Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230531	4	警告	rndlabs	-	Babo Violent におけるメッセージを偽造される脆弱性	-	CVE-2007-4374	2012-12-20 18:33	2007-08-16	Show	GitHub Exploit DB Packet Storm

230532	6.8	警告	rndlabs	-	Babo Violent のサーバにおける認証を回避される脆弱性	-	CVE-2007-4373	2012-12-20 18:33	2007-08-16	Show	GitHub Exploit DB Packet Storm

230533	7.5	危険	racer	-	Racer の client などにおけるバッファオーバーフローの脆弱性	-	CVE-2007-4370	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230534	5	警告	sote	-	SOTEeSKLEP の go/_files におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-4369	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230535	5	警告	wengo	-	WengoPhone におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4366	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230536	6.8	警告	prozilla	-	Prozilla Webring の category.php における SQL インジェクションの脆弱性	-	CVE-2007-4362	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230537	6.8	警告	skilmatch staffing systems	-	SkilMatch Staffing Systems JobLister3 における SQL インジェクションの脆弱性	-	CVE-2007-4359	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230538	4.3	警告	zoidcom	-	Zoidcom におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4358	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

230539	7.5	危険	phpcentral	-	PHPCentral Login の include.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4342	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

230540	7.5	危険	phpdvd	-	phpDVD の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-4340	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210481	6.1	MEDIUM Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194.	CWE-79 Cross-site Scripting	CVE-2020-15575	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210482	7.5	HIGH Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.	NVD-CWE-noinfo	CVE-2020-15574	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210483	6.1	MEDIUM Network	solarwinds	serv-u	SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421.	CWE-79 Cross-site Scripting	CVE-2020-15573	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210484	5.3	MEDIUM Network	gitlab	gitlab	GitLab EE 11.3 through 13.1.2 has Incorrect Access Control because of the Maven package upload endpoint.	NVD-CWE-noinfo	CVE-2020-15525	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210485	5.4	MEDIUM Network	faceted_search_project	faceted_search	The ke_search (aka Faceted Search) extension through 2.8.2, and 3.x through 3.1.3, for TYPO3 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-15517	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210486	5.4	MEDIUM Network	mm_forum_project	mm_forum	The mm_forum extension through 1.9.5 for TYPO3 allows XSS that can be exploited via CSRF.	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2020-15516	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210487	5.4	MEDIUM Network	jh_captcha_project	jh_captcha	The jh_captcha extension through 2.1.3, and 3.x through 3.0.2, for TYPO3 allows XSS.	CWE-79 Cross-site Scripting	CVE-2020-15514	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210488	5.3	MEDIUM Network	mittwald	typo3_forum	The typo3_forum extension before 1.2.1 for TYPO3 has Incorrect Access Control.	CWE-863 Incorrect Authorization	CVE-2020-15513	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210489	6.5	MEDIUM Adjacent	nordicsemi	dfu_library android_ble_library	Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-15509	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm

210490	5.3	MEDIUM Network	venki	supravizio_bpm	A user enumeration vulnerability flaw was found in Venki Supravizio BPM 10.1.2. This issue occurs during password recovery, where a difference in error messages could allow an attacker to determine i…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-15392	2024-11-21 14:05	2020-07-7	Show	GitHub Exploit DB Packet Storm