Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228861	7.5	危険	XOOPS	-	XOOPS 用の wfquotes モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-2571	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228862	7.5	危険	practical creative and code	-	Friendly における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2569	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228863	9.3	危険	vcdgear	-	VCDGear におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2568	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

228864	9.3	危険	taltech	-	Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-2567	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228865	5	警告	taltech	-	Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2566	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228866	10	危険	sienzo	-	Sienzo DMM ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2564	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228867	9.3	危険	versalsoft	-	VersalSoft HTTP File Upload ActiveX コントロールの AddFile 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-2563	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228868	4.3	警告	podium cms	-	Podium CMS の Default.aspx におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-2555	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228869	5	警告	Wikka Development Team	-	WikkaWiki の RecentChanges 機能における非公開ページの名前などを取得される脆弱性	CWE-200 情報漏えい	CVE-2007-2552	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

228870	4.3	警告	Wikka Development Team	-	WikkaWiki の usersettings.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2551	2012-12-20 18:19	2007-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210051	7.5	HIGH Network	jetbrains	pycharm	In JetBrains PyCharm 2019.2.5 and 2019.3 on Windows, Apple Notarization Service credentials were included. This is fixed in 2019.2.6 and 2019.3.3.	CWE-312 CWE-522 Cleartext Storage of Sensitive Information Insufficiently Protected Credentials	CVE-2020-11694	2024-11-21 13:58	2020-04-11	Show	GitHub Exploit DB Packet Storm

210052	7.5	HIGH Network	wireshark debian opensuse	wireshark debian_linux leap	In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion.	CWE-674 Uncontrolled Recursion	CVE-2020-11647	2024-11-21 13:58	2020-04-11	Show	GitHub Exploit DB Packet Storm

210053	5.5	MEDIUM Local	linux redhat opensuse	linux_kernel enterprise_linux leap	An issue was discovered in the Linux kernel before 5.2 on the powerpc platform. arch/powerpc/kernel/idle_book3s.S does not have save/restore functionality for PNV_POWERSAVE_AMR, PNV_POWERSAVE_UAMOR, …	NVD-CWE-noinfo	CVE-2020-11669	2024-11-21 13:58	2020-04-11	Show	GitHub Exploit DB Packet Storm

210054	7.1	HIGH Local	linux	linux_kernel	In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770.	CWE-476 NULL Pointer Dereference	CVE-2020-11668	2024-11-21 13:58	2020-04-10	Show	GitHub Exploit DB Packet Storm

210055	7.5	HIGH Network	castlerock	snmpc_online	An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It includes the username and password values in cleartext within each request's cookie value.	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2020-11557	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210056	5.4	MEDIUM Network	castlerock	snmpc_online	An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There are multiple persistent (stored) and reflected XSS vulnerabilities.	CWE-79 Cross-site Scripting	CVE-2020-11556	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210057	7.5	HIGH Network	castlerock	snmpc_online	An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files.	CWE-522 Insufficiently Protected Credentials	CVE-2020-11555	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210058	7.5	HIGH Network	castlerock	snmpc_online	An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4.	NVD-CWE-noinfo	CVE-2020-11554	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210059	8.8	HIGH Network	castlerock	snmpc_online	An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF.	CWE-352 Origin Validation Error	CVE-2020-11553	2024-11-21 13:58	2020-04-9	Show	GitHub Exploit DB Packet Storm

210060	4.8	MEDIUM Network	netgear	d7800_firmware r7500_firmware r7800_firmware r8900_firmware r9000_firmware rax120_firmware xr500_firmware xr700_firmware rbr20_firmware rbs20_firmware rbk20_firmware …	Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0…	CWE-79 Cross-site Scripting	CVE-2020-11775	2024-11-21 13:58	2020-04-15	Show	GitHub Exploit DB Packet Storm