Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228661	7.5	危険	revolutionproducts	-	Flexbb の includes/start.php における SQL インジェクションの脆弱性	-	CVE-2007-1729	2012-12-20 18:19	2007-03-28	Show	GitHub Exploit DB Packet Storm

228662	7.8	危険	ソニー・コンピュータエンタテインメント	-	PS3 および PSP の Remote Play 機能におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1728	2012-12-20 18:19	2007-03-28	Show	GitHub Exploit DB Packet Storm

228663	10	危険	reactos	-	ReactOS における脆弱性	-	CVE-2007-1724	2012-12-20 18:19	2007-03-10	Show	GitHub Exploit DB Packet Storm

228664	10	危険	signkorea	-	SignKorea SKCommAX ActiveX コントロールモジュールの DownloadCertificateExt 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-1722	2012-12-20 18:19	2007-03-27	Show	GitHub Exploit DB Packet Storm

228665	10	危険	realink	-	C-Arbre における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1721	2012-12-20 18:19	2007-03-27	Show	GitHub Exploit DB Packet Storm

228666	7.5	危険	sb-websoft	-	PHP-Nuke 用の Addressbook モジュールにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1720	2012-12-20 18:19	2007-03-27	Show	GitHub Exploit DB Packet Storm

228667	7.5	危険	ttcms	-	ttCMS の lib/db/ez_sql.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1708	2012-12-20 18:19	2007-03-26	Show	GitHub Exploit DB Packet Storm

228668	7.8	危険	yet another telephony engine	-	Yate の SIP チャネルモジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1693	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228669	6.8	警告	second sight software	-	Second Sight Software ActiveGS ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1691	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

228670	6.8	警告	second sight software	-	Second Sight Software ActiveGS ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1690	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210221	4.3	MEDIUM Network	redhat	openshift	A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the…	CWE-20 Improper Input Validation	CVE-2020-10715	2024-11-21 13:55	2020-09-17	Show	GitHub Exploit DB Packet Storm

210222	7.3	HIGH Local	postgresql	postgresql	The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not have fully-qualified paths. Executables in the directory where the installer loads or the current working…	CWE-426 Untrusted Search Path	CVE-2020-10733	2024-11-21 13:55	2020-09-17	Show	GitHub Exploit DB Packet Storm

210223	8.8	HIGH Network	vtenext	vtenext	A CSRF issue in vtecrm vtenext 19 CE allows attackers to carry out unwanted actions on an administrator's behalf, such as uploading files, adding users, and deleting accounts.	CWE-352 Origin Validation Error	CVE-2020-10229	2024-11-21 13:55	2020-09-15	Show	GitHub Exploit DB Packet Storm

210224	8.8	HIGH Network	vtenext	vtenext	A file upload vulnerability in vtecrm vtenext 19 CE allows authenticated users to upload files with a .pht extension, resulting in remote code execution.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-10228	2024-11-21 13:55	2020-09-15	Show	GitHub Exploit DB Packet Storm

210225	6.1	MEDIUM Network	vtenext	vtenext	A cross-site scripting (XSS) vulnerability in the messages module of vtecrm vtenext 19 CE allows attackers to inject arbitrary JavaScript code via the From field of an email.	CWE-79 Cross-site Scripting	CVE-2020-10227	2024-11-21 13:55	2020-09-15	Show	GitHub Exploit DB Packet Storm

210226	5.5	MEDIUM Local	linux	linux_kernel	A flaw was found in the Linux kernel's implementation of GRO in versions before 5.2. This flaw allows an attacker with local access to crash the system.	CWE-416 Use After Free	CVE-2020-10720	2024-11-21 13:55	2020-09-4	Show	GitHub Exploit DB Packet Storm

210227	8.8	HIGH Network	github	github	A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration of the underlying parsers use…	NVD-CWE-noinfo	CVE-2020-10518	2024-11-21 13:55	2020-08-28	Show	GitHub Exploit DB Packet Storm

210228	4.3	MEDIUM Network	github	github	An improper access control vulnerability was identified in GitHub Enterprise Server that allowed authenticated users of the instance to determine the names of unauthorized private repositories given …	NVD-CWE-noinfo	CVE-2020-10517	2024-11-21 13:55	2020-08-28	Show	GitHub Exploit DB Packet Storm

210229	6.8	MEDIUM Physics	sintef	urx	Universal Robots controller execute URCaps (zip files containing Java-powered applications) without any permission restrictions and a wide API that presents many primitives that can compromise the ov…	CWE-269 Improper Privilege Management	CVE-2020-10290	2024-11-21 13:55	2020-08-22	Show	GitHub Exploit DB Packet Storm

210230	9.8	CRITICAL Network	dronecode	micro_air_vehicle_link	The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autop…	NVD-CWE-Other	CVE-2020-10283	2024-11-21 13:55	2020-08-20	Show	GitHub Exploit DB Packet Storm