Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229041 7.5 危険 web-app.org
web-app.net		 - web-app.net WebAPP などの Menu Manager Mod における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3242 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229042 4.3 警告 WordPress.org - WordPress 用の cordobo-green-park テーマの blogroll.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3241 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229043 4.3 警告 WordPress.org - WordPress 用の Vistered-Little テーマの 404.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3240 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229044 4.3 警告 WordPress.org - WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3239 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229045 6 警告 WordPress.org - WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3238 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229046 6.8 警告 XOOPS - XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3237 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
229047 7.5 危険 XOOPS - XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3236 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229048 5 警告 tec-it - TEC-IT TBarCode OCX ActiveX コントロール における任意のファイルを上書きされる脆弱性 - CVE-2007-3233 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229049 6.8 警告 simian systems inc - Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3230 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229050 6.8 警告 singapore - Singapore Gallery の index.php における重要な情報を取得される脆弱性 - CVE-2007-3229 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196731 6.5 MEDIUM
Network 		google
opensuse
fedoraproject
debian 		chrome
leap
backports_sle
fedora
debian_linux 		Insufficient policy enforcement in tab strip in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a c… CWE-276
Incorrect Default Permissions  		CVE-2020-6476 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196732 6.5 MEDIUM
Network 		google
opensuse
fedoraproject
debian 		chrome
leap
backports_sle
fedora
debian_linux 		Incorrect implementation in full screen in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to spoof security UI via a crafted HTML page. NVD-CWE-noinfo
CVE-2020-6475 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196733 8.8 HIGH
Network 		google
opensuse
fedoraproject
debian 		chrome
leap
backports_sle
fedora
debian_linux 		Use after free in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2020-6474 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196734 6.5 MEDIUM
Network 		google
fedoraproject
opensuse
debian 		chrome
fedora
leap
backports_sle
debian_linux 		Insufficient policy enforcement in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-6473 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196735 6.5 MEDIUM
Network 		google
fedoraproject
opensuse
debian 		chrome
fedora
leap
backports_sle
debian_linux 		Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive inf… NVD-CWE-noinfo
CVE-2020-6472 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196736 9.6 CRITICAL
Network 		google
fedoraproject
opensuse
debian 		chrome
fedora
leap
backports_sle
debian_linux 		Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox es… CWE-276
Incorrect Default Permissions  		CVE-2020-6471 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196737 6.1 MEDIUM
Network 		google
fedoraproject
opensuse
debian 		chrome
fedora
leap
backports_sle
debian_linux 		Insufficient validation of untrusted input in clipboard in Google Chrome prior to 83.0.4103.61 allowed a local attacker to inject arbitrary scripts or HTML (UXSS) via crafted clipboard contents. CWE-79
Cross-site Scripting 		CVE-2020-6470 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196738 9.6 CRITICAL
Network 		google
debian
opensuse
fedoraproject 		chrome
debian_linux
leap
fedora
backports_sle 		Insufficient policy enforcement in developer tools in Google Chrome prior to 83.0.4103.61 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox es… CWE-276
Incorrect Default Permissions  		CVE-2020-6469 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196739 8.8 HIGH
Network 		google
fedoraproject
debian
opensuse 		chrome
fedora
debian_linux
leap
backports_sle 		Type confusion in V8 in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-843
 Out-of-bounds Write
Type Confusion 		CVE-2020-6468 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm
196740 8.8 HIGH
Network 		google
debian
opensuse
fedoraproject 		chrome
debian_linux
leap
fedora
backports_sle 		Use after free in WebRTC in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2020-6467 2024-11-21 14:35 2020-05-21 Show GitHub Exploit DB Packet Storm