	MEDIUM Network	cisco	rv340w_firmware rv340_firmware rv345_firmware rv345p_firmware	Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute ar…	CWE-20 Improper Input Validation	CVE-2020-3451	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197158	6.5	MEDIUM Network	cisco	asyncos	A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA), Cisco Content Security Management Appliance (SMA), and Cisco Web Security App…	CWE-522 Insufficiently Protected Credentials	CVE-2020-3547	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197159	5.3	MEDIUM Network	cisco	asyncos	A vulnerability in the web-based management interface of Cisco AsyncOS software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to access sensitive informatio…	CWE-20 Improper Input Validation	CVE-2020-3546	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

197160	6.7	MEDIUM Local	cisco	firepower_extensible_operating_system	A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buffer overflow condition. The vulnerability is due to incorrect bounds …	CWE-787 Out-of-bounds Write	CVE-2020-3545	2024-11-21 14:31	2020-09-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed