Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228281 4.4 警告 PWI, Inc. - Privatefirewall におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4968 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228282 5 警告 Gilles Vollant - WinImage におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4964 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228283 9.3 危険 Gilles Vollant - WinImage におけるコピー先のファイル名を偽造される脆弱性 CWE-Other
その他 		CVE-2007-4963 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228284 9.3 危険 Gilles Vollant - WinImage におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4962 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228285 4.3 警告 TinyWebGallery - TWG におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4958 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228286 7.5 危険 simpcms - SimpCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4953 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228287 5.1 警告 webmedia explorer - webmex における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4948 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228288 6.8 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4935 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228289 4.6 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4934 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228290 7.5 危険 shop-script - Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4933 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209741 9.8 CRITICAL
Network 		evenroute iqrouter_firmware In IQrouter through 3.3.1, remote attackers can control the device (restart network, reboot, upgrade, reset) because of Incorrect Access Control. Note: The vendor claims that this vulnerability can o… CWE-862
 Missing Authorization 		CVE-2020-11967 2024-11-21 13:59 2020-04-21 Show GitHub Exploit DB Packet Storm
209742 9.8 CRITICAL
Network 		evenroute iqrouter_firmware In IQrouter through 3.3.1, the Lua function reset_password in the web-panel allows remote attackers to change the root password arbitrarily. Note: The vendor claims that this vulnerability can only o… CWE-521
Weak Password Requirements  		CVE-2020-11966 2024-11-21 13:59 2020-04-21 Show GitHub Exploit DB Packet Storm
209743 9.8 CRITICAL
Network 		evenroute iqrouter_firmware In IQrouter through 3.3.1, there is a root user without a password, which allows attackers to gain full remote access via SSH. Note: The vendor claims that this vulnerability can only occur on a bran… CWE-287
Improper Authentication 		CVE-2020-11965 2024-11-21 13:59 2020-04-21 Show GitHub Exploit DB Packet Storm
209744 7.5 HIGH
Network 		evenroute iqrouter_firmware In IQrouter through 3.3.1, the Lua function diag_set_password in the web-panel allows remote attackers to change the root password arbitrarily. Note: The vendor claims that this vulnerability can onl… CWE-287
Improper Authentication 		CVE-2020-11964 2024-11-21 13:59 2020-04-21 Show GitHub Exploit DB Packet Storm
209745 - - - AdvaBuild uses a command queue to launch certain operations. An attacker who gains access to the command queue can use it to launch an attack by running any executable on the AdvaBuild node. The exec… - CVE-2020-11640 2024-11-21 13:58 2024-07-24 Show GitHub Exploit DB Packet Storm
209746 - - - An attacker could exploit the vulnerability by injecting garbage data or specially crafted data. Depending on the data injected each process might be affected differently. The process could crash or … - CVE-2020-11639 2024-11-21 13:58 2024-07-24 Show GitHub Exploit DB Packet Storm
209747 6.5 MEDIUM
Network 		netiq access_manager This allows the information exposure to unauthorized users. This issue affects NetIQ Access Manager using version 4.5 or before NVD-CWE-noinfo
CVE-2020-11843 2024-11-21 13:58 2024-06-11 Show GitHub Exploit DB Packet Storm
209748 - - - Allocation of Resources Without Limits or Throttling vulnerability in OpenText NetIQ Privileged Account Manager on Linux, Windows, 64 bit allows Flooding.This issue affects NetIQ Privileged Account M… - CVE-2020-11862 2024-11-21 13:58 2024-03-14 Show GitHub Exploit DB Packet Storm
209749 4.8 MEDIUM
Network 		stormshield stormshield_network_security An issue was discovered in Stormshield SNS 3.8.0. Authenticated Stored XSS in the admin login panel leads to SSL VPN credential theft. A malicious disclaimer file can be uploaded from the admin panel… CWE-79
Cross-site Scripting 		CVE-2020-11711 2024-11-21 13:58 2023-08-26 Show GitHub Exploit DB Packet Storm
209750 5.5 MEDIUM
Local 		canonical
debian 		ubuntu_linux
debian_linux 		It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack. NVD-CWE-Other
CVE-2020-11935 2024-11-21 13:58 2023-04-7 Show GitHub Exploit DB Packet Storm