Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229831 7.5 危険 sinecms - SineCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6366 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
229832 7.8 危険 サン・マイクロシステムズ - Sun XSCF XCP におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6360 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
229833 8.5 危険 scponly - scponly におけるコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6350 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
229834 6.8 警告 SquirrelMail Project - SquirrelMail における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6348 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
229835 6.8 警告 prowizard - prowiz におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6510 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229836 7.5 危険 xecms - xeCMS の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6508 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229837 10 危険 トレンドマイクロ - Windows 用の Trend Micro ServerProtect における "ファイルシステムの全アクセス権限" を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6507 2012-12-20 18:34 2007-07-27 Show GitHub Exploit DB Packet Storm
229838 4.9 警告 plain black - Plain Black WebGUI における管理アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6487 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
229839 6.8 警告 phprpg - phpRPG の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6484 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
229840 7.8 危険 サン・マイクロシステムズ - Sun Ray Server Software の utdevmgrd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6482 2012-12-20 18:34 2007-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200811 7.5 HIGH
Network 		coturn_project
debian
fedoraproject
canonical
opensuse 		coturn
debian_linux
fedora
ubuntu_linux
leap 		In coturn before version 4.5.1.3, there is an issue whereby STUN/TURN response buffer is not initialized properly. There is a leak of information between different client connections. One client (an … - CVE-2020-4067 2024-11-21 14:32 2020-06-30 Show GitHub Exploit DB Packet Storm
200812 5.4 MEDIUM
Network 		oauth2_proxy_project oauth2_proxy In OAuth2 Proxy from version 5.1.1 and less than version 6.0.0, users can provide a redirect address for the proxy to send the authenticated user to at the end of the authentication flow. This is exp… - CVE-2020-4037 2024-11-21 14:32 2020-06-30 Show GitHub Exploit DB Packet Storm
200813 5.4 MEDIUM
Network 		ibm business_process_manager
business_automation_workflow 		IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.5 and 8.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScrip… CWE-79
Cross-site Scripting 		CVE-2020-4557 2024-11-21 14:32 2020-06-29 Show GitHub Exploit DB Packet Storm
200814 7.5 HIGH
Network 		ibm api_connect IBM API Connect V2018.4.1.0 through 2018.4.1.11 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 181324. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-4452 2024-11-21 14:32 2020-06-29 Show GitHub Exploit DB Packet Storm
200815 6.5 MEDIUM
Network 		hcltech notes HCL Notes is vulnerable to an information leakage vulnerability through its support for the 'mailto' protocol. This vulnerability could result in files from the user's filesystem or connected network… NVD-CWE-noinfo
CVE-2020-4089 2024-11-21 14:32 2020-06-27 Show GitHub Exploit DB Packet Storm
200816 5.9 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow an attacker to obtain sensitive information due to insecure communications being used between the application and server. IBM X-Force ID: 1… CWE-200
Information Exposure 		CVE-2020-4565 2024-11-21 14:32 2020-06-26 Show GitHub Exploit DB Packet Storm
200817 5.4 MEDIUM
Network 		ibm maximo_asset_management IBM Maximo Asset Management 7.6.0.10 and 7.6.1.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun… CWE-79
Cross-site Scripting 		CVE-2020-4223 2024-11-21 14:32 2020-06-26 Show GitHub Exploit DB Packet Storm
200818 5.3 MEDIUM
Network 		jhipster generator-jhipster-kotlin In generator-jhipster-kotlin version 1.6.0 log entries are created for invalid password reset attempts. As the email is provided by a user and the api is public this can be used by an attacker to for… - CVE-2020-4072 2024-11-21 14:32 2020-06-26 Show GitHub Exploit DB Packet Storm
200819 5.5 MEDIUM
Local 		vmware workstation
fusion
esxi
cloud_foundation 		VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201907101-SG), Workstation (15.x before 15.0.2), and Fusion (11.x before 11.0.2) contain a heap overflow vulnerability in the vmxne… CWE-787
 Out-of-bounds Write 		CVE-2020-3971 2024-11-21 14:32 2020-06-26 Show GitHub Exploit DB Packet Storm
200820 5.5 MEDIUM
Local 		vmware esxi
workstation
fusion
cloud_foundation 		VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.2), and Fusion (11.x before 11.5.2) contain an in… CWE-125
Out-of-bounds Read 		CVE-2020-3965 2024-11-21 14:32 2020-06-26 Show GitHub Exploit DB Packet Storm