Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230231 6.8 警告 webdesproxy - webdesproxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2668 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230232 7.5 危険 tomasz rekawek - Yaap の includes/common.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2664 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230233 7.8 危険 precisionid barcode - PrecisionID_DataMatrix.DLL の PrecisionID Barcode ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2657 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230234 4.4 警告 SUSE
xfsdump		 - xfsdump の xfs_fsr における xfs ファイルシステム上で任意のファイルを上書きされる脆弱性 CWE-362
CWE-Other
CVE-2007-2654 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230235 7.5 危険 voodoo circle - VooDoo cIRCle におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2651 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230236 7.8 危険 t-com - T-com Speedport W 700v における遅延を回避される脆弱性 - CVE-2007-2649 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230237 6.8 警告 yenc32 - yEnc32 におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-2646 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
230238 5 警告 pinkcrow designs - PinkCrow Designs Gallery または maGAZIn の phpThumb.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2643 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
230239 7.8 危険 r2k - R2K Gallery の galeria.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2642 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
230240 7.5 危険 w1l3d4 - W1L3D4 Philboard の W1L3D4_bolum.asp における SQL インジェクションの脆弱性 - CVE-2007-2641 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210231 9.8 CRITICAL
Network 		solarwinds serv-u_ftp_server SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command. NVD-CWE-noinfo
CVE-2020-15542 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210232 9.8 CRITICAL
Network 		solarwinds serv-u_ftp_server SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution. NVD-CWE-noinfo
CVE-2020-15541 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210233 9.8 CRITICAL
Network 		we-com opendata_cms We-com OpenData CMS 2.0 allows SQL Injection via the username field on the administrator login page. CWE-89
SQL Injection 		CVE-2020-15540 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210234 9.8 CRITICAL
Network 		we-com municipality_portal_cms SQL injection can occur in We-com Municipality portal CMS 2.1.x via the cerca/ keywords field. CWE-89
SQL Injection 		CVE-2020-15539 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210235 6.1 MEDIUM
Network 		we-com municipality_portal_cms XSS can occur in We-com Municipality portal CMS 2.1.x via the cerca/ search bar. CWE-79
Cross-site Scripting 		CVE-2020-15538 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210236 6.1 MEDIUM
Network 		vanguard_project vanguard An issue was discovered in the Vanguard plugin 2.1 for WordPress. XSS can occur via the mails/new title field, a product field to the p/ URI, or the Products Search box. CWE-79
Cross-site Scripting 		CVE-2020-15537 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210237 6.1 MEDIUM
Network 		online_hotel_booking_system_project online_hotel_booking_system An issue was discovered in the bestsoftinc Hotel Booking System Pro plugin through 1.1 for WordPress. Persistent XSS can occur via any of the registration fields. CWE-79
Cross-site Scripting 		CVE-2020-15536 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210238 6.1 MEDIUM
Network 		bestsoftinc car_rental_system An issue was discovered in the bestsoftinc Car Rental System plugin through 1.3 for WordPress. Persistent XSS can occur via any of the registration fields. CWE-79
Cross-site Scripting 		CVE-2020-15535 2024-11-21 14:05 2020-07-6 Show GitHub Exploit DB Packet Storm
210239 7.5 HIGH
Network 		wireshark
opensuse
debian 		wireshark
leap
debian_linux 		In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-15466 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm
210240 7.8 HIGH
Local 		valvesoftware steam_client An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILES(X86)%\Steam and/or %COMMONPROGRAM… CWE-362
Race Condition 		CVE-2020-15530 2024-11-21 14:05 2020-07-5 Show GitHub Exploit DB Packet Storm