Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230401	5	警告	ウェブセンス	-	Websense Enterprise におけるコンテンツのフィルタリングを回避される脆弱性	CWE-DesignError	CVE-2007-6511	2012-12-20 18:34	2007-12-21	Show	GitHub Exploit DB Packet Storm

230402	6.4	警告	shttpd	-	Windows 上で稼動している shttpd における任意の CGI プログラムをダウンロードされる脆弱性	CWE-200 情報漏えい	CVE-2007-6405	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230403	5	警告	shttp	-	Windows 上で稼動している shttpd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6404	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230404	6.8	警告	Winamp	-	Nullsoft Winamp におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6403	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230405	5	警告	poldoc	-	PolDoc CMS の download_file.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6400	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230406	7.5	危険	sh-news	-	SH-News の patch/comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6391	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230407	4.3	警告	s9y	-	Serendipity 用の mycalendar プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-6390	2012-12-20 18:34	2007-12-17	Show	GitHub Exploit DB Packet Storm

230408	7.2	危険	トレンドマイクロ	-	Trend Micro AntiVirus などの PccScan.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6386	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

230409	6.8	警告	robocode	-	Robocode の Event Dispatch Thread における任意の Java コードを実行される脆弱性	CWE-DesignError	CVE-2007-6382	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

230410	6.5	警告	TYPO3 Association	-	TYPO3 用の indexed_search システムエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6381	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200571	7.8	HIGH Local	symantec	endpoint_protection	Symantec Endpoint Protection, prior to 14.3, can potentially reset the ACLs on a file as a limited user while Symantec Endpoint Protection's Tamper Protection feature is disabled.	NVD-CWE-noinfo	CVE-2020-5836	2024-11-21 14:34	2020-05-12	Show	GitHub Exploit DB Packet Storm

200572	7.0	HIGH Local	symantec	endpoint_protection_manager	Symantec Endpoint Protection Manager, prior to 14.3, has a race condition in client remote deployment which may result in an elevation of privilege on the remote machine.	CWE-362 Race Condition	CVE-2020-5835	2024-11-21 14:34	2020-05-12	Show	GitHub Exploit DB Packet Storm

200573	5.3	MEDIUM Network	symantec	endpoint_protection_manager	Symantec Endpoint Protection Manager, prior to 14.3, may be susceptible to a directory traversal attack that could allow a remote actor to determine the size of files in the directory.	CWE-22 Path Traversal	CVE-2020-5834	2024-11-21 14:34	2020-05-12	Show	GitHub Exploit DB Packet Storm

200574	3.3	LOW Local	symantec	endpoint_protection_manager	Symantec Endpoint Protection Manager, prior to 14.3, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of t…	CWE-125 Out-of-bounds Read	CVE-2020-5833	2024-11-21 14:34	2020-05-12	Show	GitHub Exploit DB Packet Storm

200575	7.8	HIGH Local	jalinfotec	pallet_control	Improper Access Control in PALLET CONTROL Ver. 6.3 and earlier allows authenticated attackers to execute arbitrary code with the SYSTEM privilege on the computer where PALLET CONTROL is installed via…	NVD-CWE-noinfo	CVE-2020-5538	2024-11-21 14:34	2020-05-11	Show	GitHub Exploit DB Packet Storm

200576	7.2	HIGH Network	plex	media_server	Deserialization of Untrusted Data in Plex Media Server on Windows allows a remote, authenticated attacker to execute arbitrary Python code.	CWE-502 Deserialization of Untrusted Data	CVE-2020-5741	2024-11-21 14:34	2020-05-8	Show	GitHub Exploit DB Packet Storm

200577	5.4	MEDIUM Network	tecnick	tcexam	Insufficient output sanitization in TCExam 14.2.2 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks by creating a crafted operator.	CWE-79 Cross-site Scripting	CVE-2020-5751	2024-11-21 14:34	2020-05-8	Show	GitHub Exploit DB Packet Storm

200578	6.1	MEDIUM Network	tecnick	tcexam	Insufficient output sanitization in TCExam 14.2.2 allows a remote, unauthenticated attacker to conduct persistent cross-site scripting (XSS) attacks via the self-registration feature.	CWE-79 Cross-site Scripting	CVE-2020-5750	2024-11-21 14:34	2020-05-8	Show	GitHub Exploit DB Packet Storm

200579	5.4	MEDIUM Network	tecnick	tcexam	Insufficient output sanitization in TCExam 14.2.2 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks by creating a crafted group.	CWE-79 Cross-site Scripting	CVE-2020-5749	2024-11-21 14:34	2020-05-8	Show	GitHub Exploit DB Packet Storm

200580	6.1	MEDIUM Network	tecnick	tcexam	Insufficient output sanitization in TCExam 14.2.2 allows a remote, unauthenticated attacker to conduct persistent cross-site scripting (XSS) attacks via the self-registration feature.	CWE-79 Cross-site Scripting	CVE-2020-5748	2024-11-21 14:34	2020-05-8	Show	GitHub Exploit DB Packet Storm