Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228451	7.5	危険	turnkey web tools	-	TurnkeyWebTools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2549	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228452	6.4	警告	turnkey web tools	-	TurnkeyWebTools SunShop Shopping Cart の index.php における脆弱性	-	CVE-2007-2548	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228453	4.3	警告	turnkey web tools	-	TurnkeyWebTools SunShop Shopping Cart の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2547	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228454	6.8	警告	Simple Machines	-	SMF におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-2546	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228455	7.5	危険	XOOPS	-	XOOPS 用の Flashgames モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2543	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

228456	7.5	危険	workbench survival guide	-	workbench survival guide の header.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2542	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

228457	7.5	危険	versado cms	-	Versado CMS の includes/ajax_listado.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2541	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

228458	7.5	危険	pmecms	-	PMECMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2540	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

228459	7.8	危険	runcms	-	RunCms の show_files 関数における重要な情報 (ファイルの存在およびファイルメタデータ) を取得される脆弱性	-	CVE-2007-2539	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

228460	7.5	危険	runcms	-	RunCms の class/debug/debug_show.php における SQL インジェクションの脆弱性	-	CVE-2007-2538	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196841	6.1	MEDIUM Network	oauth2_proxy_project	oauth2_proxy	OAuth2 Proxy before 5.0 has an open redirect vulnerability. Authentication tokens could be silently harvested by an attacker. This has been patched in version 5.0.	CWE-601 Open Redirect	CVE-2020-5233	2024-11-21 14:33	2020-01-31	Show	GitHub Exploit DB Packet Storm

196842	7.5	HIGH Network	feedgen_project	feedgen	Feedgen (python feedgen) before 0.9.0 is susceptible to XML Denial of Service attacks. The feedgen library allows supplying XML as content for some of the available fields. This XML will be parsed …	CWE-776 XML Entity Expansion	CVE-2020-5227	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196843	7.5	HIGH Network	google	tensorflow	In TensorFlow before 1.15.2 and 2.0.1, converting a string (from Python) to a tf.float16 value results in a segmentation fault in eager mode as the format checks for this use case are only in the gra…	CWE-20 Improper Input Validation	CVE-2020-5215	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196844	9.8	CRITICAL Network	nethack	nethack	In NetHack before 3.6.5, an invalid extended command in value for the AUTOCOMPLETE configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escala…	CWE-120 Classic Buffer Overflow	CVE-2020-5211	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196845	9.8	CRITICAL Network	nethack	nethack	In NetHack before 3.6.5, detecting an unknown configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects syst…	CWE-120 Classic Buffer Overflow	CVE-2020-5214	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196846	9.8	CRITICAL Network	nethack	nethack	In NetHack before 3.6.5, too long of a value for the SYMBOL configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerabilit…	CWE-120 Classic Buffer Overflow	CVE-2020-5213	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196847	9.8	CRITICAL Network	nethack	nethack	In NetHack before 3.6.5, an extremely long value for the MENUCOLOR configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulne…	CWE-120 Classic Buffer Overflow	CVE-2020-5212	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196848	7.8	HIGH Local	nethack	nethack	In NetHack before 3.6.5, an invalid argument to the -w command line option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects s…	CWE-120 Classic Buffer Overflow	CVE-2020-5210	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196849	7.8	HIGH Local	nethack	nethack	In NetHack before 3.6.5, unknown options starting with -de and -i can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation. This vulnerability affects systems th…	CWE-120 Classic Buffer Overflow	CVE-2020-5209	2024-11-21 14:33	2020-01-29	Show	GitHub Exploit DB Packet Storm

196850	7.5	HIGH Network	jetbrains	ktor	In Ktor before 1.3.0, request smuggling is possible when running behind a proxy that doesn't handle Content-Length and Transfer-Encoding properly or doesn't handle \n as a headers separator.	CWE-444 HTTP Request Smuggling	CVE-2020-5207	2024-11-21 14:33	2020-01-28	Show	GitHub Exploit DB Packet Storm