Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230391	7.5	危険	tomex	-	phpGalleryScript の init.gallery.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2019	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230392	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の mysql/phpinfo.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2016	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230393	6.8	警告	request it	-	Request It の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2015	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230394	6.8	警告	simpcms	-	SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2009	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230395	7.5	危険	pl-php	-	pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2008	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230396	10	危険	stephen craton	-	Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性	-	CVE-2007-2147	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

230397	7.5	危険	shoutpro	-	ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性	-	CVE-2007-2141	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

230398	7.5	危険	rha7 downloads	-	XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2107	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

230399	6.8	警告	wabbit	-	Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2098	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

230400	7.5	危険	tsdisplay4xoops	-	TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2091	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197541	7.8	HIGH Local	valvesoftware	dota_2	meshsystem.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted …	NVD-CWE-noinfo	CVE-2020-7950	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

197542	7.8	HIGH Local	valvesoftware	dota_2	schemasystem.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafte…	NVD-CWE-noinfo	CVE-2020-7949	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

197543	7.5	HIGH Network	motu	avb_firmware	AVB MOTU devices through 2020-01-22 allow /.. Directory Traversal, as demonstrated by reading the /etc/passwd file.	CWE-22 Path Traversal	CVE-2020-8009	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197544	5.5	MEDIUM Local	virglrenderer_project debian	virglrenderer debian_linux	A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrend_renderer_resource_…	CWE-415 Double Free	CVE-2020-8003	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197545	5.5	MEDIUM Local	virglrenderer_project debian	virglrenderer debian_linux	A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a C…	CWE-476 NULL Pointer Dereference	CVE-2020-8002	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197546	9.8	CRITICAL Network	intelliantech	aptus	The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account.	CWE-798 Use of Hard-coded Credentials	CVE-2020-8001	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197547	9.8	CRITICAL Network	intelliantech	aptus_web	Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account.	CWE-798 Use of Hard-coded Credentials	CVE-2020-8000	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197548	9.8	CRITICAL Network	intelliantech	aptus	The Intellian Aptus application 1.0.2 for Android has hardcoded values for DOWNLOAD_API_KEY and FILE_DOWNLOAD_API_KEY.	CWE-798 Use of Hard-coded Credentials	CVE-2020-7999	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197549	6.1	MEDIUM Network	dolibarr	dolibarr_erp\/crm	htdocs/user/passwordforgotten.php in Dolibarr 10.0.6 allows XSS via the Referer HTTP header.	CWE-79 Cross-site Scripting	CVE-2020-7996	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197550	9.8	CRITICAL Network	dolibarr	dolibarr_erp\/crm	The htdocs/index.php?mainmenu=home login page in Dolibarr 10.0.6 allows an unlimited rate of failed authentication attempts.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-7995	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm