Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230601	6.6	警告	VMware	-	VMware ESX Server におけるバッファオーバーフローの脆弱性	-	CVE-2007-1271	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

230602	5	警告	VMware	-	VMware ESX Server におけるメモリ二重解放の脆弱性	CWE-189 数値処理の問題	CVE-2007-1270	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

230603	5	警告	Sylpheed	-	Sylpheed における検出されずにメッセージ内容を偽造される脆弱性	-	CVE-2007-1267	2012-12-20 18:19	2007-03-6	Show	GitHub Exploit DB Packet Storm

230604	7.5	危険	webmod	-	WebMod の server.cpp におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1260	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230605	7.5	危険	web-app.org	-	WebAPP における脆弱性	CWE-noinfo 情報不足	CVE-2007-1259	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230606	9.3	危険	シマンテック	-	SMTP 用の Symantec Mail Security におけるバッファオーバーフローの脆弱性	-	CVE-2007-1252	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230607	6.8	警告	WordPress.org	-	WordPress の AdminPanel におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-1244	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230608	6.4	警告	sitex	-	sitex における重要な情報を取得される脆弱性	-	CVE-2007-1236	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230609	7.5	危険	stwc-counter	-	STWC-Counter の downloadcounter.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1233	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

230610	5.1	警告	SQLiteManager	-	SQLiteManager におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1232	2012-12-20 18:19	2007-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210841	6.1	MEDIUM Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. There is a stored XSS vulnerability that is executed on the page to view users, and on the page to edit users. This is present in both the User fiel…	CWE-79 Cross-site Scripting	CVE-2020-14018	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

210842	7.5	HIGH Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. Sessions, as well as associated information such as CSRF tokens, are stored in cleartext files in the directory /private/sessions. An unauthenticate…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-14017	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

210843	5.3	MEDIUM Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. The forgot-password feature allows users to reset their passwords by using either their username or the email address associated with their account.…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2020-14016	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

210844	7.5	HIGH Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.9 r1433. When performing a password reset, a user is emailed an activation code that allows them to reset their password. There is, however, a flaw when no a…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2020-14015	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

210845	5.4	MEDIUM Network	naviwebs	navigate_cms	An issue was discovered in Navigate CMS 2.8 and 2.9 r1433. The query parameter fid on the resource navigate.php does not perform sufficient data validation and/or encoding, making it vulnerable to re…	CWE-79 Cross-site Scripting	CVE-2020-14014	2024-11-21 14:02	2020-06-25	Show	GitHub Exploit DB Packet Storm

210846	5.4	MEDIUM Network	solarwinds	orion_network_performance_monitor orion_web_performance_monitor	Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a name of an alert definition.	CWE-79 Cross-site Scripting	CVE-2020-14007	2024-11-21 14:02	2020-06-24	Show	GitHub Exploit DB Packet Storm

210847	5.4	MEDIUM Network	solarwinds	orion_network_performance_monitor orion_web_performance_monitor	Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a Responsible Team.	CWE-79 Cross-site Scripting	CVE-2020-14006	2024-11-21 14:02	2020-06-24	Show	GitHub Exploit DB Packet Storm

210848	8.8	HIGH Network	solarwinds	orion_network_performance_monitor orion_web_performance_monitor	Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows remote attackers to execute arbitrary code via a defined event.	NVD-CWE-noinfo	CVE-2020-14005	2024-11-21 14:02	2020-06-24	Show	GitHub Exploit DB Packet Storm

210849	5.4	MEDIUM Network	paessler	prtg_network_monitor	XSS exists in PRTG Network Monitor 20.1.56.1574 via crafted map properties. An attacker with Read/Write privileges can create a map, and then use the Map Designer Properties screen to insert JavaScri…	CWE-79 Cross-site Scripting	CVE-2020-14073	2024-11-21 14:02	2020-06-24	Show	GitHub Exploit DB Packet Storm

210850	7.5	HIGH Network	rakuten	viber	Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious website could launch Viber with arbitrary parameters, forcing a victim to send an NTLM authentication req…	CWE-88 Argument Injection	CVE-2020-14049	2024-11-21 14:02	2020-06-23	Show	GitHub Exploit DB Packet Storm