Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230381 5 警告 ssl-explorer - SSL-Explorer の fileSystem.do におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5831 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230382 6 警告 シマンテック - Macintosh 用の Symantec AntiVirus などの製品の Disk Mount スキャナにおける root 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5829 2012-12-20 18:33 2007-11-1 Show GitHub Exploit DB Packet Storm
230383 7.5 危険 scribe - Ben Ng Scribe の forum.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5823 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230384 7.5 危険 scribe - Ben Ng Scribe の forum.php における regged/ 配下の特定のファイルへ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5822 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230385 7.6 危険 sblog - sBlog の blocks_edit_do.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5818 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230386 10 危険 SonicWALL - SonicWall SSL-VPN 200 および SSL-VPN 2000/4000 の WebCacheCleaner ActiveX コントロールにおける絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5815 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230387 9.3 危険 SonicWALL - SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5814 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230388 6.8 警告 ssreader - SSReader の Ultra Star Reader ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5807 2012-12-20 18:33 2007-11-5 Show GitHub Exploit DB Packet Storm
230389 7.5 危険 work system e-commerce - WORK system e-commerce における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5801 2012-12-20 18:33 2007-11-2 Show GitHub Exploit DB Packet Storm
230390 6.8 警告 tom willmot - WordPress 用の BackUpWordPress プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5800 2012-12-20 18:33 2007-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210141 2.3 LOW
Local 		hms-networks ewon_flexy_firmware
ewon_cosy_firmware 		All version of Ewon Flexy and Cosy prior to 14.1 use wildcards such as (*) under which domains can request resources. An attacker with local access and high privileges could inject scripts into the C… NVD-CWE-Other
CVE-2020-16230 2024-11-21 14:06 2020-09-19 Show GitHub Exploit DB Packet Storm
210142 6.5 MEDIUM
Adjacent 		philips clinical_collaboration_platform Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an attacker to influe… - CVE-2020-16200 2024-11-21 14:06 2020-09-19 Show GitHub Exploit DB Packet Storm
210143 6.3 MEDIUM
Adjacent 		philips clinical_collaboration_platform Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. When an attacker claims to have a given identity, the software does not prove or insufficiently proves the claim is correct. - CVE-2020-16198 2024-11-21 14:06 2020-09-19 Show GitHub Exploit DB Packet Storm
210144 8.6 HIGH
Network 		1crm 1crm An issue was discovered in 1CRM System through 8.6.7. An insecure direct object reference to internally stored files allows a remote attacker to access various sensitive information via an unauthenti… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-15958 2024-11-21 14:06 2020-09-19 Show GitHub Exploit DB Packet Storm
210145 6.5 MEDIUM
Network 		gradle enterprise An issue was discovered in Gradle Enterprise before 2020.2.4. Because of unrestricted cross-origin requests to read-only data in the Export API, an attacker can access data as a user (for the duratio… CWE-346
 Origin Validation Error 		CVE-2020-15773 2024-11-21 14:06 2020-09-19 Show GitHub Exploit DB Packet Storm
210146 8.8 HIGH
Network 		gradle enterprise An issue was discovered in Gradle Enterprise 2018.2 - 2020.2.4. The CSRF prevention token is stored in a request cookie that is not annotated as HttpOnly. An attacker with the ability to execute arbi… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-15776 2024-11-21 14:06 2020-09-18 Show GitHub Exploit DB Packet Storm
210147 7.5 HIGH
Network 		gradle enterprise An issue was discovered in Gradle Enterprise 2017.1 - 2020.2.4. The /usage page of Gradle Enterprise conveys high level build information such as project names and build counts over time. This page i… CWE-922
 Insecure Storage of Sensitive Information 		CVE-2020-15775 2024-11-21 14:06 2020-09-18 Show GitHub Exploit DB Packet Storm
210148 6.8 MEDIUM
Physics 		gradle enterprise An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. An attacker with physical access to the browser of a user who has recently logged in to Gradle Enterprise and since closed their browse… CWE-613
 Insufficient Session Expiration 		CVE-2020-15774 2024-11-21 14:06 2020-09-18 Show GitHub Exploit DB Packet Storm
210149 4.9 MEDIUM
Network 		gradle enterprise An issue was discovered in Gradle Enterprise 2018.5 - 2020.2.4. When configuring Gradle Enterprise to integrate with a SAML identity provider, an XML metadata file can be uploaded by an administrator… CWE-611
CWE-918
XXE
Server-Side Request Forgery (SSRF)  		CVE-2020-15772 2024-11-21 14:06 2020-09-18 Show GitHub Exploit DB Packet Storm
210150 7.5 HIGH
Network 		gradle enterprise_cache_node
enterprise 		An issue was discovered in Gradle Enterprise 2018.2 and Gradle Enterprise Build Cache Node 4.1. Cross-site transmission of cookie containing CSRF token allows remote attacker to bypass CSRF mitigatio… CWE-311
Missing Encryption of Sensitive Data 		CVE-2020-15771 2024-11-21 14:06 2020-09-18 Show GitHub Exploit DB Packet Storm