Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229821	6.8	警告	uber uploader	-	Uber Uploader における任意の PHP スクリプトを実行される脆弱性	-	CVE-2007-0123	2012-12-20 18:19	2007-01-8	Show	GitHub Exploit DB Packet Storm

229822	5	警告	サン・マイクロシステムズ	-	Sun Java System Content Delivery Server における "コンテンツの詳細" を読み込まれ重要な情報を取得される脆弱性	-	CVE-2007-0114	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229823	6.8	警告	resco	-	Windows Mobile 上で稼動しているモバイルデバイスで使用されている PocketPC 用の Resco Photo Viewer におけるバッファオーバーフローの脆弱性	-	CVE-2007-0111	2012-12-20 18:19	2007-01-8	Show	GitHub Exploit DB Packet Storm

229824	5	警告	WordPress.org	-	WordPress の wp-login.php における重要な情報を取得される脆弱性	-	CVE-2007-0109	2012-12-20 18:19	2007-01-8	Show	GitHub Exploit DB Packet Storm

229825	6.8	警告	WordPress.org	-	WordPress における SQL インジェクション保護スキームを回避される脆弱性	-	CVE-2007-0107	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229826	6.8	警告	WordPress.org	-	WordPress の CSRF 保護スキームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0106	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229827	10	危険	トレンドマイクロ	-	Trend Micro ServerProtect の不特定のプロシージャにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0074	2012-12-20 18:19	2008-11-17	Show	GitHub Exploit DB Packet Storm

229828	10	危険	トレンドマイクロ	-	Trend Micro ServerProtect の不特定のプロシージャにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0073	2012-12-20 18:19	2008-11-17	Show	GitHub Exploit DB Packet Storm

229829	10	危険	トレンドマイクロ	-	Trend Micro ServerProtect の不特定のプロシージャにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0072	2012-12-20 18:19	2008-11-17	Show	GitHub Exploit DB Packet Storm

229830	4.3	警告	サン・マイクロシステムズ	-	Sun JRE におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-0012	2012-12-20 18:19	2008-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197431	7.5	HIGH Network	cloudfoundry	cf-deployment capi-release	CAPI (Cloud Controller) versions prior to 1.101.0 are vulnerable to a denial-of-service attack in which an unauthenticated malicious attacker can send specially-crafted YAML files to certain endpoint…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-5423	2024-11-21 14:34	2020-12-2	Show	GitHub Exploit DB Packet Storm

197432	9.8	CRITICAL Network	valvesoftware	game_networking_sockets	Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long encrypted messages in function AES_GCM_DecryptContext::Decrypt() when compiled using libsodium, leading to a Stack-Base…	CWE-787 Out-of-bounds Write	CVE-2020-6018	2024-11-21 14:34	2020-12-2	Show	GitHub Exploit DB Packet Storm

197433	6.5	MEDIUM Network	netgear	gs108ev3_firmware	Cross-site request forgery (CSRF) vulnerability in GS108Ev3 firmware version 2.06.10 and earlier allows remote attackers to hijack the authentication of administrators and the product's settings may …	CWE-352 Origin Validation Error	CVE-2020-5641	2024-11-21 14:34	2020-11-24	Show	GitHub Exploit DB Packet Storm

197434	7.8	HIGH Local	epson	remote_printer_driver connect scanner_driver net_software_development_kit net_print net_config_se net_config scan_icm_updater e-photo easy_photo_print prolab_print im…	Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-427 Uncontrolled Search Path Element	CVE-2020-5674	2024-11-21 14:34	2020-11-24	Show	GitHub Exploit DB Packet Storm

197435	6.1	MEDIUM Physics	tp-link	archer_c9_firmware	UNIX Symbolic Link (Symlink) Following in TP-Link Archer C9(US)_V1_180125 firmware allows an unauthenticated actor, with physical access and network access, to read sensitive files and write to a lim…	CWE-59 Link Following	CVE-2020-5797	2024-11-21 14:34	2020-11-21	Show	GitHub Exploit DB Packet Storm

197436	7.5	HIGH Network	mitsubishielectric	r00cpu_firmware r01cpu_firmware r02cpu_firmware r04cpu_firmware r08cpu_firmware r16cpu_firmware r32cpu_firmware r120cpu_firmware r08sfcpu_firmware r16sfcpu_firmware r32s…	Uncontrolled resource consumption vulnerability in MELSEC iQ-R Series modules (R00/01/02CPU firmware version '19' and earlier, R04/08/16/32/120 (EN) CPU firmware version '51' and earlier, R08/16/32/1…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-5668	2024-11-21 14:34	2020-11-20	Show	GitHub Exploit DB Packet Storm

197437	4.3	MEDIUM Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_acceleration_manager big-ip_application_secur…	In versions 16.0.0-16.0.0.1 and 15.1.0-15.1.1, on specific BIG-IP platforms, attackers may be able to obtain TCP sequence numbers from the BIG-IP system that can be reused in future connections with …	NVD-CWE-noinfo	CVE-2020-5947	2024-11-21 14:34	2020-11-19	Show	GitHub Exploit DB Packet Storm

197438	9.8	CRITICAL Network	valvesoftware	game_networking_sockets	Valve's Game Networking Sockets prior to version v1.2.0 improperly handles unreliable segments with negative offsets in function SNP_ReceiveUnreliableSegment(), leading to a Heap-Based Buffer Underfl…	CWE-787 Out-of-bounds Write	CVE-2020-6016	2024-11-21 14:34	2020-11-19	Show	GitHub Exploit DB Packet Storm

197439	9.8	CRITICAL Network	riken	xoonips	Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.	CWE-502 Deserialization of Untrusted Data	CVE-2020-5664	2024-11-21 14:34	2020-11-16	Show	GitHub Exploit DB Packet Storm

197440	5.4	MEDIUM Network	riken	xoonips	Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5663	2024-11-21 14:34	2020-11-16	Show	GitHub Exploit DB Packet Storm