Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228341	4.3	警告	WebSVN	-	WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3056	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228342	7.5	危険	postnuke software foundation	-	PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3052	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228343	7.5	危険	revokesoft	-	RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性	-	CVE-2007-3051	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228344	10	危険	Vonage	-	Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性	-	CVE-2007-3047	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228345	4.3	警告	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性	-	CVE-2007-3022	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228346	7.5	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性	-	CVE-2007-3021	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228347	9.3	危険	zenturi	-	Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2987	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

228348	7.8	危険	techno dreams	-	Techno Dreams Web Directory / Search Engine におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-2979	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

228349	7.5	危険	Wanewsletter	-	WAnewsletter の newsletter.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2969	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

228350	7.5	危険	scallywag.org	-	Scallywag におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2960	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196381	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in the ShadowPlay component which may lead to local privilege escalation, code execution, denial of service or inf…	NVD-CWE-noinfo	CVE-2020-5990	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196382	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in its services in which a folder is created by nvcontainer.exe under normal user login with LOCAL_SYSTEM privileg…	NVD-CWE-noinfo	CVE-2020-5978	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196383	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which m…	CWE-426 Untrusted Search Path	CVE-2020-5977	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

196384	8.8	HIGH Network	tipsandtricks-hq	simple_download_monitor	SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL.	CWE-89 SQL Injection	CVE-2020-5651	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

196385	6.1	MEDIUM Network	tipsandtricks-hq	simple_download_monitor	Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5650	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

196386	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of…	CWE-88 Argument Injection	CVE-2020-5792	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196387	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache u…	CWE-78 OS Command	CVE-2020-5791	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196388	6.5	MEDIUM Network	nagios	nagios_xi	Cross-site request forgery in Nagios XI 5.7.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.	CWE-352 Origin Validation Error	CVE-2020-5790	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

196389	9.8	CRITICAL Network	onethird	onethird	Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5640	2024-11-21 14:34	2020-10-20	Show	GitHub Exploit DB Packet Storm

196390	8.8	HIGH Network	onwebchat	live_chat_-_live_support	Cross-site request forgery (CSRF) vulnerability in Live Chat - Live support version 3.1.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CWE-352 Origin Validation Error	CVE-2020-5642	2024-11-21 14:34	2020-10-15	Show	GitHub Exploit DB Packet Storm