Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228981 7.5 危険 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/instantmessage.pl における脆弱性 - CVE-2007-3423 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228982 7.5 危険 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/subs.pl における脆弱性 - CVE-2007-3422 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228983 7.5 危険 web-app.org - web-app.org WebAPP のログイン機能などにおける脆弱性 - CVE-2007-3421 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228984 7.5 危険 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/subs.pl における脆弱性 - CVE-2007-3420 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228985 7.5 危険 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/user.pl における脆弱性 - CVE-2007-3419 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228986 6.5 警告 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/forum_display.pl における他のユーザになりすまされる脆弱性 - CVE-2007-3418 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228987 4.3 警告 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/search.pl におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3417 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228988 5 警告 web-app.org
web-app.net		 - web-app.org WebAPP などのプロフィールなどの管理におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-3416 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228989 7.5 危険 phpraider - phpRaider の index.php における SQL インジェクションの脆弱性 - CVE-2007-3415 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228990 5 警告 sergey lyubka - Sergey Lyubka Simple HTTPD における重要な情報を取得される脆弱性 - CVE-2007-3407 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210081 5.5 MEDIUM
Local 		oppo reno3_pro_firmware
find_x2_pro_firmware 		In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_vooc.c, the function proc_fastchg_fw_update_write in proc_fastchg_fw_update_write does not check the parameter len, resulting in a vulnerabil… CWE-787
 Out-of-bounds Write 		CVE-2020-11834 2024-11-21 13:58 2021-01-1 Show GitHub Exploit DB Packet Storm
210082 5.5 MEDIUM
Local 		oppo reno3_pro_firmware
find_x2_pro_firmware 		In /SM8250_Q_Master/android/vendor/oppo_charger/oppo/charger_ic/oppo_mp2650.c, the function mp2650_data_log_write in mp2650_data_log_write does not check the parameter len which causes a vulnerabilit… CWE-787
 Out-of-bounds Write 		CVE-2020-11833 2024-11-21 13:58 2021-01-1 Show GitHub Exploit DB Packet Storm
210083 5.5 MEDIUM
Local 		oppo reno3_pro_firmware
find_x2_pro_firmware 		In functions charging_limit_current_write and charging_limit_time_write in /SM8250_Q_Master/android/vendor/oppo_charger/oppo/oppo_charger.c have not checked the parameters, which causes a vulnerabili… CWE-787
 Out-of-bounds Write 		CVE-2020-11832 2024-11-21 13:58 2021-01-1 Show GitHub Exploit DB Packet Storm
210084 3.8 LOW
Local 		qemu qemu iscsi_aio_ioctl_cb in block/iscsi.c in QEMU 4.1.0 has a heap-based buffer over-read that may disclose unrelated information from process memory to an attacker. CWE-125
Out-of-bounds Read 		CVE-2020-11947 2024-11-21 13:58 2020-12-31 Show GitHub Exploit DB Packet Storm
210085 7.5 HIGH
Network 		bilanc bilanc An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. It relies on broken encryption with a weak and guessable static encryption key. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-11719 2024-11-21 13:58 2020-12-24 Show GitHub Exploit DB Packet Storm
210086 9.8 CRITICAL
Network 		bilanc bilanc An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and possibly below. During the installation, it sets up administrative access by default with the account admin and passwor… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-11720 2024-11-21 13:58 2020-12-24 Show GitHub Exploit DB Packet Storm
210087 7.4 HIGH
Network 		bilanc bilanc An issue was discovered in Programi Bilanc build 007 release 014 31.01.2020 and below. Its software-update packages are downloaded via cleartext HTTP. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-11718 2024-11-21 13:58 2020-12-24 Show GitHub Exploit DB Packet Storm
210088 9.8 CRITICAL
Network 		bilanc bilanc An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities. CWE-89
SQL Injection 		CVE-2020-11717 2024-11-21 13:58 2020-12-22 Show GitHub Exploit DB Packet Storm
210089 3.3 LOW
Local 		audacityteam
fedoraproject 		audacity
fedora 		Audacity through 2.3.3 saves temporary files to /var/tmp/audacity-$USER by default. After Audacity creates the temporary directory, it sets its permissions to 755. Any user on the system can read and… CWE-276
Incorrect Default Permissions  		CVE-2020-11867 2024-11-21 13:58 2020-12-1 Show GitHub Exploit DB Packet Storm
210090 9.8 CRITICAL
Network 		oppo ovoicemanager OvoiceManager has system permission to write vulnerability reports for arbitrary files, affected product is com.oppo.ovoicemanager V2.0.1. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-11831 2024-11-21 13:58 2020-11-20 Show GitHub Exploit DB Packet Storm