Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228761	4.4	警告	Zend Technologies Ltd.	-	Zend Platform の ini_modifier における system.ini ファイルを変更される脆弱性	-	CVE-2007-1369	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

228762	4.3	警告	VirtueMart	-	VirtueMart の virtuemart_parser.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1361	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

228763	6.6	警告	サン・マイクロシステムズ	-	Sun Fire X2100M2 および X2200M2 用の ipmitool における権限を取得される脆弱性	-	CVE-2007-1346	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

228764	7.5	危険	webcalendar	-	Craig Knudsen WebCalendar の includes/functions.php における任意のグローバル変数を設定される脆弱性	-	CVE-2007-1343	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

228765	5	警告	Simple Invoices	-	Simple Invoices の include/auth/auth.php における重要な情報を取得される脆弱性	-	CVE-2007-1341	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

228766	7.5	危険	weltennetz	-	Weltennetz News-Letterman の eintrag.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1340	2012-12-20 18:19	2007-03-8	Show	GitHub Exploit DB Packet Storm

228767	7.8	危険	VMware	-	VMware Workstation の仮想マシンプロセスにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1337	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228768	9.3	危険	tks banking solutions	-	TKS Banking Solutions ePortfolio Java におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-1332	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

228769	4.3	警告	tks banking solutions	-	TKS Banking Solutions ePortfolio Java におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1331	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

228770	7.8	危険	silcnet	-	silc-server の apps/silcd/command.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1327	2012-12-20 18:19	2007-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196671	8.8	HIGH Network	amcrest	1080-lite_8ch_firmware amdv10814-h5_firmware ipm-721_firmware ip2m-841_firmware ip2m-841-v3_firmware ip2m-853ew_firmware ip2m-858w_firmware ip2m-866w_firmware ip2m-866ew_firmw…	Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2020-5735	2024-11-21 14:34	2020-04-8	Show	GitHub Exploit DB Packet Storm

196672	7.5	HIGH Network	solarwinds	dameware	Classic buffer overflow in SolarWinds Dameware allows a remote, unauthenticated attacker to cause a denial of service by sending a large 'SigPubkeyLen' during ECDH key exchange.	CWE-120 Classic Buffer Overflow	CVE-2020-5734	2024-11-21 14:34	2020-04-7	Show	GitHub Exploit DB Packet Storm

196673	7.8	HIGH Local	symantec	data_center_security	Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to …	NVD-CWE-noinfo	CVE-2020-5832	2024-11-21 14:34	2020-04-7	Show	GitHub Exploit DB Packet Storm

196674	9.8	CRITICAL Network	learndash	learndash	LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection.	CWE-89 SQL Injection	CVE-2020-6009	2024-11-21 14:34	2020-04-2	Show	GitHub Exploit DB Packet Storm

196675	6.1	MEDIUM Network	auth0	wp-auth0	A stored cross-site scripting (XSS) vulnerability exists in the Auth0 plugin before 4.0.0 for WordPress via the settings page.	CWE-79 Cross-site Scripting	CVE-2020-5392	2024-11-21 14:34	2020-04-1	Show	GitHub Exploit DB Packet Storm

196676	8.8	HIGH Network	auth0	wp-auth0	Cross-site request forgery (CSRF) vulnerabilities exist in the Auth0 plugin before 4.0.0 for WordPress via the domain field.	CWE-352 Origin Validation Error	CVE-2020-5391	2024-11-21 14:34	2020-04-1	Show	GitHub Exploit DB Packet Storm

196677	7.5	HIGH Network	yamaha	rtx830_firmware nvr510_firmware nvr700w_firmware rtx1210_firmware rtx5000_firmware rtx3500_firmware fwx120_firmware rtx810_firmware nvr500_firmware rtx1200_firmware	Yamaha LTE VoIP Router(NVR700W firmware Rev.15.00.15 and earlier), Yamaha Gigabit VoIP Router(NVR510 firmware Rev.15.01.14 and earlier), Yamaha Gigabit VPN Router(RTX810 firmware Rev.11.01.33 and ear…	NVD-CWE-noinfo	CVE-2020-5548	2024-11-21 14:34	2020-04-1	Show	GitHub Exploit DB Packet Storm

196678	9.8	CRITICAL Network	lifterlms	lifterlms	LifterLMS Wordpress plugin version below 3.37.15 is vulnerable to arbitrary file write leading to remote code execution	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-6008	2024-11-21 14:34	2020-04-1	Show	GitHub Exploit DB Packet Storm

196679	7.5	HIGH Network	grandstream	ucm6202_firmware ucm6204_firmware ucm6208_firmware	The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the CTI server on port 8888. A remote unauthenticated attacker can invoke the challenge action with a crafted use…	CWE-89 SQL Injection	CVE-2020-5726	2024-11-21 14:34	2020-03-31	Show	GitHub Exploit DB Packet Storm

196680	5.9	MEDIUM Network	grandstream	ucm6202_firmware ucm6204_firmware ucm6208_firmware	The Grandstream UCM6200 series before 1.0.20.22 is vulnerable to an SQL injection via the HTTP server's websockify endpoint. A remote unauthenticated attacker can invoke the login action with a craft…	CWE-89 SQL Injection	CVE-2020-5725	2024-11-21 14:34	2020-03-31	Show	GitHub Exploit DB Packet Storm