Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229851 4.3 警告 W-Agora - Web-Agora におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1606 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229852 5 警告 W-Agora - Web-Agora における重要な情報を取得される脆弱性 - CVE-2007-1605 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229853 7.5 危険 W-Agora - Web-Agora における任意のコードを実行される脆弱性 - CVE-2007-1604 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229854 7.5 危険 weekly drawing contest - Weekly Drawing Contest の admin/contest.php における新規のコンテスト情報をデータベースに挿入される脆弱性 - CVE-2007-1603 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229855 7.5 危険 weekly drawing contest - Weekly Drawing Contest の check_vote.php における SQL インジェクションの脆弱性 - CVE-2007-1602 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229856 6.5 警告 WordPress.org - WordPress の wp-login.php における認証ユーザを他の Web サイトへリダイレクトされる脆弱性 - CVE-2007-1599 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229857 5 警告 unclassified newsboard - Unclassified NewsBoard における board ログを取得される脆弱性 - CVE-2007-1597 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229858 5 警告 シマンテック - Symantec Storage Foundation 製品の Symantec VVR および VVR の管理サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-1593 2012-12-20 18:19 2007-06-1 Show GitHub Exploit DB Packet Storm
229859 2.1 注意 TrueCrypt Foundation - TrueCrypt におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1589 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229860 10 危険 tim soderstrom - Tim Soderstrom StatsDawg の templates/config/mail.tpl における任意のプログラムを実行される脆弱性 - CVE-2007-1587 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200091 5.4 MEDIUM
Network 		lavalite lavalite A stored cross site scripting (XSS) vulnerability in the /admin/roles/role component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload en… CWE-79
Cross-site Scripting 		CVE-2020-36396 2024-11-21 14:29 2021-07-3 Show GitHub Exploit DB Packet Storm
200092 5.4 MEDIUM
Network 		lavalite lavalite A stored cross site scripting (XSS) vulnerability in the /admin/user/team component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload ent… CWE-79
Cross-site Scripting 		CVE-2020-36395 2024-11-21 14:29 2021-07-3 Show GitHub Exploit DB Packet Storm
200093 8.8 HIGH
Network 		aomedia libavif libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid. CWE-787
 Out-of-bounds Write 		CVE-2020-36407 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200094 8.8 HIGH
Network 		uwebsockets_project uwebsockets uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). NOTE: the vendor's position is that this is "a minor issue … CWE-787
 Out-of-bounds Write 		CVE-2020-36406 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200095 7.8 HIGH
Local 		keystone-engine keystone_engine Keystone Engine 0.9.2 has a use-after-free in llvm_ks::X86Operand::getToken. CWE-416
 Use After Free 		CVE-2020-36405 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200096 7.8 HIGH
Local 		keystone-engine keystone Keystone Engine 0.9.2 has an invalid free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl. CWE-763
 Release of Invalid Pointer or Reference 		CVE-2020-36404 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200097 8.8 HIGH
Network 		htslib htslib HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read). CWE-787
 Out-of-bounds Write 		CVE-2020-36403 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200098 7.8 HIGH
Local 		soliditylang solidity Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a co… CWE-787
 Out-of-bounds Write 		CVE-2020-36402 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200099 7.8 HIGH
Local 		mruby mruby mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free). CWE-415
 Double Free 		CVE-2020-36401 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm
200100 9.8 CRITICAL
Network 		zeromq libzmq ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, a different vulnerability than CVE-2021-20235. CWE-787
 Out-of-bounds Write 		CVE-2020-36400 2024-11-21 14:29 2021-07-1 Show GitHub Exploit DB Packet Storm