Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229701	7.8	危険	raiden professional servers	-	RaidenFTPD の XceddZipLib におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2179	2012-12-20 18:19	2007-04-24	Show	GitHub Exploit DB Packet Storm

229702	5.1	警告	ProFTPD Project	-	ProFTPD の Auth API における認証を回避される脆弱性	-	CVE-2007-2165	2012-12-20 18:19	2007-04-16	Show	GitHub Exploit DB Packet Storm

229703	7.8	危険	zomplog	-	Zomplog の upload/force_download.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2157	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229704	7.5	危険	rezervi generic	-	Rezervi Generic における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2156	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229705	7.8	危険	phpfaber	-	phpFaber TopSites の template.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2155	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229706	10	危険	stephen craton	-	Stephen Craton Chatness における権限を取得される脆弱性	-	CVE-2007-2149	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229707	6.5	警告	stephen craton	-	Stephen Craton Chatness の admin/save.php における .html ファイルへ PHP コードを挿入される脆弱性	-	CVE-2007-2148	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229708	7.5	危険	sitebar	-	Sitebar における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2088	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

229709	6.9	警告	zonelabs	-	Check Point Zone Labs ZoneAlarm の vsdatant.sys におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2083	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

229710	7.5	危険	xampp	-	Windows 用の XAMPP における SQL インジェクションの脆弱性	-	CVE-2007-2080	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210221	7.5	HIGH Network	microchip	atsama5d21c-cu_firmware atsama5d21c-cur_firmware atsama5d22c-cn_firmware atsama5d22c-cnr_firmware atsama5d22c-cu_firmware atsama5d22c-cur_firmware atsama5d23c-cn_firmware atsama5…	The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets.	CWE-798 Use of Hard-coded Credentials	CVE-2020-12789	2024-11-21 14:00	2020-09-14	Show	GitHub Exploit DB Packet Storm

210222	7.5	HIGH Network	microchip	atsama5d21c-cu_firmware atsama5d21c-cur_firmware atsama5d22c-cn_firmware atsama5d22c-cnr_firmware atsama5d22c-cu_firmware atsama5d22c-cur_firmware atsama5d23c-cn_firmware atsama5…	CMAC verification functionality in Microchip Atmel ATSAMA5 products is vulnerable to vulnerable to timing and power analysis attacks.	CWE-203 Information Exposure Through Discrepancy	CVE-2020-12788	2024-11-21 14:00	2020-09-14	Show	GitHub Exploit DB Packet Storm

210223	7.5	HIGH Network	microchip	atsama5d21c-cu_firmware atsama5d21c-cur_firmware atsama5d22c-cn_firmware atsama5d22c-cnr_firmware atsama5d22c-cu_firmware atsama5d22c-cur_firmware atsama5d23c-cn_firmware atsama5…	Microchip Atmel ATSAMA5 products in Secure Mode allow an attacker to bypass existing security mechanisms related to applet handling.	NVD-CWE-noinfo	CVE-2020-12787	2024-11-21 14:00	2020-09-14	Show	GitHub Exploit DB Packet Storm

210224	8.8	HIGH Network	loway	queuemetrics	A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.04.1 allows remote authenticated attackers to execute arbitrary SQL commands via the TASKS_LIST__pt.querystring parameter.	CWE-89 SQL Injection	CVE-2020-13127	2024-11-21 14:00	2020-09-10	Show	GitHub Exploit DB Packet Storm

210225	7.2	HIGH Network	openfind	mail2000	Openfind Mail2000 contains Broken Access Control vulnerability, which can be used to execute unauthorized commands after attackers obtain the administrator access token or cookie.	NVD-CWE-noinfo	CVE-2020-12776	2024-11-21 14:00	2020-09-1	Show	GitHub Exploit DB Packet Storm

210226	3.8	LOW Local	qemu canonical debian	qemu ubuntu_linux debian_linux	In QEMU through 5.0.0, an integer overflow was found in the SM501 display driver implementation. This flaw occurs in the COPY_AREA macro while handling MMIO write operations through the sm501_2d_engi…	CWE-190 Integer Overflow or Wraparound	CVE-2020-12829	2024-11-21 14:00	2020-09-1	Show	GitHub Exploit DB Packet Storm

210227	8.8	HIGH Network	seczetta	neprofile	A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flo…	CWE-74 Injection	CVE-2020-12855	2024-11-21 14:00	2020-08-27	Show	GitHub Exploit DB Packet Storm

210228	7.5	HIGH Network	oasis-open	oasis_digital_signature_services	In OASIS Digital Signature Services (DSS) 1.0, an attacker can control the validation outcome (i.e., trigger either a valid or invalid outcome for a valid or invalid signature) via a crafted XML sign…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-13101	2024-11-21 14:00	2020-08-24	Show	GitHub Exploit DB Packet Storm

210229	6.1	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.5 allows reflected XSS via the Dropbox webhook.	CWE-79 Cross-site Scripting	CVE-2020-12759	2024-11-21 14:00	2020-08-21	Show	GitHub Exploit DB Packet Storm

210230	6.1	MEDIUM Network	teradici	pcoip_management_console	Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a malicious payload.	CWE-79 Cross-site Scripting	CVE-2020-13183	2024-11-21 14:00	2020-08-18	Show	GitHub Exploit DB Packet Storm