Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230221	7.5	危険	XOOPS	-	XOOPS 用の Glossaire モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2738	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

230222	7.5	危険	XOOPS	-	Xoops 用の MyConference モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2737	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

230223	7.5	危険	touteresa	-	Xoops 用の ResManager モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2735	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

230224	10	危険	snaps gallery	-	Snaps! Gallery の Admin/users.php における任意のユーザ名を変更される脆弱性	-	CVE-2007-2715	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

230225	10	危険	tinyirc	-	TinyIdentD におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2711	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

230226	6.8	警告	simple php scripts gallery	-	sphp の Ivan Peevski gallery における任意の PHP コードを実行される脆弱性	-	CVE-2007-2679	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

230227	7.5	危険	phpchess	-	phpChess Community Edition における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2677	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

230228	7.5	危険	PreProject.com	-	Pre Classifieds Listings の search.php における SQL インジェクションの脆弱性	-	CVE-2007-2675	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

230229	7.5	危険	PreProject.com	-	Pre Shopping Mall の detail.php における SQL インジェクションの脆弱性	-	CVE-2007-2674	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

230230	7.5	危険	thinc4orce marketing group	-	PHP Coupon Script の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2672	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197271	7.8	HIGH Local	opensuse	leap backports_sle tumbleweed	A Incorrect Default Permissions vulnerability in the packaging of inn in openSUSE Leap 15.2, openSUSE Tumbleweed, openSUSE Leap 15.1 allows local attackers with control of the new user to escalate th…	-	CVE-2020-8026	2024-11-21 14:38	2020-08-7	Show	GitHub Exploit DB Packet Storm

197272	9.3	CRITICAL Local	suse	linux_enterprise_server linux_enterprise_software_development_kit linux_enterprise_high_performance_computing	A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP …	-	CVE-2020-8025	2024-11-21 14:38	2020-08-7	Show	GitHub Exploit DB Packet Storm

197273	8.8	HIGH Local	bitdefender	endpoint_security	Improper Authentication vulnerability in Bitdefender Endpoint Security for Mac allows an unprivileged process to restart the main service and potentially inject third-party code into a trusted proces…	CWE-287 Improper Authentication	CVE-2020-8108	2024-11-21 14:38	2020-08-3	Show	GitHub Exploit DB Packet Storm

197274	6.8	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 that allowed an authenticated attacker via the administrator web interface to perform an arbitrary file reading vulnerability thro…	CWE-22 Path Traversal	CVE-2020-8222	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197275	4.9	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A path traversal vulnerability exists in Pulse Connect Secure <9.1R8 which allows an authenticated attacker to read arbitrary files via the administrator web interface.	CWE-22 Path Traversal	CVE-2020-8221	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197276	6.5	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A denial of service vulnerability exists in Pulse Connect Secure <9.1R8 that allows an authenticated attacker to perform command injection via the administrator web which can cause DOS.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8220	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197277	7.2	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An insufficient permission check vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to change the password of a full administrator.	CWE-276 Incorrect Default Permissions	CVE-2020-8219	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197278	7.2	HIGH Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A code injection vulnerability exists in Pulse Connect Secure <9.1R8 that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.	CWE-94 Code Injection	CVE-2020-8218	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197279	5.4	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	A cross site scripting (XSS) vulnerability in Pulse Connect Secure <9.1R8 allowed attackers to exploit in the URL used for Citrix ICA.	CWE-79 Cross-site Scripting	CVE-2020-8217	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm

197280	4.3	MEDIUM Network	pulsesecure ivanti	pulse_connect_secure connect_secure pulse_policy_secure policy_secure	An information disclosure vulnerability in meeting of Pulse Connect Secure <9.1R8 allowed an authenticated end-users to find meeting details, if they know the Meeting ID.	NVD-CWE-noinfo	CVE-2020-8216	2024-11-21 14:38	2020-07-30	Show	GitHub Exploit DB Packet Storm