Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230891 7.5 危険 phpexplorator - phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1985 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230892 7.5 危険 really simple php and ajax - RSPA における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1982 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230893 7.5 危険 有限会社ブルームーン - XOOPS 用の PopnupBlog モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-1979 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230894 7.5 危険 slaed - SLAED CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1975 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230895 7.5 危険 wf-sections
XOOPS		 - Xoops モジュールで使用される WF-Section における SQL インジェクションの脆弱性 - CVE-2007-1974 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
230896 4.3 警告 sam crew - Sam Crew MyBlog の admin/modify.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1969 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230897 6.8 警告 sam crew - Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1968 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230898 7.5 危険 XOOPS - XOOPS 用の WF-Snippets モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1962 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230899 7.5 危険 phpBB - phpBB 用の Mutant ポータルの mutant_functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1961 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
230900 7.5 危険 XOOPS - XOOPS 用の Rha7 Downloads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1960 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212811 10.0 CRITICAL
Network 		treck tcp\/ip The Treck TCP/IP stack before 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling. CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error') 
 Out-of-bounds Write 		CVE-2020-11896 2024-11-21 13:58 2020-06-17 Show GitHub Exploit DB Packet Storm
212812 4.3 MEDIUM
Network 		microfocus arcsight_management_center Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotel… NVD-CWE-noinfo
CVE-2020-11841 2024-11-21 13:58 2020-06-16 Show GitHub Exploit DB Packet Storm
212813 4.3 MEDIUM
Network 		microfocus arcsight_management_center Unauthorized information disclosure vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotel… NVD-CWE-noinfo
CVE-2020-11840 2024-11-21 13:58 2020-06-16 Show GitHub Exploit DB Packet Storm
212814 5.4 MEDIUM
Network 		microfocus arcsight_management_center Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Management Center product, Affecting versions 2.6.1, 2.7.x, 2.8.x, 2.9.x prior to 2.9.4. The vulnerabilities could be remotely exploit… CWE-79
Cross-site Scripting 		CVE-2020-11838 2024-11-21 13:58 2020-06-16 Show GitHub Exploit DB Packet Storm
212815 6.1 MEDIUM
Network 		microfocus arcsight_logger Cross Site Scripting (XSS) vulnerability in Micro Focus ArcSight Logger product, affecting all version from 6.6.1 up to version 7.0.1. The vulnerabilities could be remotely exploited resulting in Cro… CWE-79
Cross-site Scripting 		CVE-2020-11839 2024-11-21 13:58 2020-06-13 Show GitHub Exploit DB Packet Storm
212816 8.1 HIGH
Network 		mids\'_reborn_hero_designer_project mids\'_reborn_hero_designer Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files afte… CWE-345
CWE-319
 Insufficient Verification of Data Authenticity
Cleartext Transmission of Sensitive Information 		CVE-2020-11614 2024-11-21 13:58 2020-06-12 Show GitHub Exploit DB Packet Storm
212817 7.8 HIGH
Local 		mids\'_reborn_hero_designer_project mids\'_reborn_hero_designer Mids' Reborn Hero Designer 2.6.0.7 has an elevation of privilege vulnerability due to default and insecure permissions being set for the installation folder. By default, the Authenticated Users group… CWE-427
CWE-732
 Uncontrolled Search Path Element
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-11613 2024-11-21 13:58 2020-06-12 Show GitHub Exploit DB Packet Storm
212818 7.5 HIGH
Network 		arista veos
cloudeos 		A vulnerability exists in Arista’s Cloud EOS VM / vEOS 4.23.2M and below releases in the 4.23.x train, 4.22.4M and below releases in the 4.22.x train, 4.21.3M to 4.21.9M releases in the 4.21.x train,… NVD-CWE-noinfo
CVE-2020-11622 2024-11-21 13:58 2020-06-11 Show GitHub Exploit DB Packet Storm
212819 5.3 MEDIUM
Network 		mitel micollab_audio\
_web_\&_video_conferencing 		A Directory Traversal vulnerability in the web conference component of Mitel MiCollab AWV before 8.1.2.4 and 9.x before 9.1.3 could allow an attacker to access arbitrary files from restricted directo… CWE-22
Path Traversal 		CVE-2020-11798 2024-11-21 13:58 2020-06-11 Show GitHub Exploit DB Packet Storm
212820 7.5 HIGH
Adjacent 		cypress psoc_4.2_ble The Bluetooth Low Energy implementation in Cypress PSoC Creator BLE 4.2 component versions before 3.64 generates a random number (Pairing Random) with significantly less entropy than the specified 12… CWE-331
 Insufficient Entropy 		CVE-2020-11957 2024-11-21 13:58 2020-06-10 Show GitHub Exploit DB Packet Storm