Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229161	10	危険	tinyirc	-	TinyIdentD におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2711	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

229162	6.8	警告	simple php scripts gallery	-	sphp の Ivan Peevski gallery における任意の PHP コードを実行される脆弱性	-	CVE-2007-2679	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229163	7.5	危険	phpchess	-	phpChess Community Edition における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2677	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229164	7.5	危険	PreProject.com	-	Pre Classifieds Listings の search.php における SQL インジェクションの脆弱性	-	CVE-2007-2675	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229165	7.5	危険	PreProject.com	-	Pre Shopping Mall の detail.php における SQL インジェクションの脆弱性	-	CVE-2007-2674	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229166	7.5	危険	thinc4orce marketing group	-	PHP Coupon Script の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2672	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229167	6.8	警告	webdesproxy	-	webdesproxy におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2668	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229168	7.5	危険	tomasz rekawek	-	Yaap の includes/common.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2664	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229169	7.8	危険	precisionid barcode	-	PrecisionID_DataMatrix.DLL の PrecisionID Barcode ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2657	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229170	4.4	警告	SUSE xfsdump	-	xfsdump の xfs_fsr における xfs ファイルシステム上で任意のファイルを上書きされる脆弱性	CWE-362 CWE-Other	CVE-2007-2654	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209991	7.5	HIGH Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise did not appropriately enforce scope for local tokens issued by a primary data center, where replication to a secondary data center was not enabled. Introduced i…	CWE-20 Improper Input Validation	CVE-2020-13170	2024-11-21 14:00	2020-06-12	Show	GitHub Exploit DB Packet Storm

209992	5.3	MEDIUM Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise failed to enforce changes to legacy ACL token rules due to non-propagation to secondary data centers. Introduced in 1.4.0, fixed in 1.6.6 and 1.7.4.	NVD-CWE-noinfo	CVE-2020-12797	2024-11-21 14:00	2020-06-12	Show	GitHub Exploit DB Packet Storm

209993	7.5	HIGH Network	hashicorp	consul	HashiCorp Consul and Consul Enterprise could crash when configured with an abnormally-formed service-router entry. Introduced in 1.6.0, fixed in 1.6.6 and 1.7.4.	CWE-404 Improper Resource Shutdown or Release	CVE-2020-12758	2024-11-21 14:00	2020-06-12	Show	GitHub Exploit DB Packet Storm

209994	7.2	HIGH Network	redash	redash	Havoc Research discovered an authenticated Server-Side Request Forgery (SSRF) via the "JSON" data source of Redash open-source 8.0.0 and prior. Possibly, other connectors are affected. The SSRF is po…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-12725	2024-11-21 14:00	2020-06-12	Show	GitHub Exploit DB Packet Storm

209995	7.5	HIGH Network	sos-berlin	jobscheduler	A vulnerability based on insecure user/password encryption in the JOE (job editor) component of SOS JobScheduler 1.12 and 1.13 allows attackers to decrypt the user/password that is optionally stored …	CWE-330 Use of Insufficiently Random Values	CVE-2020-12712	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm

209996	7.0	HIGH Local	pydio	cells	The following vulnerability applies only to the Pydio Cells Enterprise OVF version 2.0.4. Prior versions of the Pydio Cells Enterprise OVF (such as version 2.0.3) have a looser policy restriction all…	CWE-269 Improper Privilege Management	CVE-2020-12850	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm

209997	5.9	MEDIUM Network	ciphermail	webmail_messenger gateway	An issue was discovered in CipherMail Community Gateway Virtual Appliances and Professional/Enterprise Gateway Virtual Appliances versions 1.0.1 through 4.7.1-0 and CipherMail Webmail Messenger Virtu…	CWE-326 Inadequate Encryption Strength	CVE-2020-12714	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm

209998	7.2	HIGH Network	ciphermail	webmail_messenger gateway	An issue was discovered in CipherMail Community Gateway and Professional/Enterprise Gateway 1.0.1 through 4.7.1-0 and CipherMail Webmail Messenger 1.1.1 through 3.1.1-0. Attackers with administrative…	CWE-269 Improper Privilege Management	CVE-2020-12713	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm

209999	7.5	HIGH Network	mitsubishielectric	melsec_iq-r00cpu_firmware melsec_iq-r01cpu_firmware melsec_iq-r02cpu_firmware melsec_iq-r04cpu_firmware melsec_iq-r08cpu_firmware melsec_iq-r16cpu_firmware melsec_iq-r32cpu_firmware…	Mitsubishi MELSEC iQ-R Series PLCs with firmware 33 allow attackers to halt the industrial process by sending an unauthenticated crafted packet over the network, because this denial of service attack…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-13238	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm

210000	7.5	HIGH Network	hashicorp	vault	HashiCorp Vault and Vault Enterprise logged proxy environment variables that potentially included sensitive credentials. Fixed in 1.3.6 and 1.4.2.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-13223	2024-11-21 14:00	2020-06-11	Show	GitHub Exploit DB Packet Storm