Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230671	7.5	危険	phpecho cms	-	PHPEcho CMS の modules/admin/modules/gallery.php における SQL インジェクションの脆弱性	-	CVE-2007-2866	2012-12-20 18:19	2007-05-25	Show	GitHub Exploit DB Packet Storm

230672	9.3	危険	phpPgAdmin	-	phpPgAdmin の sqledit.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2865	2012-12-20 18:19	2007-05-25	Show	GitHub Exploit DB Packet Storm

230673	7.5	危険	saxon	-	SAXON における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2861	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

230674	7.5	危険	simpgb	-	SimpGB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2859	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

230675	6.5	警告	phpBB	-	phpBB 用の IP-Tracking Mod における SQL インジェクションの脆弱性	-	CVE-2007-2858	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

230676	7.5	危険	zakkis technology corporation	-	ABC Excel Parser の sample/xls2mysql における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2857	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

230677	10	危険	sky software	-	Sky Software Shell MegaPack ActiveX の shComboBox ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2848	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

230678	6.8	警告	unicon-imc2	-	unicon-imc2 の ImmModules/cce/ におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2835	2012-12-20 18:19	2007-07-1	Show	GitHub Exploit DB Packet Storm

230679	9.3	危険	wavelink media	-	TutorialCMS における認証を回避される脆弱性	-	CVE-2007-2822	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

230680	7.5	危険	WordPress.org	-	WordPress の wp-admin/admin-ajax.php における SQL インジェクションの脆弱性	-	CVE-2007-2821	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210601	8.2	HIGH Local	getcomposer	composer-setup	In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user ma…	-	CVE-2020-15145	2024-11-21 14:04	2020-08-15	Show	GitHub Exploit DB Packet Storm

210602	5.9	MEDIUM Physics	horndis_project	horndis	All versions of HoRNDIS are affected by an integer overflow in the RNDIS packet parsing routines. A malicious USB device can trigger disclosure of unrelated kernel memory to userspace applications on…	CWE-190 Integer Overflow or Wraparound	CVE-2020-15137	2024-11-21 14:04	2020-08-13	Show	GitHub Exploit DB Packet Storm

210603	6.1	MEDIUM Network	getsymphony	symphony	content/content.blueprintsevents.php in Symphony CMS 3.0.0 allows XSS via fields['name'] to appendSubheading.	CWE-79 Cross-site Scripting	CVE-2020-15071	2024-11-21 14:04	2020-08-12	Show	GitHub Exploit DB Packet Storm

210604	7.8	HIGH Local	evga winring0_project	precision_x1 winring0	The WinRing0.sys and WinRing0x64.sys drivers 1.2.0 in EVGA Precision X1 through 1.0.6 allow local users, including low integrity processes, to read and write to arbitrary memory locations. This allow…	NVD-CWE-noinfo	CVE-2020-14979	2024-11-21 14:04	2020-08-12	Show	GitHub Exploit DB Packet Storm

210605	6.1	MEDIUM Network	mybb	mybb	In MyBB before version 1.8.24, the custom MyCode (BBCode) for the visual editor doesn't escape input properly when rendering HTML, resulting in a DOM-based XSS vulnerability. The weakness can be expl…	CWE-79 Cross-site Scripting	CVE-2020-15139	2024-11-21 14:04	2020-08-11	Show	GitHub Exploit DB Packet Storm

210606	6.5	MEDIUM Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to denial-of-service the device via long input values.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-15065	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

210607	4.3	MEDIUM Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to conduct persistent XSS attacks by leveraging administrative privileges to set a crafted se…	CWE-79 Cross-site Scripting	CVE-2020-15064	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

210608	8.8	HIGH Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter.	CWE-287 Improper Authentication	CVE-2020-15063	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

210609	8.8	HIGH Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unenc…	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2020-15062	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

210610	6.5	MEDIUM Adjacent	lindy-international	42633_firmware	Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to denial-of-service the device via long input values.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-15061	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm