Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228971	5	警告	tuan do	-	Tuan Do Uploader における管理者パスワードハッシュを取得される脆弱性	-	CVE-2007-0532	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228972	6.8	警告	WebsiteBaker Org	-	Website Baker の class.login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0527	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228973	3.3	注意	sony ericsson	-	Sony Ericsson K700i および W810i 電話機におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-0521	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228974	7.5	危険	unique ads	-	UDS の banner.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0520	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228975	3.5	注意	xmb software	-	XMB U2U Instant Messenger の memcp.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-0519	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228976	7.5	危険	Scriptsez.net	-	Scriptsez Smart PHP Subscriber におけるエンコードされたパスワードを取得される脆弱性	-	CVE-2007-0518	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228977	7.5	危険	Scriptsez.net	-	Scriptsez Random PHP Quote におけるパスワード情報を取得される脆弱性	-	CVE-2007-0517	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228978	4.9	警告	yana framework	-	Yana Framework における任意のゲストブックプロファイルを変更される脆弱性	CWE-noinfo 情報不足	CVE-2007-0516	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228979	6.8	警告	phpxmldom	-	phpXD における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0511	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

228980	10	危険	vote pro	-	Vote! Pro の poll_frame.php における任意の PHP コードを実行される脆弱性	-	CVE-2007-0504	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199461	9.8	CRITICAL Network	zyxel	usg20-vpn_firmware usg20w-vpn_firmware usg40_firmware usg40w_firmware usg60_firmware usg60w_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg…	Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29583	2024-11-21 14:24	2020-12-23	Show	GitHub Exploit DB Packet Storm

199462	7.5	HIGH Network	miniweb_http_server_project	miniweb_http_server	MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request.	CWE-120 Classic Buffer Overflow	CVE-2020-29596	2024-11-21 14:24	2020-12-22	Show	GitHub Exploit DB Packet Storm

199463	4.3	MEDIUM Network	atlassian	crucible	Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29447	2024-11-21 14:24	2020-12-21	Show	GitHub Exploit DB Packet Storm

199464	7.5	HIGH Network	golang	ssh	A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.	CWE-476 NULL Pointer Dereference	CVE-2020-29652	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

199465	7.2	HIGH Network	pluck-cms	pluck	A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29607	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

199466	9.1	CRITICAL Network	icinga	icinga	Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.…	CWE-295 Improper Certificate Validation	CVE-2020-29663	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199467	7.5	HIGH Network	xen	xapi	An issue was discovered in Xen XAPI before 2020-12-15. Certain xenstore keys provide feedback from the guest, and are therefore watched by toolstack. Specifically, keys are watched by xenopsd, and da…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29487	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199468	5.5	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen 4.6 through 4.14.x. When acting upon a guest XS_RESET_WATCHES request, not all tracking information is freed. A guest can cause unbounded memory usage in oxenstored. Th…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-29485	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199469	6.2	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is reversed. The consumer assumes, seeing …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29570	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm

199470	6.0	MEDIUM Local	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run an…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2020-29486	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm