Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231031	4.3	警告	webmaster solutions	-	WmsCMS の 4print.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3137	2012-12-20 18:19	2007-06-8	Show	GitHub Exploit DB Packet Storm

231032	6.8	警告	w1l3d4	-	W1L3D4 WEBmarket の urunbak.asp における SQL インジェクションの脆弱性	-	CVE-2007-3133	2012-12-20 18:19	2007-06-8	Show	GitHub Exploit DB Packet Storm

231033	5	警告	シマンテック	-	Symantec Ghost Solution Suite におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3132	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

231034	4.3	警告	publicwarehouse	-	Light Blog の add_comment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3131	2012-12-20 18:19	2007-06-8	Show	GitHub Exploit DB Packet Storm

231035	2.6	注意	Utopia Software	-	Utopia News Pro の login.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3129	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231036	5	警告	The GIMP Team	-	Gimp におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3126	2012-12-20 18:19	2007-06-7	Show	GitHub Exploit DB Packet Storm

231037	7.5	危険	zapping	-	Zapping VBI Library の zvbi-ntsc-cc ツールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3121	2012-12-20 18:19	2007-06-7	Show	GitHub Exploit DB Packet Storm

231038	6.8	警告	The Cacti Group	-	Cacti におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3113	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

231039	7.8	危険	The Cacti Group	-	Cacti におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3112	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

231040	9	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における "認証システムを無効にされる" 脆弱性	-	CVE-2007-3095	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198751	9.8	CRITICAL Network	asciitable.js_project	asciitable.js	The package asciitable.js before 1.0.3 are vulnerable to Prototype Pollution via the main function.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7771	2024-11-21 14:37	2021-01-4	Show	GitHub Exploit DB Packet Storm

198752	9.8	CRITICAL Network	jiransecurity	spamsniper	Spamsniper 5.0 ~ 5.2.7 contain a stack-based buffer overflow vulnerability caused by improper boundary checks when parsing MAIL FROM command. It leads remote attacker to execute arbitrary code via cr…	CWE-787 Out-of-bounds Write	CVE-2020-7845	2024-11-21 14:37	2020-12-27	Show	GitHub Exploit DB Packet Storm

198753	8.8	HIGH Network	onstove	stove	A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. T…	CWE-20 Improper Input Validation	CVE-2020-7838	2024-11-21 14:37	2020-12-18	Show	GitHub Exploit DB Packet Storm

198754	9.8	CRITICAL Network	connection-tester_project	connection-tester	This affects the package connection-tester before 0.2.1. The injection point is located in line 15 in index.js. The following PoC demonstrates the vulnerability:	CWE-78 OS Command	CVE-2020-7781	2024-11-21 14:37	2020-12-17	Show	GitHub Exploit DB Packet Storm

198755	8.8	HIGH Network	polarisoffice	polaris_ml_report	An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strin…	CWE-787 Out-of-bounds Write	CVE-2020-7837	2024-11-21 14:37	2020-12-17	Show	GitHub Exploit DB Packet Storm

198756	7.5	HIGH Network	i18n_project	i18n	This affects the package i18n before 2.1.15. Vulnerability arises out of insufficient handling of erroneous language tags in src/i18n/Concrete/TextLocalizer.cs and src/i18n/LocalizedApplication.cs.	NVD-CWE-noinfo	CVE-2020-7791	2024-11-21 14:37	2020-12-12	Show	GitHub Exploit DB Packet Storm

198757	7.5	HIGH Network	ua-parser-js_project siemens	ua-parser-js sinec_ins	The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info).	NVD-CWE-Other	CVE-2020-7793	2024-11-21 14:37	2020-12-11	Show	GitHub Exploit DB Packet Storm

198758	7.5	HIGH Network	moutjs	mout	This affects all versions of package mout. The deepFillIn function can be used to 'fill missing properties recursively', while the deepMixIn 'mixes objects into the target object, recursively mixing …	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7792	2024-11-21 14:37	2020-12-11	Show	GitHub Exploit DB Packet Storm

198759	5.3	MEDIUM Network	spatie	browsershot	This affects the package spatie/browsershot from 0.0.0. By specifying a URL in the file:// protocol an attacker is able to include arbitrary files in the resultant PDF.	CWE-22 Path Traversal	CVE-2020-7790	2024-11-21 14:37	2020-12-11	Show	GitHub Exploit DB Packet Storm

198760	9.8	CRITICAL Network	ini_project debian	ini debian_linux	This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7788	2024-11-21 14:37	2020-12-11	Show	GitHub Exploit DB Packet Storm