Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229821 10 危険 シマンテック - Norton Personal Firewall および Internet Security 用の ISAlertDataCOM ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-1689 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
229822 9.3 危険 solidworks - sldimdownload.dll の SolidWorks sldimdownload ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2007-1684 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
229823 9.3 危険 Yahoo! - Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1680 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
229824 7.5 危険 Python Software Foundation - Python の Modules/zlib におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1657 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229825 10 危険 tinymux - TinyMUX の funmath.cpp におけるバッファオーバーフローの脆弱性 - CVE-2007-1655 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229826 4.3 警告 subhub - SubHub におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1646 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229827 7.5 危険 portailphp - PortailPHP の index.php における SQL インジェクションの脆弱性 - CVE-2007-1641 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229828 4.6 警告 phpprojekt - PHProjekt における任意のコードを実行される脆弱性 - CVE-2007-1639 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229829 6.8 警告 phpprojekt - PHProjekt の lib/lib.inc.php におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-1638 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
229830 7.5 危険 roseonlinecms - RoseOnlineCMS の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1636 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200091 5.4 MEDIUM
Network 		lavalite lavalite A stored cross site scripting (XSS) vulnerability in the /admin/roles/role component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload en… CWE-79
Cross-site Scripting 		CVE-2020-36396 2024-11-21 14:29 2021-07-3 Show GitHub Exploit DB Packet Storm
200092 5.4 MEDIUM
Network 		lavalite lavalite A stored cross site scripting (XSS) vulnerability in the /admin/user/team component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload ent… CWE-79
Cross-site Scripting 		CVE-2020-36395 2024-11-21 14:29 2021-07-3 Show GitHub Exploit DB Packet Storm
200093 8.8 HIGH
Network 		aomedia libavif libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid. CWE-787
 Out-of-bounds Write 		CVE-2020-36407 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200094 8.8 HIGH
Network 		uwebsockets_project uwebsockets uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). NOTE: the vendor's position is that this is "a minor issue … CWE-787
 Out-of-bounds Write 		CVE-2020-36406 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200095 7.8 HIGH
Local 		keystone-engine keystone_engine Keystone Engine 0.9.2 has a use-after-free in llvm_ks::X86Operand::getToken. CWE-416
 Use After Free 		CVE-2020-36405 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200096 7.8 HIGH
Local 		keystone-engine keystone Keystone Engine 0.9.2 has an invalid free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl. CWE-763
 Release of Invalid Pointer or Reference 		CVE-2020-36404 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200097 8.8 HIGH
Network 		htslib htslib HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read). CWE-787
 Out-of-bounds Write 		CVE-2020-36403 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200098 7.8 HIGH
Local 		soliditylang solidity Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a co… CWE-787
 Out-of-bounds Write 		CVE-2020-36402 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200099 7.8 HIGH
Local 		mruby mruby mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free). CWE-415
 Double Free 		CVE-2020-36401 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200100 9.8 CRITICAL
Network 		zeromq libzmq ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, a different vulnerability than CVE-2021-20235. CWE-787
 Out-of-bounds Write 		CVE-2020-36400 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm