Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229481 7.5 危険 woltlab - wBB の usergroups.php における SQL インジェクションの脆弱性 - CVE-2007-1518 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229482 6.8 警告 viperweb - ViperWeb Portal の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1514 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229483 7.5 危険 rhapsody irc - Rhapsody IRC の comm.c におけるフォーマットストリングの脆弱性 - CVE-2007-1503 2012-12-20 18:19 2007-03-19 Show GitHub Exploit DB Packet Storm
229484 6.8 警告 rhapsody irc - Rhapsody IRC におけるバッファオーバーフローの脆弱性 - CVE-2007-1502 2012-12-20 18:19 2007-03-19 Show GitHub Exploit DB Packet Storm
229485 4.9 警告 シマンテック - Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1495 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
229486 6.8 警告 web-app.org - web-app.org WebAPP における管理アクセス権限を取得される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-1489 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
229487 7.5 危険 wbblog - WBBlog の index.php における SQL インジェクションの脆弱性 - CVE-2007-1481 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
229488 1.9 注意 シマンテック - Symantec Norton Personal Firewall などの SYMTDI.SYS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-1476 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
229489 6.8 警告 t-systems solutions for research gmbh - Groupit の groupit/base/groupit.start.inc におけるリモートファイルインクルージョン攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-1472 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
229490 7.5 危険 xigla - Absolute Image Gallery の gallery.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1469 2012-12-20 18:19 2007-03-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210191 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Improper access control in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-Other
CVE-2020-12290 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210192 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Out-of-bounds write in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. CWE-787
 Out-of-bounds Write 		CVE-2020-12289 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210193 5.5 MEDIUM
Local 		intel jhl6240_thunderbolt_3_firmware
jhl6340_thunderbolt_3_firmware
jhl6540_thunderbolt_3_firmware
jhl7040_thunderbolt_3_retimer_firmware
jhl7340_thunderbolt_3_firmware
jhl7440_thunderbolt_3… 		Protection mechanism failure in some Intel(R) Thunderbolt(TM) controllers may allow an authenticated user to potentially enable denial of service via local access. NVD-CWE-Other
CVE-2020-12288 2024-11-21 13:59 2021-06-10 Show GitHub Exploit DB Packet Storm
210194 9.1 CRITICAL
Network 		mozilla nss A flaw was found in the way CHACHA20-POLY1305 was implemented in NSS in versions before 3.55. When using multi-part Chacha20, it could cause out-of-bounds reads. This issue was fixed by explicitly di… CWE-125
Out-of-bounds Read 		CVE-2020-12403 2024-11-21 13:59 2021-05-28 Show GitHub Exploit DB Packet Storm
210195 9.8 CRITICAL
Network 		nitrokey fido_u2f_firmware An issue was discovered in Nitrokey FIDO U2F firmware through 1.1. Communication between the microcontroller and the secure element transmits credentials in plain. This allows an adversary to eavesdr… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-12061 2024-11-21 13:59 2021-05-21 Show GitHub Exploit DB Packet Storm
210196 5.3 MEDIUM
Network 		beckhoff ipc_diagnostics_ua_server
tf6100
twincat_opc_ua_server 		TwinCAT OPC UA Server in versions up to 2.3.0.12 and IPC Diagnostics UA Server in versions up to 3.1.0.1 from Beckhoff Automation GmbH & Co. KG are vulnerable to denial of service attacks. The attack… CWE-20
 Improper Input Validation  		CVE-2020-12526 2024-11-21 13:59 2021-05-13 Show GitHub Exploit DB Packet Storm
210197 6.1 MEDIUM
Network 		vivo appstore The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters. CWE-601
Open Redirect 		CVE-2020-12483 2024-11-21 13:59 2021-03-24 Show GitHub Exploit DB Packet Storm
210198 6.1 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. There is an XSS issue in the redirect.php allowing an attacker to inject code via a g… CWE-79
Cross-site Scripting 		CVE-2020-12530 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
210199 5.3 MEDIUM
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2 There is a SSRF in the LDAP access check, allowing an attacker to scan for open ports. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-12529 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm
210200 7.7 HIGH
Network 		mbconnectline mbconnect24
mymbconnect24 		An issue was discovered in MB connect line mymbCONNECT24 and mbCONNECT24 software in all versions through V2.6.2. Improper use of access validation allows a logged in user to kill web2go sessions in … CWE-269
 Improper Privilege Management 		CVE-2020-12528 2024-11-21 13:59 2021-03-3 Show GitHub Exploit DB Packet Storm