Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229531	5.8	警告	rigter portal system	-	RPS における SQL インジェクションの脆弱性	-	CVE-2007-1293	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229532	5.8	警告	tyger	-	TygerBT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1291	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229533	7.5	危険	tyger	-	TygerBT の ViewReport.php における SQL インジェクションの脆弱性	-	CVE-2007-1290	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229534	6.4	警告	tyger	-	TygerBT の ViewBugs.php における SQL インジェクションの脆弱性	-	CVE-2007-1289	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229535	10	危険	webmobo	-	Webmobo WB News における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1288	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229536	7.5	危険	WordPress.org	-	WordPress における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2007-1277	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

229537	6.6	警告	VMware	-	VMware ESX Server におけるバッファオーバーフローの脆弱性	-	CVE-2007-1271	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

229538	5	警告	VMware	-	VMware ESX Server におけるメモリ二重解放の脆弱性	CWE-189 数値処理の問題	CVE-2007-1270	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

229539	5	警告	Sylpheed	-	Sylpheed における検出されずにメッセージ内容を偽造される脆弱性	-	CVE-2007-1267	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

229540	7.5	危険	webmod	-	WebMod の server.cpp におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1260	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196951	4.3	MEDIUM Network	mozilla	firefox firefox_esr thunderbird	By downloading a file with the .fileloc extension, a semi-privileged extension could launch an arbitrary application on the user's computer. The attacker is restricted as they are unable to download …	CWE-20 Improper Input Validation	CVE-2020-6797	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196952	6.5	MEDIUM Network	mozilla	thunderbird	When processing a message that contains multiple S/MIME signatures, a bug in the MIME processing code caused a null pointer dereference, leading to an unexploitable crash. This vulnerability affects …	CWE-476 NULL Pointer Dereference	CVE-2020-6795	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196953	6.5	MEDIUM Network	mozilla canonical	thunderbird ubuntu_linux	If a user saved passwords before Thunderbird 60 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was no…	CWE-312 CWE-459 CWE-522 Cleartext Storage of Sensitive Information Incomplete Cleanup Insufficiently Protected Credentials	CVE-2020-6794	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196954	6.5	MEDIUM Network	mozilla	thunderbird	When processing an email message with an ill-formed envelope, Thunderbird could read data from a random memory location. This vulnerability affects Thunderbird < 68.5.	CWE-908 Use of Uninitialized Resource	CVE-2020-6793	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196955	4.3	MEDIUM Network	mozilla canonical	thunderbird ubuntu_linux	When deriving an identifier for an email message, uninitialized memory was used in addition to the message contents. This vulnerability affects Thunderbird < 68.5.	CWE-908 CWE-909 Use of Uninitialized Resource Missing Initialization of Resource	CVE-2020-6792	2024-11-21 14:36	2020-03-2	Show	GitHub Exploit DB Packet Storm

196956	6.1	MEDIUM Network	mozilla	webthings_gateway	A reflected XSS vulnerability exists within the gateway, allowing an attacker to craft a specialized URL which could steal the user's authentication token. When combined with CVE-2020-6803, an attack…	CWE-79 Cross-site Scripting	CVE-2020-6804	2024-11-21 14:36	2020-02-29	Show	GitHub Exploit DB Packet Storm

196957	6.1	MEDIUM Network	mozilla	webthings_gateway	An open redirect is present on the gateway's login page, which could cause a user to be redirected to a malicious site after logging in.	CWE-601 Open Redirect	CVE-2020-6803	2024-11-21 14:36	2020-02-29	Show	GitHub Exploit DB Packet Storm

196958	5.3	MEDIUM Network	php tenable debian opensuse	php tenable.sc debian_linux leap	In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator() function, the files are added with default permissions (06…	CWE-281 Improper Preservation of Permissions	CVE-2020-7063	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm

196959	7.5	HIGH Network	php opensuse debian canonical	php leap debian_linux ubuntu_linux	In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.upload_progress.cleanup is set …	CWE-476 NULL Pointer Dereference	CVE-2020-7062	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm

196960	9.1	CRITICAL Network	php tenable	php tenable.sc	In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension, certain content inside PHAR file could lead to one-byte read past the allocated …	CWE-125 Out-of-bounds Read	CVE-2020-7061	2024-11-21 14:36	2020-02-28	Show	GitHub Exploit DB Packet Storm