Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230901	5	警告	qbik	-	Qbik WinGate の SMTP サーバコンポーネントにおけるフォーマットストリングの脆弱性	-	CVE-2007-4335	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

230902	4.3	警告	php-stats	-	Php-stats の whois.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4334	2012-12-20 18:33	2007-08-14	Show	GitHub Exploit DB Packet Storm

230903	4	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4319	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230904	4.3	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4318	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230905	4.3	警告	ZyXEL	-	Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4317	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230906	4.3	警告	ZyXEL	-	Zyxel Zywall 2 上で稼動する ZyNOS の管理インターフェースにおける管理アクションを実行される脆弱性	-	CVE-2007-4316	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230907	6.8	警告	pixlie	-	Pixlie の pixlie.php におけるリモートディレクトリツリーのファイルを読み込まれる脆弱性	-	CVE-2007-4314	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230908	4.3	警告	サン・マイクロシステムズ	-	Sun Solaris の finger デーモンにおける特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性	-	CVE-2007-4310	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230909	4.3	警告	Lamp Design	-	Storesprite におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4307	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230910	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4306	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197641	9.8	CRITICAL Network	dlink	dsl-2640b_firmware	An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. A hard-coded account allows management-interface login with high privileges. The logged-in user can perform critical tasks and take fu…	CWE-798 Use of Hard-coded Credentials	CVE-2020-9279	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197642	9.1	CRITICAL Network	dlink	dsl-2640b_firmware	An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL.	CWE-306 Missing Authentication for Critical Function	CVE-2020-9278	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197643	9.8	CRITICAL Network	dlink	dsl-2640b_firmware	An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. Authentication can be bypassed when accessing cgi modules. This allows one to perform administrative tasks (e.g., modify the admin pas…	CWE-287 Improper Authentication	CVE-2020-9277	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197644	8.8	HIGH Network	dlink	dsl-2640b_firmware	An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. The function do_cgi(), which processes cgi requests supplied to the device's web servers, is vulnerable to a remotely exploitable stac…	CWE-787 Out-of-bounds Write	CVE-2020-9276	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197645	9.8	CRITICAL Network	dlink	dsl-2640b_firmware	An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. A cfm UDP service listening on port 65002 allows remote, unauthenticated exfiltration of administrative credentials.	CWE-306 Missing Authentication for Critical Function	CVE-2020-9275	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197646	6.1	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.3 allows XSS via the modal_link feature in the Markdown functionality.	CWE-79 Cross-site Scripting	CVE-2020-9445	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197647	6.1	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.3 allows reverse tabnabbing via the Markdown functionality.	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-9444	2024-11-21 14:40	2020-04-21	Show	GitHub Exploit DB Packet Storm

197648	8.8	HIGH Network	microfocus	enterprise_developer enterprise_server	Insufficiently protected credentials vulnerability on Micro Focus enterprise developer and enterprise server, affecting all version prior to 4.0 Patch Update 16, and version 5.0 Patch Update 6. The v…	CWE-522 Insufficiently Protected Credentials	CVE-2020-9523	2024-11-21 14:40	2020-04-18	Show	GitHub Exploit DB Packet Storm

197649	7.5	HIGH Network	silverstripe	silverstripe	In SilverStripe through 4.5, files uploaded via Forms to folders migrated from Silverstripe CMS 3.x may be put to the default "/Uploads" folder instead. This affects installations which allowed uploa…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-9280	2024-11-21 14:40	2020-04-16	Show	GitHub Exploit DB Packet Storm

197650	8.8	HIGH Network	subex	roc_partner_settlement	An Insecure Direct Object Reference (IDOR) vulnerability in the Change Password feature of Subex ROC Partner Settlement 10.5 allows remote authenticated users to achieve account takeover via manipula…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2020-9384	2024-11-21 14:40	2020-04-15	Show	GitHub Exploit DB Packet Storm