Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228991	5	警告	sitedepth	-	SiteDepth CMS の ShowImage.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3404	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228992	7.5	危険	phpee	-	PPhlogger の include/get_userdata.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-3399	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228993	2.1	注意	レッドハット	-	x86_64 プラットフォーム上で稼動している RHEL のカーネルにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2007-3379	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

228994	5	警告	レッドハット	-	redhat-cluster-suite における以前のリクエストから重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2007-3373	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228995	7.5	危険	powl	-	Powl の plugins/widgets/htmledit/htmledit.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3371	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228996	7.8	危険	Polycom	-	Polycom SoundPoint IP 601 SIP phone with BootROM におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3369	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228997	7.8	危険	Polycom	-	Polycom SoundPoint 上で稼動する IP 601 SIP phone with BootROM の HTTP サーバにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3368	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228998	10	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における情報を取得される脆弱性	-	CVE-2007-3357	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228999	7.8	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における重要な情報を取得される脆弱性	-	CVE-2007-3356	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

229000	4.3	警告	scriptdevelopers.net	-	NetClassifieds Premium Edition におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3355	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196601	8.4	HIGH Local	mcafee	endpoint_security	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic l…	CWE-269 Improper Privilege Management	CVE-2020-7265	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196602	8.4	HIGH Local	mcafee	endpoint_security	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manip…	CWE-269 Improper Privilege Management	CVE-2020-7264	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196603	7.8	HIGH Local	eaton	intelligent_power_manager	Incorrect Privilege Assignment vulnerability in Eaton's Intelligent Power Manager (IPM) v1.67 & prior allow non-admin users to upload the system configuration files by sending specially crafted reque…	CWE-269 Improper Privilege Management	CVE-2020-6652	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196604	7.3	HIGH Local	eaton	intelligent_power_manager	Improper Input Validation in Eaton's Intelligent Power Manager (IPM) v 1.67 & prior on file name during configuration file import functionality allows attackers to perform command injection or code e…	CWE-20 CWE-78 Improper Input Validation OS Command	CVE-2020-6651	2024-11-21 14:36	2020-05-8	Show	GitHub Exploit DB Packet Storm

196605	5.5	MEDIUM Local	ledger	monero	A flawed protocol design in the Ledger Monero app before 1.5.1 for Ledger Nano and Ledger S devices allows a local attacker to extract the master spending key by sending crafted messages to this app …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-6861	2024-11-21 14:36	2020-05-6	Show	GitHub Exploit DB Packet Storm

196606	5.5	MEDIUM Local	zte	zenic_one_r22b	ZTE's SDON controller is impacted by the resource management error vulnerability. When RPC is frequently called by other applications in the case of mass traffic data in the system, it will result in…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-6867	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196607	4.9	MEDIUM Network	zte	zxctn_6500_firmware	A ZTE product is impacted by a resource management error vulnerability. An attacker could exploit this vulnerability to cause a denial of service by issuing a specific command. This affects: ZXCTN 65…	NVD-CWE-noinfo	CVE-2020-6866	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196608	6.5	MEDIUM Network	zte	oscp	ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the inte…	CWE-200 Information Exposure	CVE-2020-6865	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196609	9.8	CRITICAL Network	hpe	smart_update_manager	A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vul…	NVD-CWE-noinfo	CVE-2020-7136	2024-11-21 14:36	2020-05-1	Show	GitHub Exploit DB Packet Storm

196610	6.1	MEDIUM Network	mailbeez	mailbeez	Cross-site scripting (XSS) vulnerability in mailhive/cloudbeez/cloudloader.php and mailhive/cloudbeez/cloudloader_core.php in the MailBeez plugin for ZenCart before 3.9.22 allows remote attackers to …	CWE-79 Cross-site Scripting	CVE-2020-6579	2024-11-21 14:36	2020-04-30	Show	GitHub Exploit DB Packet Storm