Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228851 7.5 危険 vergenet - Perdition Mail Retrieval Proxy の IMAPD における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2007-5740 2012-12-20 18:33 2007-10-31 Show GitHub Exploit DB Packet Storm
228852 6.4 警告 seeblick - SeeBlick の upload.php における任意のファイルをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5736 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
228853 4.3 警告 phpPgAdmin - phpPgAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5728 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
228854 4.3 警告 smart-shop - Smart-Shop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5725 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
228855 6.8 警告 profilecms - ProfileCMS の profiles スクリプトにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5720 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
228856 4.9 警告 vobcopy - vobcopy における任意のファイルへデータを追加される脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-5718 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
228857 4.4 警告 VMware - VMware Workstation などの VMware Tools パッケージにおけるゲストカーネルメモリ内で任意のメモリ領域を変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5671 2012-12-20 18:33 2008-06-4 Show GitHub Exploit DB Packet Storm
228858 10 危険 TIBCO Software - TIBCO SmartSockets RTserver などの製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5658 2012-12-20 18:33 2008-01-15 Show GitHub Exploit DB Packet Storm
228859 10 危険 TIBCO Software - TIBCO SmartSockets Rtserver などの製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5657 2012-12-20 18:33 2008-01-15 Show GitHub Exploit DB Packet Storm
228860 10 危険 TIBCO Software - TIBCO SmartSockets RTserver などの製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-5656 2012-12-20 18:33 2008-01-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209481 5.9 MEDIUM
Network 		apache calcite HttpUtils#getURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connec… CWE-295
Improper Certificate Validation  		CVE-2020-13955 2024-11-21 14:02 2020-10-9 Show GitHub Exploit DB Packet Storm
209482 4.3 MEDIUM
Network 		atlassian jira Affected versions of Jira Server & Data Center allow a remote attacker with limited (non-admin) privileges to view a Jira instance's Support Entitlement Number (SEN) via an Information Disclosure vul… CWE-200
Information Exposure 		CVE-2020-14183 2024-11-21 14:02 2020-10-7 Show GitHub Exploit DB Packet Storm
209483 6.1 MEDIUM
Network 		secudos qiata_fta An issue was discovered in Secudos Qiata FTA 1.70.19. The comment feature allows persistent XSS that is executed when reading transfer comments or the global notice board. CWE-79
Cross-site Scripting 		CVE-2020-14294 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
209484 7.5 HIGH
Network 		secudos domos conf_datetime in Secudos DOMOS 5.8 allows remote attackers to execute arbitrary commands as root via shell metacharacters in the zone field (obtained from the web interface). CWE-78
OS Command  		CVE-2020-14293 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
209485 6.1 MEDIUM
Network 		hcltech digital_experience HCL Digital Experience 8.5, 9.0, 9.5 is susceptible to cross-site scripting (XSS). The vulnerability could be employed in a reflected or non-persistent XSS attack. CWE-79
Cross-site Scripting 		CVE-2020-14223 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
209486 5.5 MEDIUM
Local 		apache nifi In Apache NiFi 1.0.0 to 1.11.4, the notification service manager and various policy authorizer and user group provider objects allowed trusted administrators to inadvertently configure a potentially … CWE-611
XXE 		CVE-2020-13940 2024-11-21 14:02 2020-10-2 Show GitHub Exploit DB Packet Storm
209487 8.1 HIGH
Network 		apache superset In the course of work on the open source project it was discovered that authenticated users running queries against Hive and Presto database engines could access information via a number of templated… NVD-CWE-noinfo
CVE-2020-13952 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
209488 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. It stores SMS messages in .NET serialized format on the filesystem. By generating (and writing to the disk) malicious .NET serialized f… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-14030 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
209489 5.3 MEDIUM
Network 		apache tapestry In Apache Tapestry from 5.4.0 to 5.5.0, crafting specific URLs, an attacker can download files inside the WEB-INF folder of the WAR being run. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-13953 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm
209490 7.5 HIGH
Network 		apache openmeetings Attackers can use public NetTest web service of Apache OpenMeetings 4.0.0-5.0.0 to organize denial of service attack. NVD-CWE-noinfo
CVE-2020-13951 2024-11-21 14:02 2020-10-1 Show GitHub Exploit DB Packet Storm