Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230701	9.3	危険	PHPNUKE	-	PHP-NUKE 用の iFrame モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1626	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

230702	4.3	警告	realguestbook	-	realGuestbook の save_entry.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1625	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

230703	7.5	危険	realguestbook	-	realGuestbook における SQL インジェクションの脆弱性	-	CVE-2007-1624	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

230704	4.3	警告	realguestbook	-	realGuestbook におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1623	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

230705	4.3	警告	WordPress.org	-	WordPress の wp-admin/vars.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1622	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

230706	7.5	危険	scriptmagix	-	ScriptMagix Photo Rating の viewcomments.php における SQL インジェクションの脆弱性	-	CVE-2007-1619	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

230707	7.5	危険	scriptmagix	-	ScriptMagix FAQ Builder の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1618	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

230708	7.5	危険	scriptmagix	-	ScriptMagix Recipes の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1617	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

230709	7.5	危険	scriptmagix	-	ScriptMagix Lyrics の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1616	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

230710	7.5	危険	scriptmagix	-	ScriptMagix Jokes の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1615	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198221	8.8	HIGH Network	schneider-electric	scadapack_7x_remote_connect	A CWE-285 Improper Authorization vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows improper access to executable code folders.	NVD-CWE-Other	CVE-2020-7530	2024-11-21 14:37	2020-09-17	Show	GitHub Exploit DB Packet Storm

198222	5.5	MEDIUM Local	schneider-electric	scadapack_7x_remote_connect	A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Transversal') vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which allows an attacker to place …	-	CVE-2020-7529	2024-11-21 14:37	2020-09-17	Show	GitHub Exploit DB Packet Storm

198223	7.8	HIGH Local	schneider-electric	scadapack_7x_remote_connect	A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect (V3.6.3.574 and prior) which could allow arbitrary code execution when an attacker builds a custom .PRJ…	-	CVE-2020-7528	2024-11-21 14:37	2020-09-17	Show	GitHub Exploit DB Packet Storm

198224	7.5	HIGH Network	ua-parser-js_project oracle	ua-parser-js communications_cloud_native_core_network_function_cloud_native_environment	The package ua-parser-js before 0.7.22 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex for Redmi Phones and Mi Pad Tablets UA.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-7733	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198225	5.7	MEDIUM Adjacent	mcafee	web_gateway	Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user inter…	CWE-287 Improper Authentication	CVE-2020-7297	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198226	5.7	MEDIUM Adjacent	mcafee	web_gateway	Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected configuration files via improper access control in the user …	CWE-287 Improper Authentication	CVE-2020-7296	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198227	4.6	MEDIUM Adjacent	mcafee	web_gateway	Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the use…	CWE-287 Improper Authentication	CVE-2020-7295	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198228	4.6	MEDIUM Adjacent	mcafee	web_gateway	Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST i…	CWE-287 Improper Authentication	CVE-2020-7294	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198229	9.0	CRITICAL Adjacent	mcafee	web_gateway	Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user with low permissions to change the system's root password via improper access co…	CWE-287 Improper Authentication	CVE-2020-7293	2024-11-21 14:37	2020-09-16	Show	GitHub Exploit DB Packet Storm

198230	5.5	MEDIUM Local	lg	ipsfullhd lg_ultrawide lgpcsuite_setup ultra_hd_driver_setup	A vulnerability that can hijack a DLL file that is loaded during products(LGPCSuite_Setup, IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) installation into a DLL file that the hacker wants. Missing …	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-7807	2024-11-21 14:37	2020-09-14	Show	GitHub Exploit DB Packet Storm