Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230321 7.5 危険 zomplog - Zomplog の admin/upload_files.php における管理アクションを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5230 2012-12-20 18:33 2007-10-5 Show GitHub Exploit DB Packet Storm
230322 6.8 警告 poppawid - Poppawid の mail/childwindow.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5221 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
230323 9.3 危険 アクシスコミュニケーションズ - AXIX 2100 Network Camera におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5213 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
230324 4.3 警告 アクシスコミュニケーションズ - AXIX 2100 Network Camera におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5212 2012-12-20 18:33 2007-10-4 Show GitHub Exploit DB Packet Storm
230325 7.5 危険 SUSE - SUSE Linux Enterprise Desktop の novell-groupwise-client パッケージにおける資格情報を取得される脆弱性 CWE-200
CWE-310
CVE-2007-5196 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
230326 6.8 警告 SUSE - SUSE Linux Enterprise Desktop の novell-groupwise-client パッケージにおける資格情報を取得される脆弱性 CWE-200
CWE-310
CVE-2007-5195 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
230327 6.9 警告 rPath, Inc - rMake の Chroot サーバにおけるルート権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5194 2012-12-20 18:33 2007-10-2 Show GitHub Exploit DB Packet Storm
230328 5 警告 TWiki - Debian GNU/Linux などの OS 上で稼動する twiki 用の初期設定における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-5193 2012-12-20 18:33 2007-10-2 Show GitHub Exploit DB Packet Storm
230329 7.5 危険 x-script - x-script GuestBook の mes_add.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5189 2012-12-20 18:33 2007-10-3 Show GitHub Exploit DB Packet Storm
230330 7.5 危険 XOOPS - Xoops の XOOPS アップローダークラスにおける任意のファイルをアップロードされる脆弱性 CWE-noinfo
情報不足 		CVE-2007-5188 2012-12-20 18:33 2007-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213951 7.5 HIGH
Network 		redhat openshift_container_platform A flaw was found in the OpenShift API Server, where it failed to sufficiently protect OAuthTokens by leaking them into the logs when an API Server panic occurred. This flaw allows an attacker with th… CWE-532
CWE-522
 Inclusion of Sensitive Information in Log Files
 Insufficiently Protected Credentials 		CVE-2020-10752 2024-11-21 13:55 2020-06-13 Show GitHub Exploit DB Packet Storm
213952 4.4 MEDIUM
Local 		linux
opensuse
canonical
netapp 		linux_kernel
leap
ubuntu_linux
steelstore_cloud_integrated_storage
active_iq_unified_manager
solidfire
hci_management_node
aff_a700_firmware
h410c_firmware
h300s_firmware 		A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data. - CVE-2020-10732 2024-11-21 13:55 2020-06-12 Show GitHub Exploit DB Packet Storm
213953 7.5 HIGH
Network 		redhat
netapp 		undertow
oncommand_insight
jboss_enterprise_application_platform
openshift_application_runtimes 		A flaw was discovered in Undertow in versions before Undertow 2.1.1.Final where certain requests to the "Expect: 100-continue" header may cause an out of memory error. This flaw may potentially lead … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-10705 2024-11-21 13:55 2020-06-11 Show GitHub Exploit DB Packet Storm
213954 7.5 HIGH
Network 		inductiveautomation ignition_gateway The affected product lacks proper validation of user-supplied data, which can result in deserialization of untrusted data on the Ignition 8 Gateway (versions prior to 8.0.10) and Ignition 7 Gateway (… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-10644 2024-11-21 13:55 2020-06-10 Show GitHub Exploit DB Packet Storm
213955 8.2 HIGH
Network 		perl
fedoraproject
opensuse
oracle 		perl
fedora
leap
communications_eagle_lnp_application_processor
sd-wan_edge
enterprise_manager_base_platform
communications_billing_and_revenue_management
communications_offline_… 		Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested regular expression quantifiers have an integer overflow. CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-10543 2024-11-21 13:55 2020-06-5 Show GitHub Exploit DB Packet Storm
213956 5.5 MEDIUM
Local 		qemu qemu A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generatio… NVD-CWE-Other
CVE-2020-10702 2024-11-21 13:55 2020-06-5 Show GitHub Exploit DB Packet Storm
213957 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated snippets.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, gr… CWE-89
SQL Injection 		CVE-2020-10549 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
213958 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated devices.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, gra… CWE-89
SQL Injection 		CVE-2020-10548 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
213959 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to late… CWE-89
SQL Injection 		CVE-2020-10547 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm
213960 9.8 CRITICAL
Network 		rconfig rconfig rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral mo… CWE-89
SQL Injection 		CVE-2020-10546 2024-11-21 13:55 2020-06-4 Show GitHub Exploit DB Packet Storm