Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228981	6.8	警告	verlihub-project	-	VHCP の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 CWE-94	CVE-2007-5321	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228982	5	警告	typolight	-	TYPOlight webCMS の preview.php における任意のファイルをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-5318	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228983	5	警告	SoftbizScripts	-	Softbiz Jobs and Recruitment Script の browsecats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5316	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228984	6.8	警告	softpedia	-	Softonic International SciTE における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5315	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228985	6.8	警告	xkiosk	-	xKiosk WEB の system/funcs/xkurl.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5314	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228986	7.5	危険	script-solution.de	-	Picturesolution の install/config.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5313	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228987	4.3	警告	torrenttrader	-	TorrentTrader Classic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5312	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228988	7.5	危険	torrenttrader	-	TorrentTrader Classic Edition の backend/admin-functions.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5311	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228989	7.5	危険	yannick tanguy	-	ELSEIF CMS における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-5307	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

228990	5	警告	yannick tanguy	-	ELSEIF CMS における重要な情報を取得される脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5306	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196171	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Improper authentication in socket services for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an unauthenticated user to potentially enable escalation o…	CWE-287 Improper Authentication	CVE-2020-8709	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196172	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Improper authentication for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adj…	CWE-287 Improper Authentication	CVE-2020-8708	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196173	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Buffer overflow in daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via a…	CWE-120 Classic Buffer Overflow	CVE-2020-8707	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196174	8.8	HIGH Adjacent	intel	server_board_s2600wt_firmware server_system_r1000wt_firmware server_system_r2000wt_firmware server_board_s2600cw compute_module_hns2600kp_firmware server_board_s2600kp_firmware comp…	Buffer overflow in a daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via…	CWE-120 Classic Buffer Overflow	CVE-2020-8706	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196175	9.6	CRITICAL Network	google	asylo	An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-8904	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196176	6.5	MEDIUM Network	google	asylo	A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'enc_untrusted_recvfrom' function generates a return valu…	CWE-120 Classic Buffer Overflow	CVE-2020-8905	2024-11-21 14:39	2020-08-13	Show	GitHub Exploit DB Packet Storm

196177	8.8	HIGH Network	android	play_core_library	A local, arbitrary code execution vulnerability exists in the SplitCompat.install endpoint in Android's Play Core Library versions prior to 1.7.2. A malicious attacker could create an apk which targe…	CWE-22 Path Traversal	CVE-2020-8913	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196178	2.5	LOW Local	amazon	aws_s3_crypto_sdk	A vulnerability in the in-band key negotiation exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. An attacker with write access to the targeted bucket can change the encryption algorith…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-8912	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196179	5.6	MEDIUM Local	amazon	aws_s3_crypto_sdk	A padding oracle vulnerability exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. The SDK allows users to encrypt files with AES-CBC without computing a Message Authentication Code (MAC…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-8911	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm

196180	7.1	HIGH Local	google	go-tpm	An improperly initialized 'migrationAuth' value in Google's go-tpm TPM1.2 library versions prior to 0.3.0 can lead an eavesdropping attacker to discover the auth value for a key created with CreateWr…	CWE-665 Improper Initialization	CVE-2020-8918	2024-11-21 14:39	2020-08-12	Show	GitHub Exploit DB Packet Storm