Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229001 4.6 警告 zomplog - Zomplog の admin/upload_files.php における任意の PHP ファイルを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5231 2012-12-20 18:33 2007-10-5 Show GitHub Exploit DB Packet Storm
229002 7.5 危険 zomplog - Zomplog の admin/upload_files.php における管理アクションを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5230 2012-12-20 18:33 2007-10-5 Show GitHub Exploit DB Packet Storm
229003 6.8 警告 poppawid - Poppawid の mail/childwindow.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5221 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
229004 9.3 危険 アクシスコミュニケーションズ - AXIX 2100 Network Camera におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5213 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
229005 4.3 警告 アクシスコミュニケーションズ - AXIX 2100 Network Camera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5212 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
229006 7.5 危険 SUSE - SUSE Linux Enterprise Desktop の novell-groupwise-client パッケージにおける資格情報を取得される脆弱性 CWE-200
CWE-310
CVE-2007-5196 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
229007 6.8 警告 SUSE - SUSE Linux Enterprise Desktop の novell-groupwise-client パッケージにおける資格情報を取得される脆弱性 CWE-200
CWE-310
CVE-2007-5195 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
229008 6.9 警告 rPath, Inc - rMake の Chroot サーバにおけるルート権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5194 2012-12-20 18:33 2007-10-2 Show GitHub Exploit DB Packet Storm
229009 5 警告 TWiki - Debian GNU/Linux などの OS 上で稼動する twiki 用の初期設定における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-5193 2012-12-20 18:33 2007-10-2 Show GitHub Exploit DB Packet Storm
229010 7.5 危険 x-script - x-script GuestBook の mes_add.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5189 2012-12-20 18:33 2007-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209551 7.8 HIGH
Local 		rockwellautomation factorytalk_view The DeskLock tool provided with FactoryTalk View SE uses a weak encryption algorithm that may allow a local, authenticated attacker to decipher user credentials, including the Windows user or Windows… CWE-326
Inadequate Encryption Strength 		CVE-2020-14481 2024-11-21 14:03 2022-02-25 Show GitHub Exploit DB Packet Storm
209552 5.5 MEDIUM
Local 		rockwellautomation factorytalk_view Due to usernames/passwords being stored in plaintext in Random Access Memory (RAM), a local, authenticated attacker could gain access to certain credentials, including Windows Logon credentials. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-14480 2024-11-21 14:03 2022-02-25 Show GitHub Exploit DB Packet Storm
209553 7.1 HIGH
Local 		rockwellautomation factorytalk_services_platform A local, authenticated attacker could use an XML External Entity (XXE) attack to exploit weakly configured XML files to access local or remote content. A successful exploit could potentially cause a … CWE-611
XXE 		CVE-2020-14478 2024-11-21 14:03 2022-02-25 Show GitHub Exploit DB Packet Storm
209554 9.8 CRITICAL
Network 		mitsubishielectric cw_configurator
mi_configurator
gx_works3
gx_works2
melsoft_iq_appportal
melsoft_navigator
mr_configurator2
mt_works2
mx_component
rt_toolbox3
fr_configurator2
iu_dev… 		Multiple Mitsubishi Electric Factory Automation products have a vulnerability that allows an attacker to execute arbitrary code. CWE-22
Path Traversal 		CVE-2020-14523 2024-11-21 14:03 2022-02-12 Show GitHub Exploit DB Packet Storm
209555 9.8 CRITICAL
Network 		mitsubishielectric cw_configurator
gx_logviewer
melfa-works
rt_toolbox2
fr_configurator_sw3
fr_configurator2
m_commdtm-io-link
melsec_wincpu_setting_utility
melsoft_em_software_development_kit 		Multiple Mitsubishi Electric Factory Automation engineering software products have a malicious code execution vulnerability. A malicious attacker could use this vulnerability to obtain information, m… CWE-276
Incorrect Default Permissions  		CVE-2020-14521 2024-11-21 14:03 2022-02-12 Show GitHub Exploit DB Packet Storm
209556 6.1 MEDIUM
Network 		cacti cacti Cacti before 1.2.18 allows remote attackers to trigger XSS via template import for the midwinter theme. CWE-79
Cross-site Scripting 		CVE-2020-14424 2024-11-21 14:03 2021-11-15 Show GitHub Exploit DB Packet Storm
209557 6.3 MEDIUM
Network 		redhat 3scale_api_management A flaw was found in the Red Hat 3scale API Management Platform, where member permissions for an API's admin portal were not properly enforced. This flaw allows an authenticated user to bypass normal … NVD-CWE-Other
CVE-2020-14388 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
209558 7.5 HIGH
Network 		redhat satellite An account takeover flaw was found in Red Hat Satellite 6.7.2 onward. A potential attacker with proper authentication to the relevant external authentication source (SSO or Open ID) can claim the pri… - CVE-2020-14380 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
209559 6.5 MEDIUM
Network 		redhat satellite A credential leak vulnerability was found in Red Hat Satellite. This flaw exposes the compute resources credentials through VMs that are running on these resources in Satellite. - CVE-2020-14371 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm
209560 5.9 MEDIUM
Network 		redhat
oracle 		xnio
jboss_operations_network
jboss_enterprise_application_platform
jboss_fuse
jboss_data_grid
jboss_brms
jboss_soa_platform
jboss_data_virtualization
communications_cloud_nat… 		A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial… NVD-CWE-Other
CVE-2020-14340 2024-11-21 14:03 2021-06-2 Show GitHub Exploit DB Packet Storm