Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228611	7.5	危険	Vastal I-Tech & Co.	-	Buddy Zone における SQL インジェクションの脆弱性	-	CVE-2007-3526	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228612	7.8	危険	ripe website manager	-	Ripe Website Manager における設定情報を取得される脆弱性	-	CVE-2007-3525	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228613	6.8	警告	ripe website manager	-	Ripe Website Manager における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3524	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228614	6.8	警告	sphpell	-	sPHPell における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3522	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228615	7.5	危険	wesmo	-	phpEventCalendar の eventdisplay.php における SQL インジェクションの脆弱性	-	CVE-2007-3519	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228616	10	危険	sweetphp	-	TotalCalendar の view_event.php における SQL インジェクションの脆弱性	-	CVE-2007-3515	2012-12-20 18:19	2007-07-3	Show	GitHub Exploit DB Packet Storm

228617	7.5	危険	シマンテック	-	Windows Servers 用の Symantec Backup Exec におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-3509	2012-12-20 18:19	2007-07-11	Show	GitHub Exploit DB Packet Storm

228618	6.4	警告	qt-cute	-	QuickTalk フォーラムにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3505	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

228619	10	危険	xeforum	-	Xeweb XEForum における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3500	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

228620	6.4	警告	slackroll	-	SlackRoll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3499	2012-12-20 18:19	2007-06-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209701	5.5	MEDIUM Local	phoenixcontact	plcnext_firmware	On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks.	CWE-200 Information Exposure	CVE-2020-12518	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

209702	9.0	CRITICAL Network	phoenixcontact	plcnext_firmware	On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an authenticated low privileged user could embed malicious Javascript code to gain admin rights when the admin user visits the vu…	CWE-79 Cross-site Scripting	CVE-2020-12517	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

209703	9.1	CRITICAL Network	phoenixcontact	tc_mguard_rs4000_4g_vzw_vpn_firmware tc_mguard_rs4000_4g_att_vpn_firmware fl_mguard_rs4004_tx\/dtx_firmware fl_mguard_rs4004_tx\/dtx_vpn_firmware tc_mguard_rs4000_3g_vpn_firmware tc_mg…	On Phoenix Contact mGuard Devices versions before 8.8.3 LAN ports get functional after reboot even if they are disabled in the device configuration. For mGuard devices with integrated switch on the L…	CWE-909 Missing Initialization of Resource	CVE-2020-12523	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

209704	9.8	CRITICAL Network	wago	pfc_100_firmware pfc_200_firmware touch_panel_600_standard_firmware touch_panel_600_advanced_firmware touch_panel_600_marine_firmware	The reported vulnerability allows an attacker who has network access to the device to execute code with specially crafted packets in WAGO Series PFC 100 (750-81xx/xxx-xxx), Series PFC 200 (750-82xx/x…	CWE-78 OS Command	CVE-2020-12522	2024-11-21 13:59	2020-12-18	Show	GitHub Exploit DB Packet Storm

209705	6.8	MEDIUM Network	arubanetworks	edgeconnect_enterprise	The configuration backup/restore function in Silver Peak Unity ECOSTM (ECOS) appliance software was found to directly incorporate the user-controlled config filename in a subsequent shell command, al…	CWE-78 OS Command	CVE-2020-12149	2024-11-21 13:59	2020-12-12	Show	GitHub Exploit DB Packet Storm

209706	6.8	MEDIUM Network	arubanetworks	edgeconnect_enterprise	A command injection flaw identified in the nslookup API in Silver Peak Unity ECOSTM (ECOS) appliance software could allow an attacker to execute arbitrary commands with the privileges of the web serv…	CWE-78 OS Command	CVE-2020-12148	2024-11-21 13:59	2020-12-12	Show	GitHub Exploit DB Packet Storm

209707	4.9	MEDIUM Network	broadcom	symantec_messaging_gateway	An information disclosure flaw allows a malicious, authenticated, privileged web UI user to obtain a password for a remote SCP backup server that they might not otherwise be authorized to access. Thi…	NVD-CWE-noinfo	CVE-2020-12595	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

209708	7.2	HIGH Network	broadcom	symantec_messaging_gateway	A privilege escalation flaw allows a malicious, authenticated, privileged CLI user to escalate their privileges on the system and gain full control over the SMG appliance. This affects SMG prior to 1…	NVD-CWE-noinfo	CVE-2020-12594	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

209709	7.5	HIGH Network	wago	750-352_firmware 750-831_firmware 750-852_firmware 750-880_firmware 750-881_firmware 750-889_firmware 750-331_firmware 750-829_firmware 750-882_firmware 750-885_firmware	Older firmware versions (FW1 up to FW10) of the WAGO PLC family 750-88x and 750-352 are vulnerable for a special denial of service attack.	NVD-CWE-noinfo	CVE-2020-12516	2024-11-21 13:59	2020-12-10	Show	GitHub Exploit DB Packet Storm

209710	7.5	HIGH Network	phoenixcontact	btp_2043w_firmware btp_2070w_firmware btp_2102w_firmware	Uncontrolled Resource Consumption can be exploited to cause the Phoenix Contact HMIs BTP 2043W, BTP 2070W and BTP 2102W in all versions to become unresponsive and not accurately update the display co…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12524	2024-11-21 13:59	2020-12-3	Show	GitHub Exploit DB Packet Storm