Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229331 7.5 危険 pl-php - pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2008 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229332 10 危険 stephen craton - Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性 - CVE-2007-2147 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
229333 7.5 危険 shoutpro - ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性 - CVE-2007-2141 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
229334 7.5 危険 rha7 downloads - XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2107 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229335 6.8 警告 wabbit - Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2098 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229336 7.5 危険 tsdisplay4xoops - TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2091 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229337 6.8 警告 tumusika evolution - TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2090 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229338 7.5 危険 pl-php - pL-PHP の admin.php における認証を回避される脆弱性 - CVE-2007-2007 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229339 7.5 危険 pl-php - pL-PHP の login.php における SQL インジェクションの脆弱性 - CVE-2007-2006 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229340 7.5 危険 raphael limbach - Crea-Book の admin/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2000 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200401 5.5 MEDIUM
Local 		libtiff
redhat
fedoraproject
netapp 		libtiff
enterprise_linux
fedora
ontap_select_deploy_administration_utility 		A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF file can lead to an abort, resulting in denial of service. - CVE-2020-35521 2024-11-21 14:27 2021-03-10 Show GitHub Exploit DB Packet Storm
200402 4.7 MEDIUM
Local 		apache oozie There is a race condition in OozieSharelibCLI in Apache Oozie before version 5.2.1 which allows a malicious attacker to replace the files in Oozie's sharelib during it's creation. CWE-362
Race Condition 		CVE-2020-35451 2024-11-21 14:27 2021-03-10 Show GitHub Exploit DB Packet Storm
200403 6.1 MEDIUM
Network 		zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus before 7066 allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-35594 2024-11-21 14:27 2021-03-6 Show GitHub Exploit DB Packet Storm
200404 9.8 CRITICAL
Network 		cgal
debian 		computational_geometry_algorithms_library
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1 in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sface() sfh->volume() OOB read. A specially cra… - CVE-2020-35636 2024-11-21 14:27 2021-03-5 Show GitHub Exploit DB Packet Storm
200405 9.8 CRITICAL
Network 		cgal
fedoraproject
debian 		computational_geometry_algorithms_library
fedora
debian_linux 		A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. An oob read vulnerability exists in Nef_S2/SNC_io_parser.h SNC_io_parser::read_sloop() slh->… - CVE-2020-35628 2024-11-21 14:27 2021-03-5 Show GitHub Exploit DB Packet Storm
200406 6.5 MEDIUM
Network 		courier_management_system_project courier_management_system Courier Management System 1.0 1.0 is affected by SQL Injection via 'MULTIPART street '. CWE-89
SQL Injection 		CVE-2020-35329 2024-11-21 14:27 2021-03-5 Show GitHub Exploit DB Packet Storm
200407 5.4 MEDIUM
Network 		courier_management_system_project courier_management_system Courier Management System 1.0 - 'First Name' Stored XSS CWE-79
Cross-site Scripting 		CVE-2020-35328 2024-11-21 14:27 2021-03-5 Show GitHub Exploit DB Packet Storm
200408 6.5 MEDIUM
Network 		courier_management_system_project courier_management_system SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to admin_class.php CWE-89
SQL Injection 		CVE-2020-35327 2024-11-21 14:27 2021-03-5 Show GitHub Exploit DB Packet Storm
200409 7.5 HIGH
Network 		thinkadmin thinkadmin ThinkAdmin v6 has default administrator credentials, which allows attackers to gain unrestricted administratior dashboard access. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-35296 2024-11-21 14:27 2021-03-4 Show GitHub Exploit DB Packet Storm
200410 7.4 HIGH
Network 		saltstack
fedoraproject
debian 		salt
fedora
debian_linux 		In SaltStack Salt before 3002.5, when authenticating to services using certain modules, the SSL certificate is not always validated. CWE-295
Improper Certificate Validation  		CVE-2020-35662 2024-11-21 14:27 2021-02-27 Show GitHub Exploit DB Packet Storm