Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229961 4.3 警告 The phpMyAdmin Project - phpMyAdmin の index.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 - CVE-2007-1395 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
229962 10 危険 webo - Leo West WEBO の modules/abook/foldertree.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1391 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
229963 4.3 警告 Snitz - Snitz Forums 2000 の pop_profile.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1374 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229964 10 危険 Pegasus Mail - Mercury/32 におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1373 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229965 10 危険 postguestbook - PHP-Nuke 用の PostGuestbook モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1372 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229966 6.9 警告 Jon Trulson - Conquest におけるバッファオーバーフローの脆弱性 - CVE-2007-1371 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229967 6.2 警告 Zend Technologies Ltd. - Zend Platform におけるルート権限を取得される脆弱性 - CVE-2007-1370 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229968 4.4 警告 Zend Technologies Ltd. - Zend Platform の ini_modifier における system.ini ファイルを変更される脆弱性 - CVE-2007-1369 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
229969 4.3 警告 VirtueMart - VirtueMart の virtuemart_parser.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1361 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
229970 6.6 警告 サン・マイクロシステムズ - Sun Fire X2100M2 および X2200M2 用の ipmitool における権限を取得される脆弱性 - CVE-2007-1346 2012-12-20 18:19 2007-03-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197231 8.8 HIGH
Network 		cacti cacti Cacti 1.2.8 allows Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php. OS commands are executed when a new poller c… CWE-78
OS Command  		CVE-2020-7237 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197232 6.1 MEDIUM
Network 		uhp uhp-100_firmware UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cw2?td= (Site Name field of the Site Setup section). CWE-79
Cross-site Scripting 		CVE-2020-7236 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197233 6.1 MEDIUM
Network 		uhp uhp-100_firmware UHP UHP-100 3.4.1.15, 3.4.2.4, and 3.4.3 devices allow XSS via cB3?ta= (profile title). CWE-79
Cross-site Scripting 		CVE-2020-7235 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197234 4.8 MEDIUM
Network 		ruckuswireless r310_firmware Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wireless X screen (after a successful login to the super account). CWE-79
Cross-site Scripting 		CVE-2020-7234 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197235 9.8 CRITICAL
Network 		kmccontrols bac-a1616bc_firmware KMS Controls BAC-A1616BC BACnet devices have a cleartext password of snowman in the BACKDOOR_NAME variable in the BC_Logon.swf file. CWE-522
 Insufficiently Protected Credentials 		CVE-2020-7233 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197236 7.5 HIGH
Network 		evoko home Evoko Home devices 1.31 through 1.37 allow remote attackers to obtain sensitive information (such as usernames and password hashes) via a WebSocket request, as demonstrated by the sockjs/224/uf1psgff… NVD-CWE-noinfo
CVE-2020-7232 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197237 5.3 MEDIUM
Network 		evoko home Evoko Home 1.31 devices provide different error messages for failed login requests depending on whether the username is valid. CWE-209
Information Exposure Through an Error Message 		CVE-2020-7231 2024-11-21 14:36 2020-01-20 Show GitHub Exploit DB Packet Storm
197238 6.5 MEDIUM
Network 		westermo mrd-315_firmware Westermo MRD-315 1.7.3 and 1.7.4 devices have an information disclosure vulnerability that allows an authenticated remote attacker to retrieve the source code of different functions of the web applic… NVD-CWE-noinfo
CVE-2020-7227 2024-11-21 14:36 2020-01-19 Show GitHub Exploit DB Packet Storm
197239 5.3 MEDIUM
Network 		amcrest web_server An issue was discovered in Amcrest Web Server 2.520.AC00.18.R 2017-06-29 WEB 3.2.1.453504. The login page responds with JavaScript when one tries to authenticate. An attacker who changes the result p… CWE-287
Improper Authentication 		CVE-2020-7222 2024-11-21 14:36 2020-01-18 Show GitHub Exploit DB Packet Storm
197240 8.8 HIGH
Network 		meinbergglobal lantime_m300_firmware
lantime_m1000_firmware 		Meinberg Lantime M300 and M1000 devices allow attackers (with privileges to configure a device) to execute arbitrary OS commands by editing the /config/netconf.cmd script (aka Extended Network Config… CWE-78
OS Command  		CVE-2020-7240 2024-11-21 14:36 2020-01-21 Show GitHub Exploit DB Packet Storm