Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229331 7.5 危険 pl-php - pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2008 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229332 10 危険 stephen craton - Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性 - CVE-2007-2147 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
229333 7.5 危険 shoutpro - ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性 - CVE-2007-2141 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
229334 7.5 危険 rha7 downloads - XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2107 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229335 6.8 警告 wabbit - Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2098 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229336 7.5 危険 tsdisplay4xoops - TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2091 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229337 6.8 警告 tumusika evolution - TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2090 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
229338 7.5 危険 pl-php - pL-PHP の admin.php における認証を回避される脆弱性 - CVE-2007-2007 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229339 7.5 危険 pl-php - pL-PHP の login.php における SQL インジェクションの脆弱性 - CVE-2007-2006 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229340 7.5 危険 raphael limbach - Crea-Book の admin/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2000 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210301 6.5 MEDIUM
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view restricted sensitive information. NVD-CWE-noinfo
CVE-2020-11660 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210302 4.3 MEDIUM
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to perform a restricted user administration action. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-11659 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210303 9.8 CRITICAL
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier handles shared secret keys in an insecure manner, which allows attackers to bypass authorization. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-11658 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210304 8.8 HIGH
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows malicious users to elevate privileges. NVD-CWE-noinfo
CVE-2020-11666 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210305 6.1 MEDIUM
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier handles loginRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks. CWE-601
Open Redirect 		CVE-2020-11665 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210306 6.1 MEDIUM
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier handles homeRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks. CWE-601
Open Redirect 		CVE-2020-11664 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210307 6.1 MEDIUM
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier handles 404 requests in an insecure manner, which allows attackers to perform open redirect attacks. CWE-601
Open Redirect 		CVE-2020-11663 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210308 7.5 HIGH
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier handles requests insecurely, which allows remote attackers to exploit a Cross-Origin Resource Sharing flaw and access sensitive information. NVD-CWE-noinfo
CVE-2020-11662 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210309 8.1 HIGH
Network 		broadcom ca_api_developer_portal CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view and edit user data. NVD-CWE-noinfo
CVE-2020-11661 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm
210310 9.8 CRITICAL
Network 		z-cron z-cron Z-Cron 5.6 Build 04 allows an unprivileged attacker to elevate privileges by modifying a privileged user's task. This can also affect all users who are signed in on the system if a shell is placed in… CWE-269
 Improper Privilege Management 		CVE-2020-11799 2024-11-21 13:58 2020-04-16 Show GitHub Exploit DB Packet Storm