Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230911	6.2	警告	systrace Todd C. Miller sysjail	-	NetBSD および OpenBSD 上で稼動している Systrace の Sudo monitor mode などにおけるシステムコール割り込みを無効にされる脆弱性	-	CVE-2007-4305	2012-12-20 18:33	2007-08-13	Show	GitHub Exploit DB Packet Storm

230912	6.8	警告	サン・マイクロシステムズ	-	Sun Java System Portal Server における任意の Java メソッドを実行される脆弱性	-	CVE-2007-4289	2012-12-20 18:33	2007-08-3	Show	GitHub Exploit DB Packet Storm

230913	5	警告	s9y	-	Serendipity の entryproperties プラグインにおけるパスワード保護を回避される脆弱性	-	CVE-2007-4282	2012-12-20 18:33	2007-08-8	Show	GitHub Exploit DB Packet Storm

230914	6.6	警告	トレンドマイクロ	-	Trend Micro PC-Cillin Internet Security 2007 などで使用されている Trend Micro AntiVirus スキャンエンジンにおけるバッファオーバーフローの脆弱性	CWE-119 CWE-264	CVE-2007-4277	2012-12-20 18:33	2007-10-30	Show	GitHub Exploit DB Packet Storm

230915	4.3	警告	visionera ab	-	VisionProject におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4265	2012-12-20 18:33	2007-08-9	Show	GitHub Exploit DB Packet Storm

230916	7.5	危険	prozilla	-	Prozilla Pub Site Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4258	2012-12-20 18:33	2007-08-8	Show	GitHub Exploit DB Packet Storm

230917	5	警告	ynp	-	YNP Portal System の showpage.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-4256	2012-12-20 18:33	2007-08-8	Show	GitHub Exploit DB Packet Storm

230918	4.3	警告	toolbar gaming	-	Internet Explorer 用の Toolbar Gaming ツールバーにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4248	2012-12-20 18:33	2007-08-8	Show	GitHub Exploit DB Packet Storm

230919	9.3	危険	vietphp	-	VietPHP における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-4235	2012-12-20 18:33	2007-08-8	Show	GitHub Exploit DB Packet Storm

230920	4.3	警告	PHPNUKE	-	PHP-Nuke の Search モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4212	2012-12-20 18:33	2007-08-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212921	6.5	MEDIUM Adjacent	linux	linux_kernel	Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.	CWE-909 Missing Initialization of Resource	CVE-2020-12352	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

212922	8.8	HIGH Adjacent	linux	linux_kernel	Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.	CWE-20 Improper Input Validation	CVE-2020-12351	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

212923	7.3	HIGH Local	beckhoff	twincat_extended_automation_runtime	The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions whic…	CWE-276 Incorrect Default Permissions	CVE-2020-12510	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

212924	6.5	MEDIUM Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to exposure of sensitive info…	CWE-200 Information Exposure	CVE-2020-12496	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

212925	8.8	HIGH Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-based user interface w…	CWE-269 Improper Privilege Management	CVE-2020-12495	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

212926	7.5	HIGH Network	symantec	endpoint_detection_and_response	Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.	NVD-CWE-noinfo	CVE-2020-12593	2024-11-21 13:59	2020-11-19	Show	GitHub Exploit DB Packet Storm

212927	9.8	CRITICAL Network	intel	open_webrtc_toolkit	Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access.	NVD-CWE-Other	CVE-2020-12338	2024-11-21 13:59	2020-11-14	Show	GitHub Exploit DB Packet Storm

212928	8.8	HIGH Adjacent	intel	proset\/wireless_wifi	Insufficient control flow management in some Intel(R) PROSet/Wireless WiFi products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent …	NVD-CWE-noinfo	CVE-2020-12313	2024-11-21 13:59	2020-11-14	Show	GitHub Exploit DB Packet Storm

212929	6.5	MEDIUM Network	intel	data_center_manager	Improper permissions in the Intel(R) Data Center Manager Console before version 3.6.2 may allow an authenticated user to potentially enable denial of service via network access.	CWE-281 Improper Preservation of Permissions	CVE-2020-12353	2024-11-21 13:59	2020-11-13	Show	GitHub Exploit DB Packet Storm

212930	7.8	HIGH Local	intel	extreme_tuning_utility	Improper access control in the Intel(R) XTU before version 6.5.1.360 may allow an authenticated user to potentially enable escalation of privilege via local access.	NVD-CWE-noinfo	CVE-2020-12350	2024-11-21 13:59	2020-11-13	Show	GitHub Exploit DB Packet Storm