Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230631 10 危険 runcms - RunCms の newbb_plus における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5535 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
230632 4.6 警告 sitebar - SiteBar の translator.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5492 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
230633 9 危険 sitebar - SiteBar の translator.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5491 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
230634 5 警告 wwwisis - WWWISIS の wxis.exe におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5484 2012-12-20 18:33 2007-10-16 Show GitHub Exploit DB Packet Storm
230635 6.4 警告 サン・マイクロシステムズ - Sun StorEdge/StorageTek 3510 FC Array の FTP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-5482 2012-12-20 18:33 2007-10-15 Show GitHub Exploit DB Packet Storm
230636 4.3 警告 xcomputer - Xcomputer の Search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5479 2012-12-20 18:33 2007-10-16 Show GitHub Exploit DB Packet Storm
230637 4.3 警告 valve software - WebMod Half-Life Dedicated Server プラグインの auth.w におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5477 2012-12-20 18:33 2007-10-16 Show GitHub Exploit DB Packet Storm
230638 7.8 危険 SUSE - SUSE Linux Enterprise Server の ISC BIND named デーモンで使用される libgssapi におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-5471 2012-12-20 18:33 2007-10-15 Show GitHub Exploit DB Packet Storm
230639 5 警告 viart - ViArt Shop の iDEAL payment モジュール における証明書および鍵ファイルのパス名を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5463 2012-12-20 18:33 2007-10-15 Show GitHub Exploit DB Packet Storm
230640 4.3 警告 wwwisis - WWWISIS の wxis.exe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5455 2012-12-20 18:33 2007-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200281 6.8 MEDIUM
Adjacent 		necplatforms aterm_sa3500g_firmware Improper validation of integrity check value vulnerability in Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker with an administrative privilege to execute a malicious program. CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-5637 2024-11-21 14:34 2020-12-14 Show GitHub Exploit DB Packet Storm
200282 6.8 MEDIUM
Adjacent 		necplatforms aterm_sa3500g_firmware Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker with an administrative privilege to send a specially crafted request to a specific URL, which may result in an arbitrary command… CWE-78
OS Command  		CVE-2020-5636 2024-11-21 14:34 2020-12-14 Show GitHub Exploit DB Packet Storm
200283 8.8 HIGH
Adjacent 		necplatforms aterm_sa3500g_firmware Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker on the adjacent network to send a specially crafted request to a specific URL, which may result in an arbitrary command executio… CWE-78
OS Command  		CVE-2020-5635 2024-11-21 14:34 2020-12-14 Show GitHub Exploit DB Packet Storm
200284 5.3 MEDIUM
Network 		f5 big-ip_advanced_firewall_manager On BIG-IP 14.1.0-14.1.2.6, undisclosed endpoints in iControl REST allow for a reflected XSS attack, which could lead to a complete compromise of the BIG-IP system if the victim user is granted the ad… CWE-79
Cross-site Scripting 		CVE-2020-5950 2024-11-21 14:34 2020-12-12 Show GitHub Exploit DB Packet Storm
200285 7.5 HIGH
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 On BIG-IP versions 14.0.0-14.0.1 and 13.1.0-13.1.3.4, certain traffic pattern sent to a virtual server configured with an FTP profile can cause the FTP channel to break. NVD-CWE-noinfo
CVE-2020-5949 2024-11-21 14:34 2020-12-12 Show GitHub Exploit DB Packet Storm
200286 9.6 CRITICAL
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_application_acceleration_manager
big-ip_application_security_manager
big-ip_domain_name_system
 On BIG-IP versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, undisclosed endpoints in iControl REST allow for a reflected XSS attack, w… CWE-79
Cross-site Scripting 		CVE-2020-5948 2024-11-21 14:34 2020-12-12 Show GitHub Exploit DB Packet Storm
200287 9.8 CRITICAL
Network 		eat_spray_love_project eat_spray_love The Eat Spray Love mobile app for both iOS and Android contains logic that allows users to bypass authentication and retrieve or modify information that they would not normally have access to. CWE-669
 Incorrect Resource Transfer Between Spheres 		CVE-2020-5800 2024-11-21 14:34 2020-12-7 Show GitHub Exploit DB Packet Storm
200288 9.8 CRITICAL
Network 		eat_spray_love_project eat_spray_love The Eat Spray Love mobile app for both iOS and Android contains a backdoor account that, when modified, allowed privileged access to restricted functionality and to other users' data. NVD-CWE-Other
CVE-2020-5799 2024-11-21 14:34 2020-12-7 Show GitHub Exploit DB Packet Storm
200289 7.8 HIGH
Local 		druva insync inSync Client installer for macOS versions v6.8.0 and prior could allow an attacker to gain privileges of a root user from a lower privileged user due to improper integrity checks and directory permi… CWE-276
CWE-354
Incorrect Default Permissions 
 Improper Validation of Integrity Check Value 		CVE-2020-5798 2024-11-21 14:34 2020-12-7 Show GitHub Exploit DB Packet Storm
200290 7.5 HIGH
Network 		mitsubishielectric gt2107-wtbd_firmware
gt2107-wtsd_firmware
gt2104-rtbd_firmware
gt2104-pmbd_firmware
gt2103-pmbd_firmware
gs2110-wtbd_firmware
gs2107-wtbd_firmware
le7-40gu-l_firmware
gs2110-w… 		Out-of-bounds read vulnerability in GT21 model of GOT2000 series (GT2107-WTBD V01.39.000 and earlier, GT2107-WTSD V01.39.000 and earlier, GT2104-RTBD V01.39.000 and earlier, GT2104-PMBD V01.39.000 an… CWE-125
Out-of-bounds Read 		CVE-2020-5675 2024-11-21 14:34 2020-12-4 Show GitHub Exploit DB Packet Storm