Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229031	6.8	警告	tlm cms	-	TLM CMS の i-accueil.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0300	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229032	6.6	警告	winzip	-	WinZip の Winzip32.exe におけるバッファオーバーフローの脆弱性	-	CVE-2007-0264	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229033	7.1	危険	total commander	-	Total Commander における任意のファイルを削除される脆弱性	-	CVE-2007-0263	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229034	7.8	危険	WordPress.org	-	WordPress における重要な情報を取得される脆弱性	-	CVE-2007-0262	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229035	10	危険	snews	-	sNews の snews.php における許可されていない管理者操作を実行される脆弱性	-	CVE-2007-0261	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229036	7.8	危険	VideoLAN	-	VideoLAN VLC におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0256	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229037	9.3	危険	Xine	-	XINE におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0255	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229038	10	危険	Xine	-	xine-ui の errors.c におけるフォーマットストリングの脆弱性	-	CVE-2007-0254	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229039	7.8	危険	Snort.org	-	Snort の src/decode.c における特定のメモリ領域のデリファレンスを誘発される脆弱性	-	CVE-2007-0251	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

229040	5	警告	poptop	-	PoPToP pptpd の pptpgre.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0244	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200231	9.8	CRITICAL Network	egavilanmedia	under_construction_page_with_cpanel	EGavilan Media Under Construction page with cPanel 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrar…	CWE-89 SQL Injection	CVE-2020-29472	2024-11-21 14:24	2020-12-25	Show	GitHub Exploit DB Packet Storm

200232	9.8	CRITICAL Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. By using the _internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command an…	CWE-78 OS Command	CVE-2020-29552	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

200233	9.1	CRITICAL Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. Using the _internal/pc/shutdown.php path, it is possible to shutdown the system. Among others, the following files and scripts are also accessible: _…	CWE-306 Missing Authentication for Critical Function	CVE-2020-29551	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

200234	7.5	HIGH Network	urve	urve	An issue was discovered in URVE Build 24.03.2020. The password of an integration user account (used for the connection of the MS Office 365 Integration Service) is stored in cleartext in configuratio…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-29550	2024-11-21 14:24	2020-12-24	Show	GitHub Exploit DB Packet Storm

200235	9.8	CRITICAL Network	zyxel	usg20-vpn_firmware usg20w-vpn_firmware usg40_firmware usg40w_firmware usg60_firmware usg60w_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg…	Firmware version 4.60 of Zyxel USG devices contains an undocumented account (zyfwp) with an unchangeable password. The password for this account can be found in cleartext in the firmware. This accoun…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29583	2024-11-21 14:24	2020-12-23	Show	GitHub Exploit DB Packet Storm

200236	7.5	HIGH Network	miniweb_http_server_project	miniweb_http_server	MiniWeb HTTP server 0.8.19 allows remote attackers to cause a denial of service (daemon crash) via a long name for the first parameter in a POST request.	CWE-120 Classic Buffer Overflow	CVE-2020-29596	2024-11-21 14:24	2020-12-22	Show	GitHub Exploit DB Packet Storm

200237	4.3	MEDIUM Network	atlassian	crucible	Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews.…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29447	2024-11-21 14:24	2020-12-21	Show	GitHub Exploit DB Packet Storm

200238	7.5	HIGH Network	golang	ssh	A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers.	CWE-476 NULL Pointer Dereference	CVE-2020-29652	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

200239	7.2	HIGH Network	pluck-cms	pluck	A file upload restriction bypass vulnerability in Pluck CMS before 4.7.13 allows an admin privileged user to gain access in the host through the "manage files" functionality, which may result in remo…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-29607	2024-11-21 14:24	2020-12-17	Show	GitHub Exploit DB Packet Storm

200240	9.1	CRITICAL Network	icinga	icinga	Icinga 2 v2.8.0 through v2.11.7 and v2.12.2 has an issue where revoked certificates due for renewal will automatically be renewed, ignoring the CRL. This issue is fixed in Icinga 2 v2.11.8 and v2.12.…	CWE-295 Improper Certificate Validation	CVE-2020-29663	2024-11-21 14:24	2020-12-16	Show	GitHub Exploit DB Packet Storm