Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230871	5	警告	uber uploader	-	UU の初期設定におけるアップロードに危険な拡張子を使用される脆弱性	CWE-16 環境設定	CVE-2007-6676	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230872	4.3	警告	rapidshare	-	RapidShare Database の Default.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6674	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230873	7.5	危険	phpcredo	-	PHCDownload の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6670	2012-12-20 18:34	2008-01-7	Show	GitHub Exploit DB Packet Storm

230874	4.3	警告	phpcredo	-	PHCDownload の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6669	2012-12-20 18:34	2008-01-7	Show	GitHub Exploit DB Packet Storm

230875	7.5	危険	Zenphoto	-	Zenphoto の rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6666	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230876	7.5	危険	webportal	-	WebPortal CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6664	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230877	7.5	危険	pragmaticutopia	-	Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6663	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230878	7.5	危険	xcms	-	XCMS の cpie.php における静的コードを直接挿入する攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6652	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230879	5	警告	sanybee gallery	-	SanyBee Gallery の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6648	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230880	7.5	危険	W-Agora	-	w-Agora の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6647	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213691	5.5	MEDIUM Local	redhat	ansible_tower	A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower server is abused by supplying a URL that could lead to the s…	-	CVE-2020-14327	2024-11-21 14:03	2021-05-28	Show	GitHub Exploit DB Packet Storm

213692	3.3	LOW Local	c-ares fedoraproject	c-ares fedora	A possible use-after-free and double-free in c-ares lib version 1.16.0 if ares_destroy() is called prior to ares_getaddrinfo() completing. This flaw possibly allows an attacker to crash the service t…	CWE-415 CWE-416 Double Free Use After Free	CVE-2020-14354	2024-11-21 14:03	2021-05-13	Show	GitHub Exploit DB Packet Storm

213693	10.0	CRITICAL Network	rockwellautomation	factorytalk_services_platform	In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that p…	-	CVE-2020-14516	2024-11-21 14:03	2021-03-19	Show	GitHub Exploit DB Packet Storm

213694	7.5	HIGH Local	gnu redhat fedoraproject netapp	grub2 enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux enterprise_linux_server_tus enterprise_linux_server_eus fedora cloud_backup ontap_select_deploy…	A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to cra…	-	CVE-2020-14372	2024-11-21 14:03	2021-03-4	Show	GitHub Exploit DB Packet Storm

213695	7.3	HIGH Network	redhat	louketo_proxy	A vulnerability was found in all versions of Keycloak Gatekeeper, where on using lower case HTTP headers (via cURL) an attacker can bypass our Gatekeeper. Lower case headers are also accepted by some…	-	CVE-2020-14359	2024-11-21 14:03	2021-02-23	Show	GitHub Exploit DB Packet Storm

213696	9.8	CRITICAL Network	pyyaml oracle	pyyaml communications_cloud_native_core_network_function_cloud_native_environment	A vulnerability was discovered in the PyYAML library in versions before 5.4, where it is susceptible to arbitrary code execution when it processes untrusted YAML files through the full_load method or…	CWE-20 Improper Input Validation	CVE-2020-14343	2024-11-21 14:03	2021-02-10	Show	GitHub Exploit DB Packet Storm

213697	5.5	MEDIUM Local	gnome	control_center	A flaw was found in the GNOME Control Center in Red Hat Enterprise Linux 8 versions prior to 8.2, where it improperly uses Red Hat Customer Portal credentials when a user registers a system through t…	-	CVE-2020-14391	2024-11-21 14:03	2021-02-9	Show	GitHub Exploit DB Packet Storm

213698	7.0	HIGH Local	morphisec madshi cisco	unified_threat_prevention_platform madcodehook advanced_malware_protection	A TOCTOU vulnerability exists in madCodeHook before 2020-07-16 that allows local attackers to elevate their privileges to SYSTEM. This occurs because path redirection can occur via vectors involving …	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-14418	2024-11-21 14:03	2021-01-30	Show	GitHub Exploit DB Packet Storm

213699	7.8	HIGH Local	x.org	x_server	A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerabi…	-	CVE-2020-14360	2024-11-21 14:03	2021-01-21	Show	GitHub Exploit DB Packet Storm

213700	5.4	MEDIUM Network	libsdl debian fedoraproject	simple_directmedia_layer debian_linux fedora	SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.	CWE-125 Out-of-bounds Read	CVE-2020-14410	2024-11-21 14:03	2021-01-20	Show	GitHub Exploit DB Packet Storm