Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228771	5.8	警告	streamripper	-	Streamripper の lib/http.c におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4337	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

228772	5	警告	qbik	-	Qbik WinGate の SMTP サーバコンポーネントにおけるフォーマットストリングの脆弱性	-	CVE-2007-4335	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

228773	4.3	警告	php-stats	-	Php-stats の whois.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4334	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

228774	4	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4319	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228775	4.3	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4318	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228776	4.3	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4317	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228777	4.3	警告	ZyXEL	-	Zyxel Zywall 2 上で稼動する ZyNOS の管理インターフェースにおける管理アクションを実行される脆弱性	-	CVE-2007-4316	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228778	6.8	警告	pixlie	-	Pixlie の pixlie.php におけるリモートディレクトリツリーのファイルを読み込まれる脆弱性	-	CVE-2007-4314	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228779	4.3	警告	サン・マイクロシステムズ	-	Sun Solaris の finger デーモンにおける特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性	-	CVE-2007-4310	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

228780	4.3	警告	Lamp Design	-	Storesprite におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4307	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209581	6.5	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab before version 12.10.13 that allowed a project member with limited permissions to view the project security dashboard.	NVD-CWE-noinfo	CVE-2020-13320	2024-11-21 14:01	2020-10-1	Show	GitHub Exploit DB Packet Storm

209582	4.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting versions prior to 13.1.2, 13.0.8 and 12.10.13. Missing permission check for adding time spent on an issue.	CWE-862 Missing Authorization	CVE-2020-13319	2024-11-21 14:01	2020-10-1	Show	GitHub Exploit DB Packet Storm

209583	7.5	HIGH Network	pexip	pexip_infinity	Pexip Infinity before 23.4 has a lack of input validation, leading to temporary denial of service via H.323.	CWE-20 Improper Input Validation	CVE-2020-13387	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209584	9.8	CRITICAL Network	aveva	edna_enterprise_data_historian	Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker …	CWE-89 SQL Injection	CVE-2020-13505	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209585	9.8	CRITICAL Network	aveva	edna_enterprise_data_historian	Parameter AttFilterValue in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An at…	CWE-89 SQL Injection	CVE-2020-13504	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209586	9.8	CRITICAL Network	aveva	edna_enterprise_data_historian	An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections…	CWE-89 SQL Injection	CVE-2020-13501	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209587	9.8	CRITICAL Network	aveva	edna_enterprise_data_historian	SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections re…	CWE-89 SQL Injection	CVE-2020-13500	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209588	9.8	CRITICAL Network	aveva	edna_enterprise_data_historian	An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections…	CWE-89 SQL Injection	CVE-2020-13499	2024-11-21 14:01	2020-09-25	Show	GitHub Exploit DB Packet Storm

209589	2.7	LOW Network	gitlab	gitlab	A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. A user without 2 factor authentication enabled could be prohibited from accessing GitLab by being invited into a p…	CWE-281 Improper Preservation of Permissions	CVE-2020-13308	2024-11-21 14:01	2020-09-15	Show	GitHub Exploit DB Packet Storm

209590	7.5	HIGH Network	gitlab	gitlab	A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. The profile activity page was not restricting the amount of results one could request, potentially resulting in a …	NVD-CWE-noinfo	CVE-2020-13315	2024-11-21 14:01	2020-09-15	Show	GitHub Exploit DB Packet Storm