Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230471	7.2	危険	syscp team	-	SysCP の scripts/cronscript.php における権限を取得される脆弱性	-	CVE-2007-0849	2012-12-20 18:19	2007-02-8	Show	GitHub Exploit DB Packet Storm

230472	10	危険	vbdrupal	-	vbDrupal における脆弱性	-	CVE-2007-0841	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230473	7.5	危険	Wafer	-	Valarsoft WebMatic の index/index_album.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0839	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230474	1.2	注意	VMware	-	VMware Workstation におけるクリップボードコンテンツを読み取られる脆弱性	-	CVE-2007-0833	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230475	1.2	注意	VMware	-	VMware Workstation における重要な情報を取得される脆弱性	-	CVE-2007-0832	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230476	1.9	注意	Slackware	-	Slackware Linux 上で稼動する xterm におけるファイルパーミッションを回避される脆弱性	-	CVE-2007-0823	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230477	4.3	警告	uapplication	-	Uapplication Uphotogallery の images_archive.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0815	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230478	7.5	危険	woltlab	-	wBB Lite の pms.php における SQL インジェクションの脆弱性	-	CVE-2007-0812	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230479	7.5	危険	ptirhiikmods	-	ptirhiikmods の Categories hierarchy における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0809	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

230480	6.8	警告	stlport	-	STLport におけるバッファオーバーフローの脆弱性	-	CVE-2007-0803	2012-12-20 18:19	2007-02-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213101	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5F_get_nrefs() located in H5Fquery.c. It allows an attacker to cause Denial of Service.	CWE-476 NULL Pointer Dereference	CVE-2020-10812	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213102	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5O__layout_decode() located in H5Olayout.c. It allows an attacker to cause Denial of Service.	CWE-125 Out-of-bounds Read	CVE-2020-10811	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213103	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5AC_unpin_entry() located in H5AC.c. It allows an attacker to cause Denial of Service.	CWE-476 NULL Pointer Dereference	CVE-2020-10810	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213104	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 b…	CWE-787 Out-of-bounds Write	CVE-2020-10809	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213105	8.8	HIGH Network	vestacp	vesta_control_panel	Vesta Control Panel (VestaCP) through 0.9.8-26 allows Command Injection via the schedule/backup Backup Listing Endpoint. The attacker must be able to create a crafted filename on the server, as demon…	CWE-78 OS Command	CVE-2020-10808	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213106	5.3	MEDIUM Network	mitre	caldera	auth_svc in Caldera before 2.6.5 allows authentication bypass (for REST API requests) via a forged "localhost" string in the HTTP Host header.	CWE-290 Authentication Bypass by Spoofing	CVE-2020-10807	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213107	9.8	CRITICAL Network	ez	ez_publish-kernel ez_publish-legacy	eZ Publish Kernel before 5.4.14.1, 6.x before 6.13.6.2, and 7.x before 7.5.6.2 and eZ Publish Legacy before 5.4.14.1, 2017 before 2017.12.7.2, and 2019 before 2019.03.4.2 allow remote attackers to ex…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-10806	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

213108	5.4	MEDIUM Network	phpmyadmin debian fedoraproject opensuse suse	phpmyadmin debian_linux fedora leap backports_sle package_hub	In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results…	CWE-79 CWE-89 Cross-site Scripting SQL Injection	CVE-2020-10803	2024-11-21 13:56	2020-03-22	Show	GitHub Exploit DB Packet Storm

213109	8.0	HIGH Network	phpmyadmin debian fedoraproject opensuse suse	phpmyadmin debian_linux fedora leap backports_sle package_hub	In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search act…	CWE-89 SQL Injection	CVE-2020-10802	2024-11-21 13:56	2020-03-22	Show	GitHub Exploit DB Packet Storm

213110	8.0	HIGH Network	phpmyadmin fedoraproject opensuse suse	phpmyadmin fedora leap backports_sle package_hub	In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was found in retrieval of the current username (in libraries/classes/Server/Privileges.php and libraries/classes/Use…	CWE-89 SQL Injection	CVE-2020-10804	2024-11-21 13:56	2020-03-22	Show	GitHub Exploit DB Packet Storm