Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230451	4.3	警告	toenda software development	-	toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1872	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

230452	7.5	危険	webasyst llc	-	Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1855	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

230453	7.5	危険	really simple php and ajax	-	RSPA におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1851	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

230454	7.5	危険	XOOPS	-	XOOPS 用の Repository モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1847	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

230455	7.5	危険	XOOPS	-	Xoops 用の MyAds モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1846	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

230456	7.5	危険	XOOPS	-	Xoops 用の Friendfinder モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1838	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230457	5	警告	web-app.org	-	web-app.org WebAPP における特定のファイルをアップロードされる脆弱性	-	CVE-2007-1832	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230458	6	警告	web-app.org	-	web-app.org WebAPP におけるファイルを開かれる脆弱性	-	CVE-2007-1831	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230459	4.3	警告	web-app.org	-	web-app.org WebAPP 用の Username Hijacking Patch における管理アクセス権限を取得される脆弱性	-	CVE-2007-1830	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230460	7.5	危険	web-app.net	-	web-app.net WebAPP における脆弱性	-	CVE-2007-1829	2012-12-20 18:19	2007-03-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197541	7.8	HIGH Local	valvesoftware	dota_2	meshsystem.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted …	NVD-CWE-noinfo	CVE-2020-7950	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

197542	7.8	HIGH Local	valvesoftware	dota_2	schemasystem.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafte…	NVD-CWE-noinfo	CVE-2020-7949	2024-11-21 14:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

197543	7.5	HIGH Network	motu	avb_firmware	AVB MOTU devices through 2020-01-22 allow /.. Directory Traversal, as demonstrated by reading the /etc/passwd file.	CWE-22 Path Traversal	CVE-2020-8009	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197544	5.5	MEDIUM Local	virglrenderer_project debian	virglrenderer debian_linux	A double-free vulnerability in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service by triggering texture allocation failure, because vrend_renderer_resource_…	CWE-415 Double Free	CVE-2020-8003	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197545	5.5	MEDIUM Local	virglrenderer_project debian	virglrenderer debian_linux	A NULL pointer dereference in vrend_renderer.c in virglrenderer through 0.8.1 allows attackers to cause a denial of service via commands that attempt to launch a grid without previously providing a C…	CWE-476 NULL Pointer Dereference	CVE-2020-8002	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197546	9.8	CRITICAL Network	intelliantech	aptus	The Intellian Aptus application 1.0.2 for Android has a hardcoded password of intellian for the masteruser FTP account.	CWE-798 Use of Hard-coded Credentials	CVE-2020-8001	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197547	9.8	CRITICAL Network	intelliantech	aptus_web	Intellian Aptus Web 1.24 has a hardcoded password of 12345678 for the intellian account.	CWE-798 Use of Hard-coded Credentials	CVE-2020-8000	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197548	9.8	CRITICAL Network	intelliantech	aptus	The Intellian Aptus application 1.0.2 for Android has hardcoded values for DOWNLOAD_API_KEY and FILE_DOWNLOAD_API_KEY.	CWE-798 Use of Hard-coded Credentials	CVE-2020-7999	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197549	6.1	MEDIUM Network	dolibarr	dolibarr_erp\/crm	htdocs/user/passwordforgotten.php in Dolibarr 10.0.6 allows XSS via the Referer HTTP header.	CWE-79 Cross-site Scripting	CVE-2020-7996	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm

197550	9.8	CRITICAL Network	dolibarr	dolibarr_erp\/crm	The htdocs/index.php?mainmenu=home login page in Dolibarr 10.0.6 allows an unlimited rate of failed authentication attempts.	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-7995	2024-11-21 14:38	2020-01-27	Show	GitHub Exploit DB Packet Storm