Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230731 7.5 危険 phphtmllib - phpHtmlLib の examples/widget8.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2614 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230732 8.3 危険 Wikka Development Team - WikkaWiki における任意の設定ファイルをアップロードされる脆弱性 - CVE-2007-2613 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230733 7.5 危険 Wikka Development Team - WikkaWiki の libs/Wakka.class.php における SQL インジェクションの脆弱性 - CVE-2007-2612 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230734 6.8 警告 wavelink media - TutorialCMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2600 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230735 7.5 危険 wavelink media - TutorialCMS における SQL インジェクションの脆弱性 - CVE-2007-2599 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230736 10 危険 Simplenews Project - SimpleNews の print.php における SQL インジェクションの脆弱性 - CVE-2007-2598 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230737 7.5 危険 telltargetcms - telltarget CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2597 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230738 6.5 警告 rscript - RSAuction におけるユーザ自身のアカウントステータスを Suspended から Active に変更される脆弱性 - CVE-2007-2595 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230739 7.5 危険 phpmyportal - phpMyPortal の inc/articles.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2594 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
230740 7.5 危険 vm watermark - Gallery 用の vm watermark における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2575 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210711 8.8 HIGH
Network 		pramod blogcms pramodmahato BlogCMS through 2019-12-31 has admin/changepass.php CSRF. CWE-352
 Origin Validation Error 		CVE-2020-15014 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210712 4.3 MEDIUM
Network 		gnu
canonical
debian 		mailman
ubuntu_linux
debian_linux 		GNU Mailman before 2.1.33 allows arbitrary content injection via the Cgi/private.py private archive login page. CWE-74
Injection 		CVE-2020-15011 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210713 9.8 CRITICAL
Network 		idsoftware
doom_vanille_project 		tech_1
doom_vanille 		A buffer overflow in the M_LoadDefaults function in m_misc.c in id Tech 1 (aka Doom engine) allows arbitrary code execution via an unsafe usage of fscanf, because it does not limit the number of char… CWE-120
Classic Buffer Overflow 		CVE-2020-15007 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210714 5.4 MEDIUM
Network 		bludit bludit Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php. CWE-79
Cross-site Scripting 		CVE-2020-15006 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210715 8.1 HIGH
Network 		f-secure safe An issue was discovered in F-Secure SAFE 17.7 on macOS. Due to incorrect client version verification, an attacker can connect to a privileged XPC service, and execute privileged commands on the syste… NVD-CWE-noinfo
CVE-2020-14978 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210716 8.1 HIGH
Network 		f-secure safe An issue was discovered in F-Secure SAFE 17.7 on macOS. The XPC services use the PID to identify the connecting client, which allows an attacker to perform a PID reuse attack and connect to a privile… NVD-CWE-noinfo
CVE-2020-14977 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210717 5.5 MEDIUM
Local 		gns3 ubridge GNS3 ubridge through 0.9.18 on macOS, as used in GNS3 server before 2.1.17, allows a local attacker to read arbitrary files because it handles configuration-file errors by printing the configuration … CWE-269
 Improper Privilege Management 		CVE-2020-14976 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210718 7.8 HIGH
Local 		iobit iobit_unlocker The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to delete, move, or copy arbitrary files via IOCTL code 0x222124. NVD-CWE-noinfo
CVE-2020-14975 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210719 7.1 HIGH
Local 		iobit iobit_unlocker The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes (even ones running as SYSTEM) that hold a handle, via IOCTL code 0x222124. NVD-CWE-noinfo
CVE-2020-14974 2024-11-21 14:04 2020-06-24 Show GitHub Exploit DB Packet Storm
210720 7.8 HIGH
Local 		pi-hole pi-hole Pi-hole through 5.0 allows code injection in piholedhcp (the Static DHCP Leases section) by modifying Teleporter backup files and then restoring them. This occurs in settings.php. To exploit this, an… CWE-862
 Missing Authorization 		CVE-2020-14971 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm