Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230901	10	危険	tinymux	-	TinyMUX の command.cpp における脆弱性	-	CVE-2007-1959	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230902	5	警告	tinymux	-	TinyMUX におけるバッファオーバーフローの脆弱性	-	CVE-2007-1958	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230903	7.5	危険	UBB Systems	-	Groupee UBB.threads の ubbthreads.php における SQL インジェクションの脆弱性	-	CVE-2007-1956	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230904	10	危険	signkorea	-	SignKorea SKCrypAX ActiveX コントロールモジュールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1955	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230905	4.3	警告	webblizzard	-	WebBlizzard CMS の index_cms.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1950	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230906	7.5	危険	webblizzard	-	WebBlizzard CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-1949	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230907	6.8	警告	scar4u.de	-	ScarAdControl の scaradcontrol.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1936	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230908	6.8	警告	scar4u.de	-	ScarAdControl の admin/index.php における任意の PHP コードを実行される脆弱性	-	CVE-2007-1935	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230909	6.8	警告	PHPNUKE	-	PHP-Nuke 用の eBoard モジュールにおけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1934	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

230910	7.5	危険	scar4u	-	ScarNews の scarnews.inc.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1932	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198581	8.4	HIGH Local	mcafee	total_protection	Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to turn off real time scanning via a specially crafted object making a specific function call.	NVD-CWE-noinfo	CVE-2020-7298	2024-11-21 14:37	2020-08-6	Show	GitHub Exploit DB Packet Storm

198582	8.8	HIGH Local	gog	galaxy	The GalaxyClientService component of GOG Galaxy runs with elevated SYSTEM privileges in a Windows environment. Due to the software shipping with embedded, static RSA private key, an attacker with thi…	CWE-798 Use of Hard-coded Credentials	CVE-2020-7352	2024-11-21 14:37	2020-08-7	Show	GitHub Exploit DB Packet Storm

198583	7.8	HIGH Local	hmtalk	daviewindy	DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2020-7823	2024-11-21 14:37	2020-08-5	Show	GitHub Exploit DB Packet Storm

198584	7.8	HIGH Local	hmtalk	daviewindy	DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2020-7822	2024-11-21 14:37	2020-08-5	Show	GitHub Exploit DB Packet Storm

198585	7.8	HIGH Local	hmtalk	daviewindy	DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this…	CWE-787 Out-of-bounds Write	CVE-2020-7829	2024-11-21 14:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

198586	7.8	HIGH Local	hmtalk	daviewindy	DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this…	CWE-787 Out-of-bounds Write	CVE-2020-7828	2024-11-21 14:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

198587	7.8	HIGH Local	hmtalk	daviewindy	DaviewIndy 8.98.7 and earlier version contain Use-After-Free vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and …	CWE-416 Use After Free	CVE-2020-7827	2024-11-21 14:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

198588	9.8	CRITICAL Network	express-fileupload_project netapp	express-fileupload max_data	This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7699	2024-11-21 14:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

198589	9.8	CRITICAL Network	gerapy	gerapy	This affects the package Gerapy from 0 and before 0.9.3. The input being passed to Popen, via the project_configure endpoint, isn’t being sanitized.	CWE-78 OS Command	CVE-2020-7698	2024-11-21 14:37	2020-07-29	Show	GitHub Exploit DB Packet Storm

198590	9.8	CRITICAL Network	mock2easy_project	mock2easy	This affects all versions of package mock2easy. a malicious user could inject commands through the _data variable: Affected Area require('../server/getJsonByCurl')(mock2easy, function (error, stdout)…	CWE-77 Command Injection	CVE-2020-7697	2024-11-21 14:37	2020-07-29	Show	GitHub Exploit DB Packet Storm