Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230041 4.3 警告 xeroxer - XeroXer Simple one-file gallery の gallery.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1125 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230042 5 警告 xeroxer - XeroXer Simple one-file gallery の gallery.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1124 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230043 7.5 危険 ZPanel Project - ZPanel における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1123 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230044 6.4 警告 zephyrsoft toolbox - Mathis Dirksen-Thedens ZephyrSoft Toolbox ABC における SQL インジェクションの脆弱性 - CVE-2007-1122 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230045 6.4 警告 zephyrsoft toolbox - Mathis Dirksen-Thedens ZephyrSoft Toolbox ABC における SQL インジェクションの脆弱性 - CVE-2007-1121 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230046 9.3 危険 steema software - TeeChart Pro ActiveX コントロールにおける .tee ファイルをダウンロードされる脆弱性 - CVE-2007-1120 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230047 4.3 警告 phpwebgallery - Phpwebgallery におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-1109 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230048 4.3 警告 The Tor Project - Tor における超過リソースを不当要求される脆弱性 - CVE-2007-1103 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230049 7.8 危険 pickle - Ahmet Sacan Pickle の download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1100 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230050 7.8 危険 scrymud - ScryMUD における脆弱性 - CVE-2007-1098 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210501 5.9 MEDIUM
Network 		mitel micollab The Mitel MiCollab application before 9.1.332 for iOS could allow an unauthorized user to access restricted files and folders due to insufficient access control. An exploit requires a rooted iOS devi… NVD-CWE-noinfo
CVE-2020-13767 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
210502 7.5 HIGH
Network 		mitel 6863_firmware
6865_firmware
6867_firmware
6869_firmware
6873_firmware
6940_firmware
6970_firmware
6930_firmware
6920_firmware
6905_firmware
6910_firmware 		The Web UI component of Mitel MiVoice 6800 and 6900 series SIP Phones with firmware before 5.1.0.SP5 could allow an unauthenticated attacker to expose sensitive information due to improper memory han… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-13617 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
210503 5.4 MEDIUM
Network 		hivemq broker_control_center An issue was discovered in HiveMQ Broker Control Center 4.3.2. A crafted clientid parameter in an MQTT packet (sent to the Broker) is reflected in the client section of the management console. The at… CWE-79
Cross-site Scripting 		CVE-2020-13821 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
210504 7.5 HIGH
Network 		aedes_project aedes An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-13410 2024-11-21 14:01 2020-08-27 Show GitHub Exploit DB Packet Storm
210505 8.8 HIGH
Network 		i-doit i-doit A CSV injection (aka Excel Macro Injection or Formula Injection) issue in i-doit 1.14.2 allows an attacker to execute arbitrary commands via a Title parameter that is mishandled in a CSV export. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-13826 2024-11-21 14:01 2020-08-20 Show GitHub Exploit DB Packet Storm
210506 6.1 MEDIUM
Network 		i-doit i-doit A cross-site scripting (XSS) vulnerability in i-doit 1.14.2 allows remote attackers to inject arbitrary web script or HTML via the viewMode, tvMode, tvType, objID, catgID, objTypeID, or editMode para… CWE-79
Cross-site Scripting 		CVE-2020-13825 2024-11-21 14:01 2020-08-20 Show GitHub Exploit DB Packet Storm
210507 9.0 CRITICAL
Network 		securenvoy securmail SecurEnvoy SecurMail 9.3.503 allows attackers to upload executable files and achieve OS command execution via a crafted SecurEnvoyReply cookie. CWE-22
Path Traversal 		CVE-2020-13376 2024-11-21 14:01 2020-08-8 Show GitHub Exploit DB Packet Storm
210508 9.8 CRITICAL
Network 		ivanti dsm_netinst Unsafe storage of AD credentials in Ivanti DSM netinst 5.1 due to a static, hard-coded encryption key. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-13793 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm
210509 8.8 HIGH
Network 		zyxel nas326_firmware
nas520_firmware
nas540_firmware
nas542_firmware 		Certain Zyxel products have a locally accessible binary that allows a non-root user to generate a password for an undocumented user account that can be used for a TELNET session as root. This affects… CWE-287
Improper Authentication 		CVE-2020-13365 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm
210510 8.8 HIGH
Network 		zyxel nas326_firmware
nas520_firmware
nas540_firmware
nas542_firmware 		A backdoor in certain Zyxel products allows remote TELNET access via a CGI script. This affects NAS520 V5.21(AASZ.4)C0, V5.21(AASZ.0)C0, V5.11(AASZ.3)C0, and V5.11(AASZ.0)C0; NAS542 V5.11(ABAG.0)C0, … NVD-CWE-noinfo
CVE-2020-13364 2024-11-21 14:01 2020-08-7 Show GitHub Exploit DB Packet Storm