Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230461 3.5 注意 web-app.org - web-app.org WebAPP におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1828 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230462 6 警告 web-app.org - web-app.org WebAPP のフォーム入力検証におけるデータファイルを破損される脆弱性 - CVE-2007-1827 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230463 10 危険 T-Mobile - T-Mobile ボイスメールシステムにおけるメッセージを収集または削除される脆弱性 - CVE-2007-1823 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230464 9.3 危険 softartisans - SoftArtisans XFile の SAFmgPws.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-1682 2012-12-20 18:19 2008-08-27 Show GitHub Exploit DB Packet Storm
230465 10 危険 Sprint - Sprint Nextel Sprint ボイスメールシステムにおけるメッセージを回復される脆弱性 - CVE-2007-1821 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230466 7.5 危険 XOOPS - XOOPS 用の Tutoriais モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1816 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230467 7.5 危険 XOOPS - Xoops 用の Library モジュールの viewcat.php における SQL インジェクションの脆弱性 - CVE-2007-1815 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230468 7.5 危険 XOOPS - Xoops 用の Core モジュールの viewcat.php における SQL インジェクションの脆弱性 - CVE-2007-1814 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230469 7.5 危険 red mexico - Xoops 用の rmgallery モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1806 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
230470 7.8 危険 PulseAudio - PulseAudio におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1804 2012-12-20 18:19 2007-04-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213491 9.8 CRITICAL
Network 		rconfig rconfig rConfig before 3.9.5 allows command injection by sending a crafted GET request to lib/crud/search.crud.php since the nodeId parameter is passed directly to the exec function without being escaped. CWE-78
OS Command  		CVE-2020-10879 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213492 7.5 HIGH
Network 		zebra fx9500_firmware Motorola FX9500 devices allow remote attackers to conduct absolute path traversal attacks, as demonstrated by PL/SQL Server Pages files such as /include/viewtagdb.psp. CWE-22
Path Traversal 		CVE-2020-10875 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213493 7.5 HIGH
Network 		motorola fx9500-41324d41-us_firmware
fx9500-41324d41-ww_firmware
fx9500-81324d41-us_firmware
fx9500-81324d41-ww_firmware 		Motorola FX9500 devices allow remote attackers to read database files. CWE-306
Missing Authentication for Critical Function 		CVE-2020-10874 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213494 5.3 MEDIUM
Network 		openwrt luci In OpenWrt LuCI git-20.x, remote unauthenticated attackers can retrieve the list of installed packages and services. NOTE: the vendor disputes the significance of this report because, for instances r… CWE-200
Information Exposure 		CVE-2020-10871 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213495 5.5 MEDIUM
Local 		zim-wiki zim Zim through 0.72.1 creates temporary directories with predictable names. A malicious user could predict and create Zim's temporary directories and prevent other users from being able to start Zim, re… CWE-330
 Use of Insufficiently Random Values 		CVE-2020-10870 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213496 8.8 HIGH
Network 		codeigniter codeigniter CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. NOTE: A contributor to the CodeIgniter framework argues that the is… CWE-269
 Improper Privilege Management 		CVE-2020-10793 2024-11-21 13:56 2020-03-24 Show GitHub Exploit DB Packet Storm
213497 4.8 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter. CWE-79
Cross-site Scripting 		CVE-2020-10821 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm
213498 4.8 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter. CWE-79
Cross-site Scripting 		CVE-2020-10820 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm
213499 4.8 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ username parameter. CWE-79
Cross-site Scripting 		CVE-2020-10819 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm
213500 7.2 HIGH
Network 		articatech artica_proxy Artica Proxy 4.26 allows remote command execution for an authenticated user via shell metacharacters in the "Modify the hostname" field. CWE-78
OS Command  		CVE-2020-10818 2024-11-21 13:56 2020-03-23 Show GitHub Exploit DB Packet Storm