Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229341 4.3 警告 Youngzsoft - CmailServer WebMail の mail/signup.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1991 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229342 7.5 危険 sam crew - Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1990 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
229343 4.3 警告 phpecho cms - PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1988 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229344 7.5 危険 phpexplorator - phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1985 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229345 7.5 危険 really simple php and ajax - RSPA における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1982 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229346 7.5 危険 有限会社ブルームーン - XOOPS 用の PopnupBlog モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1979 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229347 7.5 危険 slaed - SLAED CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1975 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229348 7.5 危険 wf-sections
XOOPS		 - Xoops モジュールで使用される WF-Section における SQL インジェクションの脆弱性 - CVE-2007-1974 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
229349 4.3 警告 sam crew - Sam Crew MyBlog の admin/modify.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1969 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229350 6.8 警告 sam crew - Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1968 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210251 2.7 LOW
Network 		jetbrains youtrack In JetBrains YouTrack before 2020.1.659, DB export was accessible to read-only administrators. CWE-276
Incorrect Default Permissions  		CVE-2020-11692 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210252 7.5 HIGH
Network 		jetbrains hub In JetBrains Hub before 2020.1.12099, content spoofing in the Hub OAuth error message was possible. NVD-CWE-noinfo
CVE-2020-11691 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210253 9.8 CRITICAL
Network 		jetbrains intellij_idea In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases. NVD-CWE-Other
CVE-2020-11690 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210254 6.5 MEDIUM
Network 		jetbrains teamcity In JetBrains TeamCity before 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file. CWE-276
Incorrect Default Permissions  		CVE-2020-11689 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210255 7.5 HIGH
Network 		jetbrains teamcity In JetBrains TeamCity before 2019.2.1, the application state is kept alive after a user ends his session. CWE-613
 Insufficient Session Expiration 		CVE-2020-11688 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210256 7.5 HIGH
Network 		jetbrains teamcity In JetBrains TeamCity before 2019.2.2, password values were shown in an unmasked format on several pages. CWE-200
Information Exposure 		CVE-2020-11687 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210257 2.7 LOW
Network 		jetbrains teamcity In JetBrains TeamCity before 2019.1.4, a project administrator was able to retrieve some TeamCity server settings. NVD-CWE-noinfo
CVE-2020-11686 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210258 7.5 HIGH
Network 		jetbrains goland In JetBrains GoLand before 2019.3.2, the plugin repository was accessed via HTTP instead of HTTPS. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-11685 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210259 8.1 HIGH
Adjacent 		titan sf_rush_smart_band_firmware An issue was discovered on Tata Sonata Smart SF Rush 1.12 devices. It has been identified that the smart band has no pairing (mode 0 Bluetooth LE security level) The data being transmitted over the a… CWE-347
CWE-306
CWE-319
 Improper Verification of Cryptographic Signature
Missing Authentication for Critical Function
Cleartext Transmission of Sensitive Information 		CVE-2020-11539 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm
210260 5.3 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! before 3.9.17. Incorrect ACL checks in the access level section of com_users allow the unauthorized editing of usergroups. NVD-CWE-noinfo
CVE-2020-11891 2024-11-21 13:58 2020-04-22 Show GitHub Exploit DB Packet Storm