Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230641	6.8	警告	XOOPS	-	XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3057	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230642	4.3	警告	WebSVN	-	WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3056	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230643	7.5	危険	postnuke software foundation	-	PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3052	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230644	7.5	危険	revokesoft	-	RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性	-	CVE-2007-3051	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230645	10	危険	Vonage	-	Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性	-	CVE-2007-3047	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230646	4.3	警告	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性	-	CVE-2007-3022	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230647	7.5	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性	-	CVE-2007-3021	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230648	9.3	危険	zenturi	-	Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2987	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

230649	7.8	危険	techno dreams	-	Techno Dreams Web Directory / Search Engine におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-2979	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

230650	7.5	危険	Wanewsletter	-	WAnewsletter の newsletter.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2969	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199971	8.8	HIGH Network	grandstream	gxp1610_firmware gxp1615_firmware gxp1620_firmware gxp1625_firmware gxp1628_firmware gxp1630_firmware	Grandstream GXP1600 series firmware 1.0.4.152 and below is vulnerable to authenticated remote command execution when an attacker uploads a specially crafted tar file to the HTTP /cgi-bin/upload_vpnta…	CWE-59 Link Following	CVE-2020-5738	2024-11-21 14:34	2020-04-14	Show	GitHub Exploit DB Packet Storm

199972	6.5	MEDIUM Network	vmware	tanzu_application_service_for_vms	VMware Tanzu Application Service for VMs, 2.6.x versions prior to 2.6.18, 2.7.x versions prior to 2.7.11, and 2.8.x versions prior to 2.8.5, includes a version of PCF Autoscaling that writes database…	CWE-522 Insufficiently Protected Credentials	CVE-2020-5406	2024-11-21 14:34	2020-04-11	Show	GitHub Exploit DB Packet Storm

199973	6.5	MEDIUM Network	amcrest	1080-lite_8ch_firmware amdv10814-h5_firmware ipm-721_firmware ip2m-841_firmware ip2m-841-v3_firmware ip2m-853ew_firmware ip2m-858w_firmware ip2m-866w_firmware ip2m-866ew_firmw…	Amcrest cameras and NVR are vulnerable to a null pointer dereference over port 37777. An authenticated remote attacker can abuse this issue to crash the device.	CWE-476 NULL Pointer Dereference	CVE-2020-5736	2024-11-21 14:34	2020-04-8	Show	GitHub Exploit DB Packet Storm

199974	8.1	HIGH Network	plathome	easyblocks_ipv6_firmware easyblocks_ipv6_enterprise_firmware	Session fixation vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier, and Enterprise Ver. 2.0.1 and earlier allows remote attackers to impersonate a registered user and log in the management cons…	CWE-384 Session Fixation	CVE-2020-5550	2024-11-21 14:34	2020-04-8	Show	GitHub Exploit DB Packet Storm

199975	8.8	HIGH Network	plathome	easyblocks_ipv6_firmware easyblocks_ipv6_enterprise_firmware	Cross-site request forgery (CSRF) vulnerability in EasyBlocks IPv6 Ver. 2.0.1 and earlier and Enterprise Ver. 2.0.1 and earlier allows remote attackers to hijack the authentication of administrators …	CWE-352 Origin Validation Error	CVE-2020-5549	2024-11-21 14:34	2020-04-8	Show	GitHub Exploit DB Packet Storm

199976	8.8	HIGH Network	amcrest	1080-lite_8ch_firmware amdv10814-h5_firmware ipm-721_firmware ip2m-841_firmware ip2m-841-v3_firmware ip2m-853ew_firmware ip2m-858w_firmware ip2m-866w_firmware ip2m-866ew_firmw…	Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to crash the device and possibly execute arbitrary code.	CWE-787 Out-of-bounds Write	CVE-2020-5735	2024-11-21 14:34	2020-04-8	Show	GitHub Exploit DB Packet Storm

199977	7.5	HIGH Network	solarwinds	dameware	Classic buffer overflow in SolarWinds Dameware allows a remote, unauthenticated attacker to cause a denial of service by sending a large 'SigPubkeyLen' during ECDH key exchange.	CWE-120 Classic Buffer Overflow	CVE-2020-5734	2024-11-21 14:34	2020-04-7	Show	GitHub Exploit DB Packet Storm

199978	7.8	HIGH Local	symantec	data_center_security	Symantec Data Center Security Manager Component, prior to 6.8.2 (aka 6.8 MP2), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to …	NVD-CWE-noinfo	CVE-2020-5832	2024-11-21 14:34	2020-04-7	Show	GitHub Exploit DB Packet Storm

199979	9.8	CRITICAL Network	learndash	learndash	LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection.	CWE-89 SQL Injection	CVE-2020-6009	2024-11-21 14:34	2020-04-2	Show	GitHub Exploit DB Packet Storm

199980	6.1	MEDIUM Network	auth0	wp-auth0	A stored cross-site scripting (XSS) vulnerability exists in the Auth0 plugin before 4.0.0 for WordPress via the settings page.	CWE-79 Cross-site Scripting	CVE-2020-5392	2024-11-21 14:34	2020-04-1	Show	GitHub Exploit DB Packet Storm