Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231001	6.8	警告	simian systems inc	-	Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3230	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231002	6.8	警告	singapore	-	Singapore Gallery の index.php における重要な情報を取得される脆弱性	-	CVE-2007-3229	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231003	6.8	警告	simian systems inc	-	Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3228	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231004	4.3	警告	Ruby on Rails project	-	Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3227	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231005	6.4	警告	サン・マイクロシステムズ	-	slapd における特定のデータを変更される脆弱性	-	CVE-2007-3225	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

231006	5	警告	サン・マイクロシステムズ	-	slapd におけるエントリの属性の存在を特定される脆弱性	-	CVE-2007-3224	2012-12-20 18:19	2007-06-13	Show	GitHub Exploit DB Packet Storm

231007	7.5	危険	XOOPS	-	XOOPS 用の XFsection モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3222	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231008	6.8	警告	XOOPS	-	XOOPS 用の XT-Conteudo モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3221	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231009	6.8	警告	XOOPS	-	XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3220	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231010	7.5	危険	prototype of an php application	-	PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3217	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212401	6.1	MEDIUM Network	teradici	cloud_access_connector_legacy cloud_access_connector	The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 24, 2020 (v16 and earlier for the Cloud Access Connector) contains a stor…	CWE-79 Cross-site Scripting	CVE-2020-13176	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

212402	7.5	HIGH Network	teradici	cloud_access_connector_legacy cloud_access_connector	The Management Interface of the Teradici Cloud Access Connector and Cloud Access Connector Legacy for releases prior to April 20, 2020 (v15 and earlier for Cloud Access Connector) contains a local fi…	CWE-829 Inclusion of Functionality from Untrusted Control Sphere	CVE-2020-13175	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

212403	6.1	MEDIUM Network	teradici	pcoip_management_console	The web server in the Teradici Managament console versions 20.04 and 20.01.1 did not properly set the X-Frame-Options HTTP header, which could allow an attacker to trick a user into clicking a malici…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-13174	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

212404	8.8	HIGH Network	sabnzbd	sabnzbd	SABnzbd 2.3.9 and 3.0.0Alpha2 has a command injection vulnerability in the web configuration interface that permits an authenticated user to execute arbitrary Python commands on the underlying operat…	CWE-78 OS Command	CVE-2020-13124	2024-11-21 14:00	2020-08-12	Show	GitHub Exploit DB Packet Storm

212405	8.8	HIGH Network	gitlab	runner	For GitLab Runner before 13.0.12, 13.1.6, 13.2.3, by replacing dockerd with a malicious server, the Shared Runner is susceptible to SSRF.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-13295	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm

212406	5.4	MEDIUM Network	gitlab	gitlab	In GitLab before 13.0.12, 13.1.6 and 13.2.3, access grants were not revoked when a user revoked access to an application.	NVD-CWE-noinfo	CVE-2020-13294	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm

212407	7.1	HIGH Network	gitlab	gitlab	In GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.	NVD-CWE-noinfo	CVE-2020-13293	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm

212408	9.6	CRITICAL Network	gitlab	gitlab	In GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is required for OAuth Flow.	CWE-287 Improper Authentication	CVE-2020-13292	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm

212409	8.8	HIGH Network	combodo	itop	Combodo iTop contains a cross-site request forgery (CSRF) vulnerability, attackers can execute specific commands via malicious site request forgery.	CWE-352 Origin Validation Error	CVE-2020-12781	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm

212410	7.5	HIGH Network	combodo	itop	A security misconfiguration exists in Combodo iTop, which can expose sensitive information.	CWE-863 Incorrect Authorization	CVE-2020-12780	2024-11-21 14:00	2020-08-10	Show	GitHub Exploit DB Packet Storm