Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229871	10	危険	realink	-	C-Arbre における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1721	2012-12-20 18:19	2007-03-27	Show	GitHub Exploit DB Packet Storm

229872	7.5	危険	sb-websoft	-	PHP-Nuke 用の Addressbook モジュールにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1720	2012-12-20 18:19	2007-03-27	Show	GitHub Exploit DB Packet Storm

229873	7.5	危険	ttcms	-	ttCMS の lib/db/ez_sql.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1708	2012-12-20 18:19	2007-03-26	Show	GitHub Exploit DB Packet Storm

229874	7.8	危険	yet another telephony engine	-	Yate の SIP チャネルモジュールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1693	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

229875	6.8	警告	second sight software	-	Second Sight Software ActiveGS ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1691	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229876	6.8	警告	second sight software	-	Second Sight Software ActiveGS ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1690	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

229877	10	危険	シマンテック	-	Norton Personal Firewall および Internet Security 用の ISAlertDataCOM ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-1689	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

229878	9.3	危険	solidworks	-	sldimdownload.dll の SolidWorks sldimdownload ActiveX コントロールにおける任意のコマンドを実行される脆弱性	-	CVE-2007-1684	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

229879	9.3	危険	Yahoo!	-	Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1680	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

229880	7.5	危険	Python Software Foundation	-	Python の Modules/zlib におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1657	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197241	6.1	MEDIUM Network	kibokolabs	chained_quiz	The chained-quiz plugin 1.1.8.1 for WordPress has reflected XSS via the wp-admin/admin-ajax.php total_questions parameter.	CWE-79 Cross-site Scripting	CVE-2020-7104	2024-11-21 14:36	2020-01-18	Show	GitHub Exploit DB Packet Storm

197242	5.3	MEDIUM Network	zte	f6x2w_firmware	V6.0.10P2T2 and V6.0.10P2T5 of F6x2W product are impacted by Information leak vulnerability. Unauthorized users could log in directly to obtain page information without entering a verification code.	CWE-669 Incorrect Resource Transfer Between Spheres	CVE-2020-6862	2024-11-21 14:36	2020-01-18	Show	GitHub Exploit DB Packet Storm

197243	5.6	MEDIUM Network	libslirp_project debian opensuse qemu	libslirp debian_linux leap qemu	tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanages memory, as demonstrated by IRC DCC commands in EMU_IRC. This can cause a heap-based buffer overflow or other out-of-bounds a…	CWE-787 Out-of-bounds Write	CVE-2020-7039	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

197244	9.1	CRITICAL Network	webfactoryltd	wp_database_reset	The WordPress plugin, WP Database Reset through 3.1, contains a flaw that allowed any unauthenticated user to reset any table in the database to the initial WordPress set-up state (deleting all site …	CWE-306 Missing Authentication for Critical Function	CVE-2020-7048	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

197245	8.8	HIGH Network	webfactoryltd	wp_database_reset	The WordPress plugin, WP Database Reset through 3.1, contains a flaw that gave any authenticated user, with minimal permissions, the ability (with a simple wp-admin/admin.php?db-reset-tables[]=users …	CWE-269 Improper Privilege Management	CVE-2020-7047	2024-11-21 14:36	2020-01-17	Show	GitHub Exploit DB Packet Storm

197246	5.4	MEDIUM Network	learndash	learndash	The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field.	CWE-79 Cross-site Scripting	CVE-2020-7108	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

197247	6.1	MEDIUM Network	etoilewebdesign	ultimate_faq	The Ultimate FAQ plugin before 1.8.30 for WordPress allows XSS via Display_FAQ to Shortcodes/DisplayFAQs.php.	CWE-79 Cross-site Scripting	CVE-2020-7107	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

197248	6.1	MEDIUM Network	cacti debian opensuse suse fedoraproject	cacti debian_linux leap backports_sle package_hub fedora extra_packages_for_enterprise_linux	Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the descrip…	CWE-79 Cross-site Scripting	CVE-2020-7106	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

197249	7.5	HIGH Network	redislabs debian fedoraproject	hiredis debian_linux fedora	async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.	CWE-476 NULL Pointer Dereference	CVE-2020-7105	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm

197250	6.5	MEDIUM Adjacent	wireshark debian	wireshark debian_linux	In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by validating opcodes.	CWE-476 NULL Pointer Dereference	CVE-2020-7045	2024-11-21 14:36	2020-01-16	Show	GitHub Exploit DB Packet Storm