Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230141 4.3 警告 xcms - XCMS の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5060 2012-12-20 18:33 2007-09-24 Show GitHub Exploit DB Packet Storm
230142 4.3 警告 phpgedview - PhpGedView におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5051 2012-12-20 18:33 2007-09-23 Show GitHub Exploit DB Packet Storm
230143 7.2 危険 シマンテック - Norton Internet Security におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5047 2012-12-20 18:33 2007-09-23 Show GitHub Exploit DB Packet Storm
230144 6.9 警告 zonelabs - ZoneAlarm におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5044 2012-12-20 18:33 2007-09-23 Show GitHub Exploit DB Packet Storm
230145 4.3 警告 phpbb xs - phpBB XS の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5033 2012-12-20 18:33 2007-09-21 Show GitHub Exploit DB Packet Storm
230146 9.3 危険 VMware - EMC VMware ACE における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5025 2012-12-20 18:33 2007-09-21 Show GitHub Exploit DB Packet Storm
230147 6.9 警告 VMware - EMC VMware Workstation などにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5023 2012-12-20 18:33 2007-09-21 Show GitHub Exploit DB Packet Storm
230148 10 危険 サン・マイクロシステムズ - JRE の Sun Java Web Start ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5019 2012-12-20 18:33 2007-09-20 Show GitHub Exploit DB Packet Storm
230149 5 警告 Yahoo! - Yahoo! Messenger の ft60.dll における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5017 2012-12-20 18:33 2007-09-20 Show GitHub Exploit DB Packet Storm
230150 6.8 警告 streamline - Streamline PHP Media Server における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5015 2012-12-20 18:33 2007-09-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214061 6.1 MEDIUM
Local 		froxlor froxlor An issue was discovered in Froxlor before 0.10.14. It created files with static names in /tmp during installation if the installation directory was not writable. This allowed local attackers to cause… CWE-20
 Improper Input Validation  		CVE-2020-10236 2024-11-21 13:55 2020-03-10 Show GitHub Exploit DB Packet Storm
214062 8.8 HIGH
Network 		froxlor froxlor An issue was discovered in Froxlor before 0.10.14. Remote attackers with access to the installation routine could have executed arbitrary code via the database configuration options that were passed … CWE-78
CWE-116
OS Command 
 Improper Encoding or Escaping of Output 		CVE-2020-10235 2024-11-21 13:55 2020-03-10 Show GitHub Exploit DB Packet Storm
214063 9.1 CRITICAL
Network 		sleuthkit the_sleuth_kit In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c. CWE-125
Out-of-bounds Read 		CVE-2020-10233 2024-11-21 13:55 2020-03-9 Show GitHub Exploit DB Packet Storm
214064 9.8 CRITICAL
Network 		sleuthkit
debian
fedoraproject 		the_sleuth_kit
debian_linux
fedora 		In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c. CWE-787
 Out-of-bounds Write 		CVE-2020-10232 2024-11-21 13:55 2020-03-9 Show GitHub Exploit DB Packet Storm
214065 9.8 CRITICAL
Network 		phpgurukul job_portal An unauthenticated file upload vulnerability has been identified in admin/gallery.php in PHPGurukul Job Portal 1.0. The vulnerability could be exploited by an unauthenticated remote attacker to uploa… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-10225 2024-11-21 13:55 2020-03-9 Show GitHub Exploit DB Packet Storm
214066 9.8 CRITICAL
Network 		phpgurukul online_book_store An unauthenticated file upload vulnerability has been identified in admin_add.php in PHPGurukul Online Book Store 1.0. The vulnerability could be exploited by an unauthenticated remote attacker to up… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-10224 2024-11-21 13:55 2020-03-9 Show GitHub Exploit DB Packet Storm
214067 6.1 MEDIUM
Network 		searchblox searchblox SearchBlox before Version 9.1 is vulnerable to cross-origin resource sharing misconfiguration. CWE-79
Cross-site Scripting 		CVE-2020-10132 2024-11-21 13:54 2023-09-7 Show GitHub Exploit DB Packet Storm
214068 9.8 CRITICAL
Network 		searchblox searchblox SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-10131 2024-11-21 13:54 2023-09-7 Show GitHub Exploit DB Packet Storm
214069 8.8 HIGH
Network 		searchblox searchblox SearchBlox before Version 9.1 is vulnerable to business logic bypass where the user is able to create multiple super admin users in the system. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-10130 2024-11-21 13:54 2023-09-7 Show GitHub Exploit DB Packet Storm
214070 8.8 HIGH
Network 		searchblox searchblox SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to access Admin functionality. CWE-269
 Improper Privilege Management 		CVE-2020-10129 2024-11-21 13:54 2023-09-7 Show GitHub Exploit DB Packet Storm