Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230411	7.5	危険	slaed	-	SLAED CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1975	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230412	7.5	危険	wf-sections XOOPS	-	Xoops モジュールで使用される WF-Section における SQL インジェクションの脆弱性	-	CVE-2007-1974	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

230413	4.3	警告	sam crew	-	Sam Crew MyBlog の admin/modify.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1969	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230414	6.8	警告	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1968	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230415	7.5	危険	XOOPS	-	XOOPS 用の WF-Snippets モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1962	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230416	7.5	危険	phpBB	-	phpBB 用の Mutant ポータルの mutant_functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1961	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230417	7.5	危険	XOOPS	-	XOOPS 用の Rha7 Downloads モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1960	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230418	10	危険	tinymux	-	TinyMUX の command.cpp における脆弱性	-	CVE-2007-1959	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230419	5	警告	tinymux	-	TinyMUX におけるバッファオーバーフローの脆弱性	-	CVE-2007-1958	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230420	7.5	危険	UBB Systems	-	Groupee UBB.threads の ubbthreads.php における SQL インジェクションの脆弱性	-	CVE-2007-1956	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197341	5.5	MEDIUM Local	huawei	taurus-al00b_firmware	Huawei smart phone Taurus-AL00B with versions earlier than 10.0.0.203(C00E201R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to explo…	CWE-416 Use After Free	CVE-2020-9065	2024-11-21 14:39	2020-03-27	Show	GitHub Exploit DB Packet Storm

197342	6.5	MEDIUM Network	google	closure_library	A URL parsing issue in goog.uri of the Google Closure Library versions up to and including v20200224 allows an attacker to send malicious URLs to be parsed by the library and return the wrong authori…	NVD-CWE-noinfo	CVE-2020-8910	2024-11-21 14:39	2020-03-26	Show	GitHub Exploit DB Packet Storm

197343	6.1	MEDIUM Network	dart	dart_software_development_kit	An improper HTML sanitization in Dart versions up to and including 2.7.1 and dev versions 2.8.0-dev.16.0, allows an attacker leveraging DOM Clobbering techniques to skip the sanitization and inject c…	CWE-79 Cross-site Scripting	CVE-2020-8923	2024-11-21 14:39	2020-03-26	Show	GitHub Exploit DB Packet Storm

197344	9.8	CRITICAL Network	zend	zendto	lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta failed to properly check for equality when validating the session cookie, allowing an attacker to gain administrative access with a large number of r…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2020-8986	2024-11-21 14:39	2020-03-25	Show	GitHub Exploit DB Packet Storm

197345	8.8	HIGH Network	zend	zendto	ZendTo prior to 5.22-2 Beta allowed reflected XSS and CSRF via the unlock.tpl unlock user functionality.	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2020-8985	2024-11-21 14:39	2020-03-25	Show	GitHub Exploit DB Packet Storm

197346	7.5	HIGH Network	zend	zendto	lib/NSSDropbox.php in ZendTo prior to 5.22-2 Beta allowed IP address spoofing via the X-Forwarded-For header.	CWE-346 Origin Validation Error	CVE-2020-8984	2024-11-21 14:39	2020-03-25	Show	GitHub Exploit DB Packet Storm

197347	9.8	CRITICAL Network	quest	foglight_evolve	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Quest Foglight Evolve 9.0.0. Authentication is not required to exploit this vulnerability. The specif…	CWE-798 Use of Hard-coded Credentials	CVE-2020-8868	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197348	6.5	MEDIUM Network	horde debian	groupware horde_form debian_linux	This vulnerability allows remote attackers to create arbitrary files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. The…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-8866	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197349	6.3	MEDIUM Network	horde debian	groupware debian_linux	This vulnerability allows remote attackers to execute local PHP files on affected installations of Horde Groupware Webmail Edition 5.2.22. Authentication is required to exploit this vulnerability. Th…	CWE-22 Path Traversal	CVE-2020-8865	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm

197350	7.5	HIGH Network	psi	electronic_logbook	This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of ELOG Electronic Logbook 3.1.4-283534d. Authentication is not required to exploit this v…	CWE-476 NULL Pointer Dereference	CVE-2020-8859	2024-11-21 14:39	2020-03-24	Show	GitHub Exploit DB Packet Storm