Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230251 6.8 警告 spine - SPINE におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-0101 2012-12-20 18:19 2007-01-8 Show GitHub Exploit DB Packet Storm
230252 6.8 警告 verliadmin - VerliAdmin の language.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0098 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
230253 5 警告 The phpMyAdmin Project - phpMyAdmin における重要な情報を取得される脆弱性 - CVE-2007-0095 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
230254 7.5 危険 sven moderow - Sven Moderow GuestBook におけるパスワードを含むデータベースをダウンロードされる脆弱性 - CVE-2007-0094 2012-12-20 18:19 2007-01-5 Show GitHub Exploit DB Packet Storm
230255 7.5 危険 uniforum - uniForum の wbsearch.aspx における SQL インジェクションの脆弱性 - CVE-2007-0226 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
230256 6.8 警告 virtual programming - VP-ASP Shopping Cart の shopcustadmin.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0225 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
230257 7.5 危険 virtual programming - VP-ASP Shopping Cart の shopgiftregsearch.asp における SQL インジェクションの脆弱性 - CVE-2007-0224 2012-12-20 18:19 2007-01-12 Show GitHub Exploit DB Packet Storm
230258 6.8 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0204 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
230259 10 危険 The phpMyAdmin Project - phpMyAdmin における脆弱性 - CVE-2007-0203 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
230260 10 危険 tis - TIS Internet FWTK の ftp-gw におけるバッファオーバーフローの脆弱性 - CVE-2007-0201 2012-12-20 18:19 2007-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199781 5.3 MEDIUM
Network 		crypto-js_project crypto-js The crypto-js package before 3.2.1 for Node.js generates random numbers by concatenating the string "0." with an integer, which makes the output more predictable than necessary. CWE-330
 Use of Insufficiently Random Values 		CVE-2020-36732 2024-11-21 14:30 2023-06-12 Show GitHub Exploit DB Packet Storm
199782 6.7 MEDIUM
Local 		linux linux_kernel An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurren… CWE-416
 Use After Free 		CVE-2020-36694 2024-11-21 14:30 2023-05-22 Show GitHub Exploit DB Packet Storm
199783 5.4 MEDIUM
Network 		sophos web_appliance A reflected XSS via POST vulnerability in report scheduler of Sophos Web Appliance versions older than 4.3.10.4 allows execution of JavaScript code in the victim browser via a malicious form that mus… CWE-79
Cross-site Scripting 		CVE-2020-36692 2024-11-21 14:30 2023-04-4 Show GitHub Exploit DB Packet Storm
199784 8.8 HIGH
Network 		e-plugins wp_membership
fitness_trainer
hotel_directory
hospital_\&_doctor_directory
lawyer_directory
institutions_directory
real_estate_pro
final_user
directory_pro
photographer… 		The directory-pro WordPress plugin before 1.9.5, final-user-wp-frontend-user-profiles WordPress plugin before 1.2.2, producer-retailer WordPress plugin through TODO, photographer-directory WordPress … NVD-CWE-noinfo
CVE-2020-36666 2024-11-21 14:30 2023-03-28 Show GitHub Exploit DB Packet Storm
199785 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.8. lib/nlattr.c allows attackers to cause a denial of service (unbounded recursion) via a nested Netlink policy with a back reference. CWE-674
 Uncontrolled Recursion 		CVE-2020-36691 2024-11-21 14:30 2023-03-25 Show GitHub Exploit DB Packet Storm
199786 6.1 MEDIUM
Network 		seotool_project seotool A vulnerability was found in Artesãos SEOTools up to 0.17.1 and classified as critical. This issue affects the function eachValue of the file TwitterCards.php. The manipulation of the argument value … CWE-601
Open Redirect 		CVE-2020-36665 2024-11-21 14:30 2023-03-5 Show GitHub Exploit DB Packet Storm
199787 6.1 MEDIUM
Network 		seotool_project seotool A vulnerability has been found in Artesãos SEOTools up to 0.17.1 and classified as problematic. This vulnerability affects the function setTitle of the file SEOMeta.php. The manipulation of the argum… - CVE-2020-36664 2024-11-21 14:30 2023-03-5 Show GitHub Exploit DB Packet Storm
199788 6.1 MEDIUM
Network 		seotool_project seotool A vulnerability, which was classified as problematic, was found in Artesãos SEOTools up to 0.17.1. This affects the function makeTag of the file OpenGraph.php. The manipulation of the argument value … CWE-601
Open Redirect 		CVE-2020-36663 2024-11-21 14:30 2023-03-4 Show GitHub Exploit DB Packet Storm
199789 7.1 HIGH
Local 		hitachi automation_director
infrastructure_analytics_advisor
ops_center_analyzer
ops_center_automator
ops_center_viewpoint 		Incorrect Default Permissions vulnerability in Hitachi Automation Director on Linux, Hitachi Infrastructure Analytics Advisor on Linux (Hitachi Infrastructure Analytics Advisor, Analytics probe serve… CWE-276
Incorrect Default Permissions  		CVE-2020-36652 2024-11-21 14:30 2023-02-28 Show GitHub Exploit DB Packet Storm
199790 5.4 MEDIUM
Network 		brainstormforce spectra The Spectra WordPress plugin before 1.15.0 does not sanitize user input as it reaches its style HTML attribute, allowing contributors to conduct stored XSS attacks via the plugin's Gutenberg blocks. CWE-79
Cross-site Scripting 		CVE-2020-36656 2024-11-21 14:30 2023-02-21 Show GitHub Exploit DB Packet Storm