Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231001 6.8 警告 simian systems inc - Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3230 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231002 6.8 警告 singapore - Singapore Gallery の index.php における重要な情報を取得される脆弱性 - CVE-2007-3229 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231003 6.8 警告 simian systems inc - Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3228 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231004 4.3 警告 Ruby on Rails project - Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3227 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231005 6.4 警告 サン・マイクロシステムズ - slapd における特定のデータを変更される脆弱性 - CVE-2007-3225 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
231006 5 警告 サン・マイクロシステムズ - slapd におけるエントリの属性の存在を特定される脆弱性 - CVE-2007-3224 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
231007 7.5 危険 XOOPS - XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3222 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231008 6.8 警告 XOOPS - XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3221 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231009 6.8 警告 XOOPS - XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3220 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231010 7.5 危険 prototype of an php application - PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3217 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212381 8.8 HIGH
Network 		seczetta neprofile A Host header injection vulnerability has been discovered in SecZetta NEProfile 3.3.11. Authenticated remote adversaries can poison this header resulting in an adversary controlling the execution flo… CWE-74
Injection 		CVE-2020-12855 2024-11-21 14:00 2020-08-27 Show GitHub Exploit DB Packet Storm
212382 7.5 HIGH
Network 		oasis-open oasis_digital_signature_services In OASIS Digital Signature Services (DSS) 1.0, an attacker can control the validation outcome (i.e., trigger either a valid or invalid outcome for a valid or invalid signature) via a crafted XML sign… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-13101 2024-11-21 14:00 2020-08-24 Show GitHub Exploit DB Packet Storm
212383 6.1 MEDIUM
Network 		zulip zulip_server Zulip Server before 2.1.5 allows reflected XSS via the Dropbox webhook. CWE-79
Cross-site Scripting 		CVE-2020-12759 2024-11-21 14:00 2020-08-21 Show GitHub Exploit DB Packet Storm
212384 6.1 MEDIUM
Network 		teradici pcoip_management_console Reflected Cross Site Scripting in Teradici PCoIP Management Console prior to 20.07 could allow an attacker to take over the user's active session if the user is exposed to a malicious payload. CWE-79
Cross-site Scripting 		CVE-2020-13183 2024-11-21 14:00 2020-08-18 Show GitHub Exploit DB Packet Storm
212385 8.8 HIGH
Network 		noviflow noviware The novish command-line interface, included in NoviFlow NoviWare before NW500.2.12 and deployed on NoviSwitch devices, is vulnerable to command injection in the "show status destination ipaddr" comma… CWE-78
OS Command  		CVE-2020-13122 2024-11-21 14:00 2020-08-18 Show GitHub Exploit DB Packet Storm
212386 4.3 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 user controlled git configuration settings can be modified to result in Server Side Request Forgery. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-13286 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm
212387 6.5 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-13281 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm
212388 5.4 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip. CWE-79
Cross-site Scripting 		CVE-2020-13285 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm
212389 5.4 MEDIUM
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title. CWE-79
Cross-site Scripting 		CVE-2020-13283 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm
212390 3.5 LOW
Network 		gitlab gitlab For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access. CWE-281
 Improper Preservation of Permissions 		CVE-2020-13282 2024-11-21 14:00 2020-08-13 Show GitHub Exploit DB Packet Storm