Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229231 3.5 注意 XWiki - XWiki の "You are not allowed ..." のエラーハンドラにおける任意のドキュメントを読み取られる脆弱性 CWE-DesignError
CVE-2007-4888 2012-12-20 18:33 2007-01-11 Show GitHub Exploit DB Packet Storm
229232 4.3 警告 techexcel inc. - TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4882 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
229233 7.5 危険 psi-labs - psisns の profile/myprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4881 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
229234 5 警告 Simplenews Project - SimpNews における任意の .inc ファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4873 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229235 5 警告 Simplenews Project - SimpleNews における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-4872 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229236 6.8 警告 Quirm - SAXON の example.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4863 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
229237 4.3 警告 Quirm - SAXON の admin/menu.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4862 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
229238 5 警告 Quirm - SAXON における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-4861 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
229239 7.5 危険 webace - wls の start.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4846 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
229240 7.5 危険 rwscripts.com - RW::Download の UPLOAD/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4845 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200801 8.1 HIGH
Network 		model_project model An issue was discovered in the model crate through 2020-11-10 for Rust. The Shared data structure has an implementation of the Send and Sync traits without regard for the inner type. CWE-843
Type Confusion 		CVE-2020-36460 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200802 8.1 HIGH
Network 		dces_project dces An issue was discovered in the dces crate through 2020-12-09 for Rust. The World type is marked as Send but lacks bounds on its EntityStore and ComponentStore. CWE-77
Command Injection 		CVE-2020-36459 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200803 8.1 HIGH
Network 		lexer_project lexer An issue was discovered in the lexer crate through 2020-11-10 for Rust. For ReaderResult<T, E>, there is an implementation of Sync with a trait bound of T: Send, E: Send. CWE-362
Race Condition 		CVE-2020-36458 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200804 8.1 HIGH
Network 		lever_project lever An issue was discovered in the lever crate before 0.1.1 for Rust. AtomicBox<T> implements the Send and Sync traits for all types T. CWE-77
Command Injection 		CVE-2020-36457 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200805 8.1 HIGH
Network 		toolshed_project toolshed An issue was discovered in the toolshed crate through 2020-11-15 for Rust. In CopyCell<T>, the Send trait lacks bounds on the contained type. CWE-77
Command Injection 		CVE-2020-36456 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200806 8.1 HIGH
Network 		brokenlamp slock An issue was discovered in the slock crate through 2020-11-17 for Rust. Slock<T> unconditionally implements Send and Sync. CWE-77
Command Injection 		CVE-2020-36455 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200807 8.1 HIGH
Network 		parc_project parc An issue was discovered in the parc crate through 2020-11-14 for Rust. LockWeak<T> has an unconditional implementation of Send without trait bounds on T. CWE-362
Race Condition 		CVE-2020-36454 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200808 8.1 HIGH
Network 		scottqueue_project scottqueue An issue was discovered in the scottqueue crate through 2020-11-15 for Rust. There are unconditional implementations of Send and Sync for Queue<T>. NVD-CWE-noinfo
CVE-2020-36453 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200809 9.8 CRITICAL
Network 		array-tools_project array-tools An issue was discovered in the array-tools crate before 0.3.2 for Rust. FixedCapacityDequeLike::clone() has a drop of uninitialized memory. CWE-908
 Use of Uninitialized Resource 		CVE-2020-36452 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm
200810 8.1 HIGH
Network 		rcu_cell_project rcu_cell An issue was discovered in the rcu_cell crate through 2020-11-14 for Rust. There are unconditional implementations of Send and Sync for RcuCell<T>. CWE-77
Command Injection 		CVE-2020-36451 2024-11-21 14:29 2021-08-8 Show GitHub Exploit DB Packet Storm