Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229741 7.5 危険 phpmyspace - phpMySpace の modules/news/article.php における SQL インジェクションの脆弱性 - CVE-2007-2247 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
229742 6.8 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2245 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
229743 6.8 警告 PunBB - PunBB の footer.php における include/user/ 配下のローカルファイルをインクルードされる脆弱性 - CVE-2007-2236 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
229744 4.3 警告 PunBB - PunBB におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2235 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
229745 7.5 危険 PunBB - PunBB の include/common.php における global パラメータを登録される脆弱性 - CVE-2007-2234 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
229746 7.5 危険 ripe website manager - Ripe Website Manager の contact/index.php における SQL インジェクションの脆弱性 - CVE-2007-2207 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
229747 4.3 警告 ripe website manager - Ripe Website Manager の contact/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-2206 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
229748 7.5 危険 post revolution - Post Revolution における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2201 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
229749 6.8 警告 supasite - Supasite における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2185 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
229750 7.5 危険 php-ring - PHP-Ring Webring System の index.php における SQL インジェクションの脆弱性 - CVE-2007-2183 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200361 7.8 HIGH
Local 		uptimed_project uptimed uptimed before 0.4.6-r1 on Gentoo allows local users (with access to the uptimed user account) to gain root privileges by creating a hard link within the /var/spool/uptimed directory, because there i… NVD-CWE-noinfo
CVE-2020-36657 2024-11-21 14:30 2023-01-27 Show GitHub Exploit DB Packet Storm
200362 8.8 HIGH
Network 		yiiframework gii Yii Yii2 Gii before 2.2.2 allows remote attackers to execute arbitrary code via the Generator.php messageCategory field. The attacker can embed arbitrary PHP code into the model file. CWE-94
Code Injection 		CVE-2020-36655 2024-11-21 14:30 2023-01-21 Show GitHub Exploit DB Packet Storm
200363 6.1 MEDIUM
Network 		geni geni-portal A vulnerability classified as problematic has been found in GENI Portal. This affects the function no_invocation_id_error of the file portal/www/portal/sliceresource.php. The manipulation of the argu… CWE-79
Cross-site Scripting 		CVE-2020-36654 2024-11-21 14:30 2023-01-18 Show GitHub Exploit DB Packet Storm
200364 7.5 HIGH
Network 		nodeserver_project nodeserver A vulnerability has been found in youngerheart nodeserver and classified as critical. Affected by this vulnerability is an unknown functionality of the file nodeserver.js. The manipulation leads to p… CWE-22
Path Traversal 		CVE-2020-36651 2024-11-21 14:30 2023-01-18 Show GitHub Exploit DB Packet Storm
200365 8.0 HIGH
Adjacent 		gry_project gry A vulnerability, which was classified as critical, was found in IonicaBizau node-gry up to 5.x. This affects an unknown part. The manipulation leads to command injection. Upgrading to version 6.0.0 i… CWE-77
Command Injection 		CVE-2020-36650 2024-11-21 14:30 2023-01-12 Show GitHub Exploit DB Packet Storm
200366 7.5 HIGH
Network 		papaparse papaparse A vulnerability was found in mholt PapaParse up to 5.1.x. It has been classified as problematic. Affected is an unknown function of the file papaparse.js. The manipulation leads to inefficient regula… - CVE-2020-36649 2024-11-21 14:30 2023-01-12 Show GitHub Exploit DB Packet Storm
200367 9.8 CRITICAL
Network 		pouet pouet2.0 A vulnerability, which was classified as critical, was found in pouetnet pouet 2.0. This affects an unknown part. The manipulation of the argument howmany leads to sql injection. The identifier of th… CWE-89
SQL Injection 		CVE-2020-36648 2024-11-21 14:30 2023-01-8 Show GitHub Exploit DB Packet Storm
200368 7.5 HIGH
Network 		cisco iot_field_network_director A vulnerability in the API of Cisco IoT Field Network Director (FND) could allow an unauthenticated, remote attacker to view sensitive information on an affected system. The vulnerability exists beca… CWE-306
Missing Authentication for Critical Function 		CVE-2020-3392 2024-11-21 14:30 2020-11-19 Show GitHub Exploit DB Packet Storm
200369 7.8 HIGH
Local 		cisco asyncos A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance (formerly Web Security Appliance) could allow an authenticated, local attacker to perform command… CWE-78
OS Command  		CVE-2020-3367 2024-11-21 14:30 2020-11-19 Show GitHub Exploit DB Packet Storm
200370 8.8 HIGH
Network 		cisco integrated_management_controller A vulnerability in the web UI of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary code and execute arbitrary commands at the underlying o… CWE-78
OS Command  		CVE-2020-3371 2024-11-21 14:30 2020-11-7 Show GitHub Exploit DB Packet Storm