Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228351	8.5	危険	Zen Cart	-	Zen Cart におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3597	2012-12-20 18:33	2007-07-6	Show	GitHub Exploit DB Packet Storm

228352	7.5	危険	vbzoom	-	VBZooM の reply.php における SQL インジェクションの脆弱性	-	CVE-2007-3588	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

228353	7.5	危険	postnuke software foundation	-	PNphpBB2 の viewforum.php における SQL インジェクションの脆弱性	-	CVE-2007-3584	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

228354	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3580	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228355	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3579	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228356	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3578	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228357	4.3	警告	PHPIDS	-	PHP iCalendar の print.php における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3577	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

228358	9.3	危険	yoggie	-	Yoggie Pico and Pico Pro 上の Web インターフェースにおける任意のコマンドを実行される脆弱性	-	CVE-2007-3572	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

228359	4.3	警告	softlink europe	-	Oliver Library Management System におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3569	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

228360	4.3	警告	webixir	-	Efendy Blog の ara.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3561	2012-12-20 18:19	2007-07-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209911	9.8	CRITICAL Network	opmantek	open-audit	An issue was discovered in Open-AudIT 3.2.2. There are Multiple SQL Injections.	CWE-89 SQL Injection	CVE-2020-11942	2024-11-21 13:58	2020-04-30	Show	GitHub Exploit DB Packet Storm

209912	8.8	HIGH Adjacent	cerner	medico	Cerner medico 26.00 has a Local Buffer Overflow (issue 3 of 3).	CWE-120 Classic Buffer Overflow	CVE-2020-11677	2024-11-21 13:58	2020-04-29	Show	GitHub Exploit DB Packet Storm

209913	8.8	HIGH Adjacent	cerner	medico	Cerner medico 26.00 has a Local Buffer Overflow (issue 2 of 3).	CWE-120 Classic Buffer Overflow	CVE-2020-11676	2024-11-21 13:58	2020-04-29	Show	GitHub Exploit DB Packet Storm

209914	8.8	HIGH Adjacent	cerner	medico	Cerner medico 26.00 has a Local Buffer Overflow (issue 1 of 3).	CWE-120 Classic Buffer Overflow	CVE-2020-11675	2024-11-21 13:58	2020-04-29	Show	GitHub Exploit DB Packet Storm

209915	8.8	HIGH Adjacent	cerner	medico	Cerner medico 26.00 allows variable reuse, possibly causing data corruption.	NVD-CWE-noinfo	CVE-2020-11674	2024-11-21 13:58	2020-04-29	Show	GitHub Exploit DB Packet Storm

209916	7.0	HIGH Local	linux canonical debian fedoraproject netapp	linux_kernel ubuntu_linux debian_linux fedora cloud_backup element_software steelstore_cloud_integrated_storage solidfire hci_management_node active_iq_unified_manager s…	In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enable_sacf_uaccess in arch/s390/lib/uaccess.c that fails…	CWE-362 Race Condition	CVE-2020-11884	2024-11-21 13:58	2020-04-29	Show	GitHub Exploit DB Packet Storm

209917	3.3	LOW Local	qemu	qemu	An integer overflow was found in QEMU 4.0.1 through 4.2.0 in the way it implemented ATI VGA emulation. This flaw occurs in the ati_2d_blt() routine in hw/display/ati-2d.c while handling MMIO write op…	CWE-190 Integer Overflow or Wraparound	CVE-2020-11869	2024-11-21 13:58	2020-04-28	Show	GitHub Exploit DB Packet Storm

209918	8.8	HIGH Network	opmantek	open-audit	An issue was discovered in Open-AudIT 3.2.2. There is OS Command injection in Discovery.	CWE-78 OS Command	CVE-2020-11941	2024-11-21 13:58	2020-04-28	Show	GitHub Exploit DB Packet Storm

209919	6.1	MEDIUM Network	rukovoditel	rukovoditel	In Rukovoditel 2.5.2, there is a stored XSS vulnerability on the application structure --> user access groups page. Thus, an attacker can inject malicious script to steal all users' valuable data.	CWE-79 Cross-site Scripting	CVE-2020-11822	2024-11-21 13:58	2020-04-28	Show	GitHub Exploit DB Packet Storm

209920	5.3	MEDIUM Network	rukovoditel	rukovoditel	In Rukovoditel 2.5.2, users' passwords and usernames are stored in a cookie with URL encoding, base64 encoding, and hashing. Thus, an attacker can easily apply brute force on them.	CWE-522 Insufficiently Protected Credentials	CVE-2020-11821	2024-11-21 13:58	2020-04-28	Show	GitHub Exploit DB Packet Storm