Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230971	6.8	警告	virtual hosting control system	-	VHCS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3988	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230972	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	-	CVE-2007-3986	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230973	5	警告	securecomputing	-	SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3985	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230974	7.5	危険	zenturi	-	sasatl.dll の NixonMyPrograms クラスにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3984	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230975	7.5	危険	wsnlinks	-	WSN Links Basic Edition の index.php における SQL インジェクションの脆弱性	-	CVE-2007-3981	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230976	10	危険	rcms pro	-	RCMS Pro RGameScript Pro の page.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3980	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230977	6.8	警告	ufmod	-	uFMOD における脆弱性	-	CVE-2007-3965	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230978	9.3	危険	usebb	-	UseBB におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3963	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

230979	7.8	危険	TeamSpeak Systems GmbH	-	Windows 用の TeamSpeak WebServer におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3956	2012-12-20 18:33	2007-07-24	Show	GitHub Exploit DB Packet Storm

230980	6.4	警告	rsbac	-	RSBAC における認証の制御を回避される脆弱性	-	CVE-2007-3945	2012-12-20 18:33	2007-07-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210641	5.3	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has an unauthenticated zy_install_user API.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-15342	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210642	7.5	HIGH Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has an unauthenticated update_all_realm_license API.	CWE-522 Insufficiently Protected Credentials	CVE-2020-15341	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210643	7.5	HIGH Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded opt/axess/AXAssets/default_axess/axess/TR69/Handlers/turbolink/sshkeys/id_rsa SSH key.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-15340	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210644	6.1	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows live/CPEManager/AXCampaignManager/handle_campaign_script_link?script_name= XSS.	CWE-79 Cross-site Scripting	CVE-2020-15339	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210645	5.3	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a "Use of GET Request Method With Sensitive Query Strings" issue for /cnr requests.	CWE-862 Missing Authorization	CVE-2020-15338	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210646	5.3	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a "Use of GET Request Method With Sensitive Query Strings" issue for /registerCpe requests.	CWE-862 Missing Authorization	CVE-2020-15337	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210647	5.3	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows escape-sequence injection into the /var/log/axxmpp.log file.	NVD-CWE-Other	CVE-2020-15334	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210648	5.3	MEDIUM Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows attackers to discover accounts via MySQL "select * from Administrator_users" and "select * from Users_users" requests.	CWE-89 SQL Injection	CVE-2020-15333	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210649	9.8	CRITICAL Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has weak /opt/axess/etc/default/axess permissions.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-15332	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm

210650	9.8	CRITICAL Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has a hardcoded OAUTH_SECRET_KEY in /opt/axess/etc/default/axess.	CWE-311 Missing Encryption of Sensitive Data	CVE-2020-15331	2024-11-21 14:05	2022-09-29	Show	GitHub Exploit DB Packet Storm