Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229101	7.5	危険	Sendmail Consortium	-	Red Hat Enterprise Linux 上で稼動する Sendmail における想定より少ないセキュアチャネルが使用される脆弱性	-	CVE-2006-7175	2012-12-20 18:19	2005-11-3	Show	GitHub Exploit DB Packet Storm

229102	1.9	注意	Simon Tatham	-	PuTTY における重要な情報を取得される脆弱性	-	CVE-2006-7162	2012-12-20 18:18	2007-03-7	Show	GitHub Exploit DB Packet Storm

229103	10	危険	phpBB	-	Brazilian PHPBB の maluinfo における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7148	2012-12-20 18:18	2007-03-7	Show	GitHub Exploit DB Packet Storm

229104	6.8	警告	phpBB	-	phpBB Import Tools Mod の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7147	2012-12-20 18:18	2007-03-7	Show	GitHub Exploit DB Packet Storm

229105	4.1	警告	utimaco safeware	-	Utimaco Safeguard の集中管理機能における設定ファイルから暗号鍵を復元される脆弱性	CWE-310 暗号の問題	CVE-2006-7142	2012-12-20 18:18	2007-03-7	Show	GitHub Exploit DB Packet Storm

229106	4.3	警告	tinyportal	-	TinyPortal におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7137	2012-12-20 18:18	2007-03-6	Show	GitHub Exploit DB Packet Storm

229107	10	危険	phppc	-	phpPC における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7136	2012-12-20 18:18	2007-03-6	Show	GitHub Exploit DB Packet Storm

229108	7.5	危険	salims softhouse	-	forum/forum.php JAF CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7128	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

229109	6.8	警告	salims softhouse	-	JAF CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-7127	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

229110	7.5	危険	phpgiggle	-	comscripts.com 上で配布されている J. He PHPGiggle における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7119	2012-12-20 18:18	2007-03-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197731	8.8	HIGH Network	adobe	framemaker	Adobe Framemaker versions 2019.0.4 and below have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2020-3720	2024-11-21 14:31	2020-02-14	Show	GitHub Exploit DB Packet Storm

197732	7.5	HIGH Network	secom	dr.id_access_control dr.id_attendance_system	TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, stores users’ information by cleartext in the cookie, which divulges password to attackers.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-3935	2024-11-21 14:31	2020-02-11	Show	GitHub Exploit DB Packet Storm

197733	9.8	CRITICAL Network	secom	dr.id_attendance_system dr.id_access_control	TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command.	CWE-89 SQL Injection	CVE-2020-3934	2024-11-21 14:31	2020-02-11	Show	GitHub Exploit DB Packet Storm

197734	5.3	MEDIUM Network	secom	dr.id_attendance_system dr.id_access_control	TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, allows attackers to enumerate and exam user account in the system.	NVD-CWE-noinfo	CVE-2020-3933	2024-11-21 14:31	2020-02-11	Show	GitHub Exploit DB Packet Storm

197735	7.5	HIGH Network	sysjust	syuan-gu-da-shin	SysJust Syuan-Gu-Da-Shih, versions before 20191223, contain vulnerability of Request Forgery, allowing attackers to launch inquiries into network architecture or system files of the server via forged…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-3938	2024-11-21 14:31	2020-02-4	Show	GitHub Exploit DB Packet Storm

197736	7.5	HIGH Network	sysjust	syuan-gu-da-shin	SQL Injection in SysJust Syuan-Gu-Da-Shih, versions before 20191223, allowing attackers to perform unwanted SQL queries and access arbitrary file in the database.	CWE-89 SQL Injection	CVE-2020-3937	2024-11-21 14:31	2020-02-4	Show	GitHub Exploit DB Packet Storm

197737	7.5	HIGH Network	changingtec	servisign	An arbitrary-file-access vulnerability exists in ServiSign security plugin, as long as the attackers learn the specific API function, they may access arbitrary files on target system via crafted API …	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-3927	2024-11-21 14:31	2020-02-3	Show	GitHub Exploit DB Packet Storm

197738	7.5	HIGH Network	changingtec	servisign	An arbitrary-file-access vulnerability exists in ServiSign security plugin, as long as the attackers learn the specific API function, they may access arbitrary files on target system via crafted API …	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-3926	2024-11-21 14:31	2020-02-3	Show	GitHub Exploit DB Packet Storm

197739	8.8	HIGH Network	changingtec	servisign	A Remote Code Execution(RCE) vulnerability exists in some designated applications in ServiSign security plugin, as long as the interface is captured, attackers are able to launch RCE and executes arb…	NVD-CWE-noinfo	CVE-2020-3925	2024-11-21 14:31	2020-02-3	Show	GitHub Exploit DB Packet Storm

197740	6.1	MEDIUM Network	magento	magento	Magento versions 2.3.3 and earlier, 2.2.10 and earlier, 1.14.4.3 and earlier, and 1.9.4.3 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive…	CWE-79 Cross-site Scripting	CVE-2020-3758	2024-11-21 14:31	2020-01-30	Show	GitHub Exploit DB Packet Storm