Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230881	7.5	危険	pragmaticutopia	-	Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6663	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230882	7.5	危険	xcms	-	XCMS の cpie.php における静的コードを直接挿入する攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6652	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230883	5	警告	sanybee gallery	-	SanyBee Gallery の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6648	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230884	7.5	危険	W-Agora	-	w-Agora の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6647	2012-12-20 18:34	2008-01-4	Show	GitHub Exploit DB Packet Storm

230885	6.8	警告	xml2owl	-	xml2owl の showCode.php における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6632	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

230886	6.8	警告	pnphpbb	-	PNphpBB2 の printview.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6624	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

230887	5	警告	zeuscms	-	ZeusCMS における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6623	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

230888	7.5	危険	zeuscms	-	ZeusCMS の security.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6622	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

230889	4.3	警告	simpleforum	-	SimpleForum の simpleforum.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6616	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

230890	5.8	警告	skyfex	-	SkyFex Client の SkyFexClient.ocx におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6605	2012-12-20 18:34	2007-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213871	5.5	MEDIUM Local	openexr fedoraproject opensuse	openexr fedora leap	An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by …	CWE-476 NULL Pointer Dereference	CVE-2020-15304	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

213872	7.5	HIGH Network	argent	recoverymanager	In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-15302	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

213873	7.5	HIGH Network	acronis	agent	A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data.	NVD-CWE-noinfo	CVE-2020-14999	2024-11-21 14:04	2021-07-30	Show	GitHub Exploit DB Packet Storm

213874	5.3	MEDIUM Network	openvpn	openvpn_access_server	OpenVPN Access Server 2.8.7 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be us…	CWE-287 Improper Authentication	CVE-2020-15077	2024-11-21 14:04	2021-06-4	Show	GitHub Exploit DB Packet Storm

213875	7.8	HIGH Local	openvpn	private_tunnel	Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp.	CWE-59 Link Following	CVE-2020-15076	2024-11-21 14:04	2021-05-27	Show	GitHub Exploit DB Packet Storm

213876	9.8	CRITICAL Network	ampache	ampache	Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and t…	-	CVE-2020-15153	2024-11-21 14:04	2021-05-1	Show	GitHub Exploit DB Packet Storm

213877	7.5	HIGH Network	openvpn fedoraproject canonical debian	openvpn fedora ubuntu_linux debian_linux	OpenVPN 2.5.1 and earlier versions allows a remote attackers to bypass authentication and access control channel data on servers configured with deferred authentication, which can be used to potentia…	CWE-306 Missing Authentication for Critical Function	CVE-2020-15078	2024-11-21 14:04	2021-04-26	Show	GitHub Exploit DB Packet Storm

213878	7.1	HIGH Local	openvpn	connect	OpenVPN Connect installer for macOS version 3.2.6 and older may corrupt system critical files it should not have access via symlinks in /tmp.	CWE-59 Link Following	CVE-2020-15075	2024-11-21 14:04	2021-03-30	Show	GitHub Exploit DB Packet Storm

213879	6.5	MEDIUM Network	bloomreach	experience_manager	An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0 through 14.2.2. It allows CSRF if the attacker uses GET where POST was intended.	CWE-352 Origin Validation Error	CVE-2020-14989	2024-11-21 14:04	2021-03-12	Show	GitHub Exploit DB Packet Storm

213880	5.4	MEDIUM Network	bloomreach	experience_manager	An issue was discovered in Bloomreach Experience Manager (brXM) 4.1.0 through 14.2.2. It allows XSS in the login page via the loginmessage parameter, the text editor via the src attribute of HTML ele…	CWE-79 Cross-site Scripting	CVE-2020-14988	2024-11-21 14:04	2021-03-12	Show	GitHub Exploit DB Packet Storm