Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229441 4.3 警告 WordPress.org - WordPress の wp-admin/vars.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1622 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229442 7.5 危険 scriptmagix - ScriptMagix Photo Rating の viewcomments.php における SQL インジェクションの脆弱性 - CVE-2007-1619 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229443 7.5 危険 scriptmagix - ScriptMagix FAQ Builder の index.php における SQL インジェクションの脆弱性 - CVE-2007-1618 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229444 7.5 危険 scriptmagix - ScriptMagix Recipes の index.php における SQL インジェクションの脆弱性 - CVE-2007-1617 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229445 7.5 危険 scriptmagix - ScriptMagix Lyrics の index.php における SQL インジェクションの脆弱性 - CVE-2007-1616 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229446 7.5 危険 scriptmagix - ScriptMagix Jokes の index.php における SQL インジェクションの脆弱性 - CVE-2007-1615 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229447 9.3 危険 zziplib project - ZZIPlib Library の zzip/file.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1614 2012-12-20 18:19 2007-03-17 Show GitHub Exploit DB Packet Storm
229448 5 警告 W-Agora - Web-Agora の search.php における重要な情報を取得される脆弱性 - CVE-2007-1607 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229449 4.3 警告 W-Agora - Web-Agora におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1606 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229450 5 警告 W-Agora - Web-Agora における重要な情報を取得される脆弱性 - CVE-2007-1605 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210191 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Improper access control in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-Other
CVE-2020-12290 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210192 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. CWE-787
 Out-of-bounds Write 		CVE-2020-12289 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210193 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Protection mechanism failure in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-Other
CVE-2020-12288 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210194 9.1 CRITICAL
Network 		mozilla nss A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly di… CWE-125
Out-of-bounds Read 		CVE-2020-12403 2024-11-21 13:59 2021-05-28 Show GitHub Exploit DB Packet Storm
210195 9.8 CRITICAL
Network 		nitrokey fido_u2f_firmware An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdr… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-12061 2024-11-21 13:59 2021-05-21 Show GitHub Exploit DB Packet Storm
210196 5.3 MEDIUM
Network 		beckhoff ipc_diagnostics_ua_server
tf6100
twincat_opc_ua_server 		TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attack… CWE-20
 Improper Input Validation  		CVE-2020-12526 2024-11-21 13:59 2021-05-13 Show GitHub Exploit DB Packet Storm
210197 6.1 MEDIUM
Network 		vivo appstore The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters. CWE-601
Open Redirect 		CVE-2020-12483 2024-11-21 13:59 2021-03-24 Show GitHub Exploit DB Packet Storm
210198 6.1 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a g… CWE-79
Cross-site Scripting 		CVE-2020-12530 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
210199 5.3 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2 There is a SSRF in the LDAP access check, allowing an attacker to scan for open ports. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-12529 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
210200 7.7 HIGH
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in … CWE-269
 Improper Privilege Management 		CVE-2020-12528 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm