Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228291	7.8	危険	zomplog	-	Zomplog の upload/force_download.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2157	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228292	7.5	危険	rezervi generic	-	Rezervi Generic における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2156	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228293	7.8	危険	phpfaber	-	phpFaber TopSites の template.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2155	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228294	10	危険	stephen craton	-	Stephen Craton Chatness における権限を取得される脆弱性	-	CVE-2007-2149	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228295	6.5	警告	stephen craton	-	Stephen Craton Chatness の admin/save.php における .html ファイルへ PHP コードを挿入される脆弱性	-	CVE-2007-2148	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228296	7.5	危険	sitebar	-	Sitebar における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2088	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228297	6.9	警告	zonelabs	-	Check Point Zone Labs ZoneAlarm の vsdatant.sys におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2083	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

228298	7.5	危険	xampp	-	Windows 用の XAMPP における SQL インジェクションの脆弱性	-	CVE-2007-2080	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

228299	9.3	危険	xampp	-	Windows 用の XAMPP におけるバッファオーバーフローの脆弱性	-	CVE-2007-2079	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

228300	6.9	警告	scramdisk 4 linux	-	ScramDisk 4 Linux における権限を取得される脆弱性	-	CVE-2007-2075	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199901	8.1	HIGH Network	terra-master	tos	Incorrect Access Control vulnerability in TerraMaster TOS <= 4.2.06 allows remote authenticated attackers to bypass read-only restriction and obtain full access to any folder within the NAS	NVD-CWE-noinfo	CVE-2020-29189	2024-11-21 14:23	2020-12-25	Show	GitHub Exploit DB Packet Storm

199902	7.1	HIGH Local	malwarebytes	malwarebytes endpoint_protection	In Malwarebytes Free 4.1.0.56, a symbolic link may be used delete an arbitrary file on the system by exploiting the local quarantine system.	CWE-59 Link Following	CVE-2020-28641	2024-11-21 14:23	2020-12-23	Show	GitHub Exploit DB Packet Storm

199903	8.8	HIGH Network	odoo	odoo	A sandboxing issue in Odoo Community 11.0 through 13.0 and Odoo Enterprise 11.0 through 13.0, when running with Python 3.6 or later, allows remote authenticated users to execute arbitrary code, leadi…	NVD-CWE-noinfo	CVE-2020-29396	2024-11-21 14:23	2020-12-23	Show	GitHub Exploit DB Packet Storm

199904	6.5	MEDIUM Network	sonatype	nexus_repository_manager	Sonatype Nexus Repository Manager 3.x before 3.29.0 allows a user with admin privileges to configure the system to gain access to content outside of NXRM via an XXE vulnerability. Fixed in version 3.…	CWE-611 XXE	CVE-2020-29436	2024-11-21 14:23	2020-12-17	Show	GitHub Exploit DB Packet Storm

199905	8.8	HIGH Network	epson	eps_tse_server_8_firmware	Lack of an anti-CSRF token in the entire administrative interface in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to force an administrator to execute external POST requests by…	CWE-352 Origin Validation Error	CVE-2020-28931	2024-11-21 14:23	2020-12-17	Show	GitHub Exploit DB Packet Storm

199906	5.4	MEDIUM Network	epson	eps_tse_server_8_firmware	A Cross-Site Scripting (XSS) issue in the 'update user' and 'delete user' functionalities in settings/users.php in EPSON EPS TSE Server 8 (21.0.11) allows an authenticated attacker to inject a JavaSc…	CWE-79 Cross-site Scripting	CVE-2020-28930	2024-11-21 14:23	2020-12-17	Show	GitHub Exploit DB Packet Storm

199907	9.8	CRITICAL Network	epson	eps_tse_server_8_firmware	Unrestricted access to the log downloader functionality in EPSON EPS TSE Server 8 (21.0.11) allows an unauthenticated attacker to remotely retrieve administrative hashed credentials via the maintenan…	CWE-306 Missing Authentication for Critical Function	CVE-2020-28929	2024-11-21 14:23	2020-12-17	Show	GitHub Exploit DB Packet Storm

199908	7.5	HIGH Network	p11-kit_project debian oracle	p11-kit debian_linux communications_cloud_native_core_policy	An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the…	CWE-787 Out-of-bounds Write	CVE-2020-29363	2024-11-21 14:23	2020-12-16	Show	GitHub Exploit DB Packet Storm

199909	5.3	MEDIUM Network	p11-kit_project	p11-kit	An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When…	CWE-125 Out-of-bounds Read	CVE-2020-29362	2024-11-21 14:23	2020-12-16	Show	GitHub Exploit DB Packet Storm

199910	7.5	HIGH Network	p11-kit_project debian	p11-kit debian_linux	An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow…	CWE-190 Integer Overflow or Wraparound	CVE-2020-29361	2024-11-21 14:23	2020-12-16	Show	GitHub Exploit DB Packet Storm