Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231001	6.8	警告	simian systems inc	-	Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3230	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231002	6.8	警告	singapore	-	Singapore Gallery の index.php における重要な情報を取得される脆弱性	-	CVE-2007-3229	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231003	6.8	警告	simian systems inc	-	Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3228	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231004	4.3	警告	Ruby on Rails project	-	Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3227	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231005	6.4	警告	サン・マイクロシステムズ	-	slapd における特定のデータを変更される脆弱性	-	CVE-2007-3225	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

231006	5	警告	サン・マイクロシステムズ	-	slapd におけるエントリの属性の存在を特定される脆弱性	-	CVE-2007-3224	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

231007	7.5	危険	XOOPS	-	XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3222	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231008	6.8	警告	XOOPS	-	XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3221	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231009	6.8	警告	XOOPS	-	XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3220	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231010	7.5	危険	prototype of an php application	-	PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3217	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197781	7.5	HIGH Network	envoyproxy	envoy	Envoy version 1.14.2, 1.13.2, 1.12.4 or earlier may exhaust file descriptors and/or memory when accepting too many connections.	CWE-400 Uncontrolled Resource Consumption	CVE-2020-8663	2024-11-21 14:39	2020-07-2	Show	GitHub Exploit DB Packet Storm

197782	6.5	MEDIUM Network	netapp	hci_h610s_firmware	The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers (BMC) are shipped with a documented default account and password that should be changed during the initial node setup. During up…	CWE-798 Use of Hard-coded Credentials	CVE-2020-8573	2024-11-21 14:39	2020-06-29	Show	GitHub Exploit DB Packet Storm

197783	7.2	HIGH Network	johnsoncontrols	exacqvision_web_service exacqvision_enterprise_manager	A vulnerability exists that could allow the execution of unauthorized code or operating system commands on systems running exacqVision Web Service versions 20.06.3.0 and prior and exacqVision Enterpr…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-9047	2024-11-21 14:39	2020-06-27	Show	GitHub Exploit DB Packet Storm

197784	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8933	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

197785	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8907	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

197786	7.8	HIGH Local	google opensuse	guest-oslogin leap	A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Usi…	CWE-276 Incorrect Default Permissions	CVE-2020-8903	2024-11-21 14:39	2020-06-22	Show	GitHub Exploit DB Packet Storm

197787	4.9	MEDIUM Network	isc opensuse netapp canonical	bind leap steelstore_cloud_integrated_storage ubuntu_linux	An attacker who is permitted to send zone data to a server via zone transfer can exploit this to intentionally trigger the assertion failure with a specially constructed zone, denying service to clie…	CWE-617 Reachable Assertion	CVE-2020-8618	2024-11-21 14:39	2020-06-18	Show	GitHub Exploit DB Packet Storm

197788	4.9	MEDIUM Network	isc fedoraproject opensuse debian canonical netapp	bind fedora leap debian_linux ubuntu_linux steelstore_cloud_integrated_storage	In ISC BIND9 versions BIND 9.11.14 -> 9.11.19, BIND 9.14.9 -> 9.14.12, BIND 9.16.0 -> 9.16.3, BIND Supported Preview Edition 9.11.14-S1 -> 9.11.19-S1: Unless a nameserver is providing authoritative s…	CWE-404 Improper Resource Shutdown or Release	CVE-2020-8619	2024-11-21 14:39	2020-06-18	Show	GitHub Exploit DB Packet Storm

197789	6.5	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite through 7.10.3 allows SSRF.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-8544	2024-11-21 14:39	2020-06-16	Show	GitHub Exploit DB Packet Storm

197790	7.5	HIGH Network	open-xchange	open-xchange_appsuite	OX App Suite through 7.10.3 has Improper Input Validation.	CWE-20 Improper Input Validation	CVE-2020-8543	2024-11-21 14:39	2020-06-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed