Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228691	7.5	危険	wbb2-addon	-	WBB2-Addon: Acrotxt の acrotxt.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4581	2012-12-20 18:33	2007-08-28	Show	GitHub Exploit DB Packet Storm

228692	7.2	危険	trustware	-	BufferZone の redlight.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2007-4580	2012-12-20 18:33	2007-08-28	Show	GitHub Exploit DB Packet Storm

228693	6.8	警告	ソフォス	-	Windows および Unix/Linux 用の Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2007-4578	2012-12-20 18:33	2007-08-28	Show	GitHub Exploit DB Packet Storm

228694	7.8	危険	ソフォス	-	Unix/Linux 用の Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-4577	2012-12-20 18:33	2007-08-28	Show	GitHub Exploit DB Packet Storm

228695	10	危険	リアルネットワークス	-	Helix DNA Server の RTSP サービスにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 CWE-20	CVE-2007-4561	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

228696	6.8	警告	Python Software Foundation	-	Python の tarfile モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4559	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

228697	4.3	警告	Tiki Software Community Association	-	Tikiwiki の tiki-remind_password.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4554	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

228698	5	警告	Thomson	-	Thomson ST 2030 SIP 電話機におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2007-4553	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

228699	4.3	警告	symantec veritas	-	Windows 用の Symantec Veritas Storage Foundation におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-4516	2012-12-20 18:33	2008-02-20	Show	GitHub Exploit DB Packet Storm

228700	4.3	警告	x-diesel	-	Unreal Commander における重要な情報 (メモリコンテンツ) を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-4547	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196371	9.8	CRITICAL Network	objectcomputing	micronaut	All versions of io.micronaut:micronaut-http-client before 1.2.11 and all versions from 1.3.0 before 1.3.2 are vulnerable to HTTP Request Header Injection due to not validating request headers passed …	CWE-444 HTTP Request Smuggling	CVE-2020-7611	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196372	9.8	CRITICAL Network	mongodb	bson	All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's _bsotype, leading to cases where an object is serialize…	CWE-502 Deserialization of Untrusted Data	CVE-2020-7610	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196373	6.5	MEDIUM Adjacent	gradle	plugin_publishing	All versions of com.gradle.plugin-publish before 0.11.0 are vulnerable to Insertion of Sensitive Information into Log File. When a plugin author publishes a Gradle plugin while running Gradle with th…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-7599	2024-11-21 14:37	2020-03-31	Show	GitHub Exploit DB Packet Storm

196374	6.1	MEDIUM Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could cause a Reflective Cross-site Scriptin…	CWE-79 Cross-site Scripting	CVE-2020-7482	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196375	6.1	MEDIUM Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could enable a successful Cross-site Scripti…	CWE-79 Cross-site Scripting	CVE-2020-7481	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196376	9.8	CRITICAL Network	schneider-electric	andover_continuum_9680_firmware andover_continuum_5740_firmware andover_continuum_5720_firmware andover_continuum_bcx4040_firmware andover_continuum_bcx9640_firmware andover_continuum_…	A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewab…	CWE-94 Code Injection	CVE-2020-7480	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196377	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-306: Missing Authentication for Critical Function vulnerability exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a local user to execute processes that ot…	CWE-306 Missing Authentication for Critical Function	CVE-2020-7479	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196378	7.5	HIGH Network	schneider-electric	interactive_graphical_scada_system	A CWE-22: Improper Limitation of a Pathname to a Restricted Directory exists in IGSS (Versions 14 and prior using the service: IGSSupdate), which could allow a remote unauthenticated attacker to read…	CWE-22 Path Traversal	CVE-2020-7478	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196379	7.8	HIGH Local	schneider-electric	ulti_zigbee_installation_toolkit	A CWE-426: Untrusted Search Path vulnerability exists in ZigBee Installation Kit (Versions prior to 1.0.1), which could cause execution of malicious code when a malicious file is put in the search pa…	CWE-426 Untrusted Search Path	CVE-2020-7476	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm

196380	7.5	HIGH Network	schneider-electric	140noe77101_firmware 140noe77111_firmware tsxh5744m_firmware tsxh5724m_firmware tsxp576634m_firmware tsxp57554m_firmware tsxp575634m_firmware tsxp57454m_firmware tsxp574634m_f…	A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Quantum Ethernet Network module 140NOE771x1 (Versions 7.0 and prior), Quantum processors with integrated Ethern…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-7477	2024-11-21 14:37	2020-03-24	Show	GitHub Exploit DB Packet Storm