Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228241	7.5	危険	powl	-	Powl の plugins/widgets/htmledit/htmledit.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3371	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228242	7.8	危険	Polycom	-	Polycom SoundPoint IP 601 SIP phone with BootROM におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3369	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228243	7.8	危険	Polycom	-	Polycom SoundPoint 上で稼動する IP 601 SIP phone with BootROM の HTTP サーバにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3368	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228244	10	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における情報を取得される脆弱性	-	CVE-2007-3357	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228245	7.8	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における重要な情報を取得される脆弱性	-	CVE-2007-3356	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228246	4.3	警告	scriptdevelopers.net	-	NetClassifieds Premium Edition におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3355	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228247	7.5	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における SQL インジェクションの脆弱性	-	CVE-2007-3354	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228248	4.3	警告	stephen ostermiller	-	Stephen Ostermiller Contact Form のプレビューフォームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3352	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228249	7.8	危険	sj labs	-	SJPhone SIP ソフトフォンにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3351	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228250	4.3	警告	シックス・アパート株式会社	-	MT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3342	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196381	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local privilege escalation, code execution, denial of service or inf…	NVD-CWE-noinfo	CVE-2020-5990	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196382	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileg…	NVD-CWE-noinfo	CVE-2020-5978	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196383	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which m…	CWE-426 Untrusted Search Path	CVE-2020-5977	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196384	8.8	HIGH Network	tipsandtricks-hq	simple_download_monitor	SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL.	CWE-89 SQL Injection	CVE-2020-5651	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

196385	6.1	MEDIUM Network	tipsandtricks-hq	simple_download_monitor	Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5650	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

196386	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of…	CWE-88 Argument Injection	CVE-2020-5792	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196387	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache u…	CWE-78 OS Command	CVE-2020-5791	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196388	6.5	MEDIUM Network	nagios	nagios_xi	Cross-site request forgery in Nagios XI 5.7.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.	CWE-352 Origin Validation Error	CVE-2020-5790	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196389	9.8	CRITICAL Network	onethird	onethird	Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5640	2024-11-21 14:34	2020-10-20	Show	GitHub Exploit DB Packet Storm

196390	8.8	HIGH Network	onwebchat	live_chat_-_live_support	Cross-site request forgery (CSRF) vulnerability in Live Chat - Live support version 3.1.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CWE-352 Origin Validation Error	CVE-2020-5642	2024-11-21 14:34	2020-10-15	Show	GitHub Exploit DB Packet Storm