Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230661	8.5	危険	レッドハット	-	Cygwin の cygwin1.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6181	2012-12-20 18:34	2007-11-8	Show	GitHub Exploit DB Packet Storm

230662	8.5	危険	phpdevshell	-	PHPDevShell における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6174	2012-12-20 18:34	2007-11-29	Show	GitHub Exploit DB Packet Storm

230663	10	危険	wire plastic design	-	wpQuiz における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6172	2012-12-20 18:34	2007-11-29	Show	GitHub Exploit DB Packet Storm

230664	7.5	危険	vu	-	VU Case Manager の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6168	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

230665	7.2	危険	SUSE	-	SUSE Linux の yast2-core における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6167	2012-12-20 18:34	2007-11-22	Show	GitHub Exploit DB Packet Storm

230666	4.3	警告	wsdeluxe	-	FMDeluxe の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6162	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

230667	5	警告	tilde.dk	-	Tilde CMS の index.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-6161	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

230668	4.3	警告	tilde.dk	-	Tilde CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6160	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

230669	7.5	危険	tilde.dk	-	Tilde CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6159	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

230670	7.5	危険	proverbs	-	Proverbs Web Calendar の caladmin.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6158	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214021	6.5	MEDIUM Network	gitlab	gitlab	For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-13280	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214022	7.5	HIGH Network	dovecot debian canonical fedoraproject	dovecot debian_linux ubuntu_linux fedora	In Dovecot before 2.3.11.3, sending a specially formatted RPA request will crash the auth service because a length of zero is mishandled.	CWE-125 Out-of-bounds Read	CVE-2020-12674	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214023	7.5	HIGH Network	dovecot debian canonical fedoraproject	dovecot debian_linux ubuntu_linux fedora	In Dovecot before 2.3.11.3, sending a specially formatted NTLM request will crash the auth service because of an out-of-bounds read.	CWE-125 Out-of-bounds Read	CVE-2020-12673	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214024	8.1	HIGH Network	gitlab	gitlab	In GitLab before 13.2.3, project sharing could temporarily allow too permissive access.	NVD-CWE-noinfo	CVE-2020-13291	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214025	7.2	HIGH Network	gitlab	gitlab	In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page	CWE-287 Improper Authentication	CVE-2020-13290	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214026	4.8	MEDIUM Network	gitlab	gitlab	In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page	CWE-79 Cross-site Scripting	CVE-2020-13288	2024-11-21 14:00	2020-08-13	Show	GitHub Exploit DB Packet Storm

214027	6.1	MEDIUM Network	rosariosis	student_information_system	Reflected Cross-Site Scripting vulnerability in Modules.php in RosarioSIS Student Information System < 6.5.1 allows remote attackers to execute arbitrary web script via embedding javascript or HTML t…	CWE-79 Cross-site Scripting	CVE-2020-13278	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

214028	5.5	MEDIUM Local	teradici	graphics_agent pcoip_standard_agent	Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to 20.04.1 are not cleaned up in server memory, which may allow an attacker to read confiden…	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2020-13179	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

214029	6.7	MEDIUM Local	teradici	graphics_agent pcoip_standard_agent	A function in the Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to version 20.04.1 does not properly validate the signature of an external binary, which could allow a…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2020-13178	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

214030	7.8	HIGH Local	teradici	graphics_agent pcoip_standard_agent	The support bundler in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows versions prior to 20.04.1 and 20.07.0 does not use hard coded paths for certain Windows binaries, which…	CWE-427 Uncontrolled Search Path Element	CVE-2020-13177	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm