Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230841 6.8 警告 クアルコム - Qualcomm Eudora におけるバッファオーバーフローの脆弱性 - CVE-2007-3166 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230842 5 警告 The Tor Project - Tor におけるトラフィックの送信元などの匿名性を侵害される脆弱性 - CVE-2007-3165 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230843 5 警告 westbyte - ida の idaiehlp.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-3162 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230844 6.8 警告 visicommedia - Ace-FTP Client におけるバッファオーバーフローの脆弱性 - CVE-2007-3161 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230845 5 警告 tenyearsgone - ASP Folder Gallery の download_script.asp における任意のファイルを読まれる脆弱性 - CVE-2007-3158 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230846 5 警告 SafeNet, Inc - SafeNET High Assurance Remote および SoftRemote におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3157 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230847 5 警告 zen help desk software - Zen Help Desk におけるパスワードを含むデータベースをダウンロードされる脆弱性 - CVE-2007-3146 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230848 6.8 警告 phpwebthings - phpWebThings の core/editor.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3141 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230849 6.5 警告 WordPress.org - WordPress の xmlrpc.php における SQL インジェクションの脆弱性 - CVE-2007-3140 2012-12-20 18:19 2007-06-8 Show GitHub Exploit DB Packet Storm
230850 4.3 警告 webmaster solutions - WmsCMS の 4print.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3137 2012-12-20 18:19 2007-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197711 5.3 MEDIUM
Network 		envoyproxy envoy CNCF Envoy through 1.13.0 TLS inspector bypass. TLS inspector could have been bypassed (not recognized as a TLS client) by a client using only TLS 1.3. Because TLS extensions (SNI, ALPN) were not ins… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-8660 2024-11-21 14:39 2020-03-5 Show GitHub Exploit DB Packet Storm
197712 5.3 MEDIUM
Network 		cncf envoy CNCF Envoy through 1.13.0 has incorrect Access Control when using SDS with Combined Validation Context. Using the same secret (e.g. trusted CA) across many resources together with the combined valida… CWE-287
Improper Authentication 		CVE-2020-8664 2024-11-21 14:39 2020-03-5 Show GitHub Exploit DB Packet Storm
197713 7.5 HIGH
Network 		cncf
redhat 		envoy
openshift_service_mesh 		CNCF Envoy through 1.13.0 may consume excessive amounts of memory when responding internally to pipelined requests. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-8661 2024-11-21 14:39 2020-03-5 Show GitHub Exploit DB Packet Storm
197714 7.5 HIGH
Network 		cncf
redhat
debian 		envoy
openshift_service_mesh
debian_linux 		CNCF Envoy through 1.13.0 may consume excessive amounts of memory when proxying HTTP/1.1 requests or responses with many small (i.e. 1 byte) chunks. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-8659 2024-11-21 14:39 2020-03-5 Show GitHub Exploit DB Packet Storm
197715 9.8 CRITICAL
Network 		zyxel nas326_firmware
nas520_firmware
nas540_firmware
nas542_firmware
atp100_firmware
atp200_firmware
atp500_firmware
atp800_firmware
usg20-vpn_firmware
usg20w-vpn_firmware
us… 		Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated attacker to… CWE-78
OS Command  		CVE-2020-9054 2024-11-21 14:39 2020-03-5 Show GitHub Exploit DB Packet Storm
197716 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via an uploaded document, when the attacker has write access to a project. CWE-79
Cross-site Scripting 		CVE-2020-8778 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
197717 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via a user profile photo, as demonstrated by a SCRIPT element in an SVG document. CWE-79
Cross-site Scripting 		CVE-2020-8777 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
197718 5.4 MEDIUM
Network 		alfresco alfresco Alfresco Enterprise before 5.2.7 and Alfresco Community before 6.2.0 (rb65251d6-b368) has XSS via the URL property of a file. CWE-79
Cross-site Scripting 		CVE-2020-8776 2024-11-21 14:39 2020-03-3 Show GitHub Exploit DB Packet Storm
197719 6.1 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the logout.jsp timeOut parameter. CWE-79
Cross-site Scripting 		CVE-2020-8952 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm
197720 5.4 MEDIUM
Network 		fiserv accurate_reconciliation Fiserv Accurate Reconciliation 2.19.0, fixed in 3.0.0 or higher, allows XSS via the Source or Destination field of the Configuration Manager (Configuration Parameter Translation) page. CWE-79
Cross-site Scripting 		CVE-2020-8951 2024-11-21 14:39 2020-02-27 Show GitHub Exploit DB Packet Storm