Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229581	4.3	警告	siteup	-	Site-Up の index.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5433	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229582	7.5	危険	scottmanktelow	-	Stride における管理者権限を取得される脆脆弱性	CWE-200 情報漏えい	CVE-2007-5432	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229583	7.5	危険	scottmanktelow	-	Stride における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5430	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229584	4.3	警告	Umisoft	-	UMI CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5428	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229585	7.5	危険	Tiki Software Community Association	-	TikiWiki の tiki-graph_formula.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-5423	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229586	6.8	警告	quoc-huy	-	Joomla! 用の Quoc-Huy mp3_allopass コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5412	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229587	6.8	警告	picoflat cms	-	PicoFlat CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5390	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229588	6.8	警告	webdesktop	-	WebDesktop における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5388	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229589	6.8	警告	pindorama	-	Pindorama の active/components/xmlrpc/client.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5387	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

229590	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5386	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209731	8.1	HIGH Network	gantt-chart_project	gantt-chart	An issue was discovered in the Gantt-Chart module before 5.5.4 for Jira. Due to a missing privilege check, it is possible to read and write to the module configuration of other users. This can also b…	CWE-79 CWE-862 Cross-site Scripting Missing Authorization	CVE-2020-15943	2024-11-21 14:06	2020-08-5	Show	GitHub Exploit DB Packet Storm

209732	7.8	HIGH Local	deltaww	cncsoft_screeneditor	Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. An uninitialized pointer may be exploited by processing a specially crafted project file. Successful exploitation of this…	CWE-824 Access of Uninitialized Pointer	CVE-2020-16203	2024-11-21 14:06	2020-08-5	Show	GitHub Exploit DB Packet Storm

209733	3.3	LOW Local	deltaww	cncsoft_screeneditor	Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may all…	CWE-125 Out-of-bounds Read	CVE-2020-16201	2024-11-21 14:06	2020-08-5	Show	GitHub Exploit DB Packet Storm

209734	7.8	HIGH Local	deltaww	cncsoft_screeneditor	Delta Industrial Automation CNCSoft ScreenEditor, Versions 1.01.23 and prior. Multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, whic…	CWE-787 Out-of-bounds Write	CVE-2020-16199	2024-11-21 14:06	2020-08-5	Show	GitHub Exploit DB Packet Storm

209735	8.0	HIGH Adjacent	swisscom	internet-box_2_firmware internet-box_standard_firmware internet-box_plus_firmware internet-box_3_firmware internet-box_light_firmware	An issue was discovered on Swisscom Internet Box 2, Internet Box Standard, Internet Box Plus prior to 10.04.38, Internet Box 3 prior to 11.01.20, and Internet Box light prior to 08.06.06. Given the (…	NVD-CWE-noinfo	CVE-2020-16134	2024-11-21 14:06	2020-08-5	Show	GitHub Exploit DB Packet Storm

209736	3.3	LOW Local	kde debian fedoraproject opensuse canonical	ark debian_linux fedora leap ubuntu_linux	In kerfuffle/jobs.cpp in KDE Ark before 20.08.0, a crafted archive can install files outside the extraction directory via ../ directory traversal.	CWE-22 Path Traversal	CVE-2020-16116	2024-11-21 14:06	2020-08-4	Show	GitHub Exploit DB Packet Storm

209737	6.1	MEDIUM Network	tiki	tiki	Tiki before 21.2 allows XSS because [\s\/"\'] is not properly considered in lib/core/TikiFilter/PreventXss.php.	CWE-79 Cross-site Scripting	CVE-2020-16131	2024-11-21 14:06	2020-08-4	Show	GitHub Exploit DB Packet Storm

209738	8.8	HIGH Network	sonatype	nexus_repository_manager_3	Sonatype Nexus Repository Manager OSS/Pro version before 3.25.1 allows Remote Code Execution.	NVD-CWE-noinfo	CVE-2020-15871	2024-11-21 14:06	2020-08-1	Show	GitHub Exploit DB Packet Storm

209739	6.1	MEDIUM Network	sonatype	nexus_repository_manager_3	Sonatype Nexus Repository Manager OSS/Pro versions before 3.25.1 allow XSS (Issue 2 of 2).	CWE-79 Cross-site Scripting	CVE-2020-15870	2024-11-21 14:06	2020-08-1	Show	GitHub Exploit DB Packet Storm

209740	5.4	MEDIUM Network	sonatype	nexus_repository_manager_3	Sonatype Nexus Repository Manager OSS/Pro versions before 3.25.1 allow XSS (issue 1 of 2).	CWE-79 Cross-site Scripting	CVE-2020-15869	2024-11-21 14:06	2020-08-1	Show	GitHub Exploit DB Packet Storm