Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230821	6.8	警告	simian systems inc	-	Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3230	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230822	6.8	警告	singapore	-	Singapore Gallery の index.php における重要な情報を取得される脆弱性	-	CVE-2007-3229	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230823	6.8	警告	simian systems inc	-	Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3228	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230824	4.3	警告	Ruby on Rails project	-	Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3227	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230825	6.4	警告	サン・マイクロシステムズ	-	slapd における特定のデータを変更される脆弱性	-	CVE-2007-3225	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

230826	5	警告	サン・マイクロシステムズ	-	slapd におけるエントリの属性の存在を特定される脆弱性	-	CVE-2007-3224	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

230827	7.5	危険	XOOPS	-	XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3222	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230828	6.8	警告	XOOPS	-	XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3221	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230829	6.8	警告	XOOPS	-	XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3220	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

230830	7.5	危険	prototype of an php application	-	PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3217	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197941	7.8	HIGH Local	pulsesecure	pulse_secure_desktop_client	A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to perform buffer overflow.	CWE-120 Classic Buffer Overflow	CVE-2020-8249	2024-11-21 14:38	2020-10-28	Show	GitHub Exploit DB Packet Storm

197942	7.8	HIGH Local	pulsesecure	pulse_secure_desktop_client	A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to escalate privilege.	NVD-CWE-noinfo	CVE-2020-8248	2024-11-21 14:38	2020-10-28	Show	GitHub Exploit DB Packet Storm

197943	7.5	HIGH Network	pulsesecure	pulse_secure_desktop_client	A vulnerability in the Pulse Secure Desktop Client < 9.1R9 could allow the attacker to perform a MITM Attack if end users are convinced to connect to a malicious server.	NVD-CWE-noinfo	CVE-2020-8241	2024-11-21 14:38	2020-10-28	Show	GitHub Exploit DB Packet Storm

197944	7.8	HIGH Local	pulsesecure	pulse_secure_desktop_client	A vulnerability in the Pulse Secure Desktop Client < 9.1R9 allows a restricted user on an endpoint machine can use system-level privileges if the Embedded Browser is configured with Credential Provid…	NVD-CWE-noinfo	CVE-2020-8240	2024-11-21 14:38	2020-10-28	Show	GitHub Exploit DB Packet Storm

197945	9.8	CRITICAL Network	pulsesecure	pulse_secure_desktop_client	A vulnerability in the Pulse Secure Desktop Client < 9.1R9 is vulnerable to the client registry privilege escalation attack. This fix also requires Server Side Upgrade due to Standalone Host Checker …	NVD-CWE-noinfo	CVE-2020-8239	2024-11-21 14:38	2020-10-28	Show	GitHub Exploit DB Packet Storm

197946	8.8	HIGH Adjacent	lenovo	thinkpad_stack_wireless_router_firmware	An authentication bypass vulnerability was reported in Lenovo ThinkPad Stack Wireless Router firmware version 1.1.3.4 that could allow escalation of privilege.	CWE-287 Improper Authentication	CVE-2020-8350	2024-11-21 14:38	2020-10-15	Show	GitHub Exploit DB Packet Storm

197947	7.8	HIGH Local	lenovo	hardware_scan	A DLL search path vulnerability was reported in the Lenovo HardwareScan Plugin for the Lenovo Vantage hardware scan feature prior to version 1.0.46.11 that could allow escalation of privilege.	CWE-427 Uncontrolled Search Path Element	CVE-2020-8345	2024-11-21 14:38	2020-10-15	Show	GitHub Exploit DB Packet Storm

197948	7.8	HIGH Local	lenovo	diagnostics	A DLL search path vulnerability was reported in Lenovo Diagnostics prior to version 4.35.4 that could allow a user with local access to execute code on the system.	CWE-426 Untrusted Search Path	CVE-2020-8338	2024-11-21 14:38	2020-10-15	Show	GitHub Exploit DB Packet Storm

197949	9.8	CRITICAL Network	lenovo	cloud_networking_operating_system	An internal security review has identified an unauthenticated remote code execution vulnerability in Cloud Networking Operating System (CNOS)’ optional REST API management interface. This interface i…	CWE-94 Code Injection	CVE-2020-8349	2024-11-21 14:38	2020-10-15	Show	GitHub Exploit DB Packet Storm

197950	6.4	MEDIUM Local	lenovo	bladecenter_hs23_firmware bladecenter_hs23e_firmware compute_node-x440_firmware flex_system_x220_firmware flex_system_x240_firmware flex_system_x440_firmware nextscale_nx360_m4_firm…	A potential vulnerability in the SMI callback function used in the legacy BIOS mode USB drivers in some legacy Lenovo and IBM System x servers may allow arbitrary code execution. Servers operating in…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-8332	2024-11-21 14:38	2020-10-15	Show	GitHub Exploit DB Packet Storm