Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229051 6.8 警告 simian systems inc - Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3228 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229052 4.3 警告 Ruby on Rails project - Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3227 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229053 6.4 警告 サン・マイクロシステムズ - slapd における特定のデータを変更される脆弱性 - CVE-2007-3225 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
229054 5 警告 サン・マイクロシステムズ - slapd におけるエントリの属性の存在を特定される脆弱性 - CVE-2007-3224 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
229055 7.5 危険 XOOPS - XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3222 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229056 6.8 警告 XOOPS - XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3221 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229057 6.8 警告 XOOPS - XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3220 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229058 7.5 危険 prototype of an php application - PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3217 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
229059 6.8 警告 PHPMailer project - PHPMailer における任意のシェルコマンドを実行される脆弱性 - CVE-2007-3215 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
229060 10 危険 PhpWiki - PhpWiki の lib/WikiUser/LDAP.php における認証を回避される脆弱性 - CVE-2007-3193 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196681 6.1 MEDIUM
Network 		mozilla
fedoraproject 		bleach
fedora 		In Mozilla Bleach before 3.11, a mutation XSS affects users calling bleach.clean with noscript and a raw tag in the allowed/whitelisted tags option. CWE-79
Cross-site Scripting 		CVE-2020-6802 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196682 9.8 CRITICAL
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker may execute arbitrary codes or target the device, causing it to go out of service. CWE-787
 Out-of-bounds Write 		CVE-2020-7007 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196683 7.5 HIGH
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a weak cryptographic algorithm, which may allow confidential information to be disclosed. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-7001 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196684 7.5 HIGH
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, sensitive information is transmitted over some web applications in cleartext. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-6997 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196685 9.8 CRITICAL
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, weak password requirements may allow an attacker to gain access using brute force. CWE-521
Weak Password Requirements  		CVE-2020-6991 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196686 8.8 HIGH
Adjacent 		honeywell win-pak In Honeywell WIN-PAK 4.7.2, Web and prior versions, the header injection vulnerability has been identified, which may allow remote code execution. CWE-74
Injection 		CVE-2020-6982 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196687 9.8 CRITICAL
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, an attacker may gain access to the system without proper authentication. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-6981 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196688 7.5 HIGH
Network 		moxa eds-g516e_firmware
eds-510e_firmware 		In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a hard-coded cryptographic key, increasing the possibility that confidential data can be recovered. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-6979 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196689 7.2 HIGH
Network 		honeywell win-pak In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable due to the usage of old jQuery libraries. NVD-CWE-Other
CVE-2020-6978 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm
196690 8.8 HIGH
Network 		honeywell win-pak In Honeywell WIN-PAK 4.7.2, Web and prior versions, the affected product is vulnerable to a cross-site request forgery, which may allow an attacker to remotely execute arbitrary code. CWE-352
 Origin Validation Error 		CVE-2020-7005 2024-11-21 14:36 2020-03-25 Show GitHub Exploit DB Packet Storm