Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229711	7.2	危険	シマンテック	-	Symantec Norton Ghost などの製品で使用される Ghost Service Manager におけるバッファオーバーフローの脆弱性	-	CVE-2007-2359	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

229712	6.8	警告	sinecms	-	SineCms の mods/Core/result.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2357	2012-12-20 18:19	2007-04-30	Show	GitHub Exploit DB Packet Storm

229713	7.8	危険	Progress Software Corporation	-	Progress Webspeed Messenger における重要な情報を取得される脆弱性	-	CVE-2007-2354	2012-12-20 18:19	2007-04-30	Show	GitHub Exploit DB Packet Storm

229714	7.5	危険	php-generics	-	PHP-Generics における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2346	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

229715	7.5	危険	phpbandmanager	-	phpBandManager の suite/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2341	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

229716	6.8	警告	phporacleview	-	phporacleview の inc/include_all.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2340	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

229717	7.5	危険	shop-script	-	Shop-Script の cart.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2331	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

229718	7.5	危険	searchactivity	-	Searchactivity の searchbot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2329	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

229719	7.5	危険	phpmytgp	-	phpMYTGP の addvip.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2328	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

229720	10	危険	SilverStripe	-	SilverStripe の検索機能における脆弱性	-	CVE-2007-2321	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210151	6.1	MEDIUM Network	monstaftp	monsta_ftp	Monsta FTP 2.10.1 or below is prone to a stored cross-site scripting vulnerability in the language setting due to insufficient output encoding.	CWE-79 Cross-site Scripting	CVE-2020-14055	2024-11-21 14:02	2020-07-2	Show	GitHub Exploit DB Packet Storm

210152	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The quick search component in Atlassian Jira Server and Data Center before 8.9.1 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability	CWE-79 Cross-site Scripting	CVE-2020-14169	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210153	5.9	MEDIUM Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The email client in Jira Server and Data Center before version 7.13.16, from 8.5.0 before 8.5.7, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to access outgoing emails…	NVD-CWE-noinfo	CVE-2020-14168	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210154	7.5	HIGH Network	atlassian	jira jira_software_data_center jira_server jira_data_center	The MessageBundleResource resource in Jira Server and Data Center before version 7.13.4, from 8.5.0 before 8.5.5, from 8.8.0 before 8.8.2, and from 8.9.0 before 8.9.1 allows remote attackers to impac…	NVD-CWE-noinfo	CVE-2020-14167	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210155	4.8	MEDIUM Network	atlassian	jira_service_desk	The /servicedesk/customer/portals resource in Jira Service Desk Server and Data Center before version 4.10.0 allows remote attackers with project administrator privileges to inject arbitrary HTML or …	CWE-79 Cross-site Scripting	CVE-2020-14166	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210156	5.3	MEDIUM Network	atlassian	jira jira_software_data_center	The UniversalAvatarResource.getAvatars resource in Jira Server and Data Center before version 8.9.0 allows remote attackers to obtain information about custom project avatars names via an Improper au…	NVD-CWE-noinfo	CVE-2020-14165	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210157	6.1	MEDIUM Network	atlassian	jira jira_software_data_center	The WYSIWYG editor resource in Jira Server and Data Center before version 8.8.2 allows remote attackers to inject arbitrary HTML or JavaScript names via an Cross Site Scripting (XSS) vulnerability by…	CWE-79 Cross-site Scripting	CVE-2020-14164	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210158	6.5	MEDIUM Network	squid-cache	squid	An issue was discovered in Squid 5.x before 5.0.3. Due to an Incorrect Synchronization, a Denial of Service can occur when processing objects in an SMP cache because of an Ipc::Mem::PageStack::pop AB…	CWE-662 Improper Synchronization	CVE-2020-14059	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210159	7.5	HIGH Network	squid-cache fedoraproject netapp	squid fedora cloud_manager	An issue was discovered in Squid before 4.12 and 5.x before 5.0.3. Due to use of a potentially dangerous function, Squid and the default certificate validation helper are vulnerable to a Denial of Se…	NVD-CWE-noinfo	CVE-2020-14058	2024-11-21 14:02	2020-07-1	Show	GitHub Exploit DB Packet Storm

210160	5.9	MEDIUM Network	putty netapp fedoraproject	putty oncommand_unified_manager_core_package fedora	PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-14002	2024-11-21 14:02	2020-06-30	Show	GitHub Exploit DB Packet Storm