Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230761	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0628	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230762	5	警告	vlad leont	-	FD Script の download.php における特定の拡張子を伴う Web 文書ルート配下のファイルのソースを読み取られる脆弱性	-	CVE-2007-0620	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230763	7.8	危険	Zenphoto	-	zenphoto の zen/template-functions.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0616	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230764	4.3	警告	W-Agora	-	Web-Agora におけるアプリケーションのパス情報を取得される脆弱性	-	CVE-2007-0607	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

230765	5	警告	W-Agora	-	w-agora における重要な情報を取得される脆弱性	-	CVE-2007-0606	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230766	6.8	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0604	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230767	6.9	警告	トレンドマイクロ	-	Linux 用の Trend Micro VirusWall におけるバッファオーバーフローの脆弱性	-	CVE-2007-0602	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230768	5	警告	siteman	-	Siteman におけるパスワードハッシュを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0594	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230769	5	警告	siteman	-	Siteman におけるパスワードハッシュを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0593	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230770	7.5	危険	vu le an	-	VirtualPath の configure.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0591	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199601	7.8	HIGH Local	nvidia	geforce_experience	NVIDIA GeForce Experience, all versions prior to 3.20.5.70, contains a vulnerability in NVIDIA Web Helper NodeJS Web Server in which an uncontrolled search path is used to load a node module, which m…	CWE-426 Untrusted Search Path	CVE-2020-5977	2024-11-21 14:34	2020-10-24	Show	GitHub Exploit DB Packet Storm

199602	8.8	HIGH Network	tipsandtricks-hq	simple_download_monitor	SQL injection vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to execute arbitrary SQL commands via a specially crafted URL.	CWE-89 SQL Injection	CVE-2020-5651	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

199603	6.1	MEDIUM Network	tipsandtricks-hq	simple_download_monitor	Cross-site scripting vulnerability in Simple Download Monitor 3.8.8 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5650	2024-11-21 14:34	2020-10-22	Show	GitHub Exploit DB Packet Storm

199604	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of argument delimiters in a command in Nagios XI 5.7.3 allows a remote, authenticated admin user to write to arbitrary files and ultimately execute code with the privileges of…	CWE-88 Argument Injection	CVE-2020-5792	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

199605	7.2	HIGH Network	nagios	nagios_xi	Improper neutralization of special elements used in an OS command in Nagios XI 5.7.3 allows a remote, authenticated admin user to execute operating system commands with the privileges of the apache u…	CWE-78 OS Command	CVE-2020-5791	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

199606	6.5	MEDIUM Network	nagios	nagios_xi	Cross-site request forgery in Nagios XI 5.7.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.	CWE-352 Origin Validation Error	CVE-2020-5790	2024-11-21 14:34	2020-10-21	Show	GitHub Exploit DB Packet Storm

199607	9.8	CRITICAL Network	onethird	onethird	Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5640	2024-11-21 14:34	2020-10-20	Show	GitHub Exploit DB Packet Storm

199608	8.8	HIGH Network	onwebchat	live_chat_-_live_support	Cross-site request forgery (CSRF) vulnerability in Live Chat - Live support version 3.1.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CWE-352 Origin Validation Error	CVE-2020-5642	2024-11-21 14:34	2020-10-15	Show	GitHub Exploit DB Packet Storm

199609	6.5	MEDIUM Network	dell	emc_openmanage_integration_for_microsoft_system_center	Dell EMC OpenManage Integration for Microsoft System Center (OMIMSSC) for SCCM and SCVMM versions prior to 7.2.1 contain an information disclosure vulnerability. Authenticated low privileged OMIMSCC …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-5389	2024-11-21 14:34	2020-10-9	Show	GitHub Exploit DB Packet Storm

199610	8.8	HIGH Adjacent	elecom	wrc-2533gst2_firmware wrc-1900gst2_firmware wrc-1750gst2_firmware wrc-1167gst2_firmware	ELECOM LAN routers (WRC-2533GST2 firmware versions prior to v1.14, WRC-1900GST2 firmware versions prior to v1.14, WRC-1750GST2 firmware versions prior to v1.14, and WRC-1167GST2 firmware versions pri…	NVD-CWE-noinfo	CVE-2020-5634	2024-11-21 14:34	2020-10-6	Show	GitHub Exploit DB Packet Storm