Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230971	10	危険	stbernard	-	St. Bernard Open File Manager の Open File Manager service におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6281	2012-12-20 18:34	2007-12-19	Show	GitHub Exploit DB Packet Storm

230972	9.3	危険	SonicWALL	-	SonicWALL GLobal VPN Client のコンフィギュレーションファイルにおけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2007-6273	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

230973	5	警告	xigla	-	Absolute News Manager.NET における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2007-6271	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

230974	4.3	警告	xigla	-	Absolute News Manager.NET におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6270	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

230975	7.5	危険	xigla	-	Absolute News Manager.NET の xlaabsolutenm.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6269	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

230976	5	警告	xigla	-	Absolute News Manager.NET の pages/default.aspx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6268	2012-12-20 18:34	2007-12-7	Show	GitHub Exploit DB Packet Storm

230977	6.8	警告	VideoLAN	-	VideoLAN VLC の axvlc.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2007-6262	2012-12-20 18:34	2007-11-30	Show	GitHub Exploit DB Packet Storm

230978	7.5	危険	snitz forums 2000	-	Snitz Forums 2000 の active.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6240	2012-12-20 18:34	2007-12-5	Show	GitHub Exploit DB Packet Storm

230979	5	警告	リアルネットワークス	-	RealNetworks RealPlayer の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6235	2012-12-20 18:34	2007-12-4	Show	GitHub Exploit DB Packet Storm

230980	7.5	危険	tellmatic	-	tellmatic における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6231	2012-12-20 18:34	2007-12-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209891	9.8	CRITICAL Network	victor_cms_project	victor_cms	SQL Injection vulnerability in victor cms 1.0 allows attackers to execute arbitrary commands via the post parameter to /post.php in a crafted GET request.	CWE-89 SQL Injection	CVE-2020-23966	2024-11-21 14:14	2023-05-8	Show	GitHub Exploit DB Packet Storm

209892	7.8	HIGH Local	mremoteng	mremoteng	An issue in mRemoteNG v1.76.20 allows attackers to escalate privileges via a crafted executable file. NOTE: third parties were unable to reproduce any scenario in which the claimed access of BUILTIN\…	CWE-269 Improper Privilege Management	CVE-2020-24307	2024-11-21 14:14	2023-02-2	Show	GitHub Exploit DB Packet Storm

209893	6.1	MEDIUM Network	github_readme_stats_project	github_readme_stats	Github Read Me Stats commit 3c7220e4f7144f6cb068fd433c774f6db47ccb95 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the function renderError.	CWE-79 Cross-site Scripting	CVE-2020-23986	2024-11-21 14:14	2022-01-6	Show	GitHub Exploit DB Packet Storm

209894	5.5	MEDIUM Local	ffmpeg	ffmpeg	FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity.	CWE-345 Insufficient Verification of Data Authenticity	CVE-2020-23906	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209895	5.5	MEDIUM Local	xiph	speex	A stack buffer overflow in speexenc.c of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file. NOTE: the vendor states "I cannot reproduce it" and it "is a demo progr…	CWE-787 Out-of-bounds Write	CVE-2020-23904	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209896	5.5	MEDIUM Local	xiph fedoraproject	speex fedora	A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.	CWE-369 Divide By Zero	CVE-2020-23903	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209897	5.5	MEDIUM Local	wildbit-soft	wildbit_viewer	A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file. Related to Data from Faulting Address may be used as a return value starting at Ed…	CWE-120 Classic Buffer Overflow	CVE-2020-23902	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209898	5.5	MEDIUM Local	wildbit-soft	wildbit_viewer	A User Mode Write AV in Editor+0x5d15 of WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file.	CWE-787 Out-of-bounds Write	CVE-2020-23901	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209899	5.5	MEDIUM Local	wildbit-soft	wildbit_viewer	A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file. Related to Data from Faulting Address controls Code Flow starting at Editor!TMetho…	CWE-120 Classic Buffer Overflow	CVE-2020-23900	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm

209900	5.5	MEDIUM Local	wildbit-soft	wildbit_viewer	A User Mode Write AV in Editor+0x5f91 of WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file.	CWE-787 Out-of-bounds Write	CVE-2020-23899	2024-11-21 14:14	2021-11-11	Show	GitHub Exploit DB Packet Storm