Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231061 7.5 危険 universal ircd - ircu における分割時にチャンネルをコントロールされる脆弱性 - CVE-2007-4406 2012-12-20 18:33 2007-08-18 Show GitHub Exploit DB Packet Storm
231062 7.8 危険 universal ircd - ircu におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4405 2012-12-20 18:33 2007-08-18 Show GitHub Exploit DB Packet Storm
231063 7.8 危険 universal ircd - ircu におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4404 2012-12-20 18:33 2007-08-18 Show GitHub Exploit DB Packet Storm
231064 2.1 注意 SUSE - SUSE Linux 上で稼動する findutils-locate パッケージが作成した "コアクリーン" cron ジョブにおける任意のファイルを削除される脆弱性 - CVE-2007-4394 2012-12-20 18:33 2007-08-10 Show GitHub Exploit DB Packet Storm
231065 4.6 警告 SUSE - SUSE Linux 上で稼動する orarun 用のインストールスクリプトにおける未加工のディスクパーティションを読み書きされる脆弱性 - CVE-2007-4393 2012-12-20 18:33 2007-08-10 Show GitHub Exploit DB Packet Storm
231066 6.8 警告 stephane pineau - Stephane Pineau VOTE の depouilg.php3 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4384 2012-12-20 18:33 2007-08-17 Show GitHub Exploit DB Packet Storm
231067 7.2 危険 シマンテック - Symantec Altiris Deployment Solution の Aclient におけるローカルのシステム権限を取得される脆弱性 - CVE-2007-4380 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
231068 4.3 警告 rndlabs - Babo Violent におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4379 2012-12-20 18:33 2007-08-16 Show GitHub Exploit DB Packet Storm
231069 6.8 警告 rndlabs - Babo Violent におけるフォーマットストリングの脆弱性 - CVE-2007-4378 2012-12-20 18:33 2007-08-16 Show GitHub Exploit DB Packet Storm
231070 6.8 警告 szymon kosok - Szymon Kosok Best Top List の banner-upload.php における banners/ 配下の任意の PHP ファイルを実行される脆弱性 - CVE-2007-4376 2012-12-20 18:33 2007-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213181 9.8 CRITICAL
Network 		codologic codoforum A SQL Injection vulnerability in get_topic_info() in sys/CODOF/Forum/Topic.php in Codoforum before 4.9 allows remote attackers (pre-authentication) to bypass the admin page via a leaked password-rese… CWE-89
SQL Injection 		CVE-2020-13873 2024-11-21 14:02 2021-05-12 Show GitHub Exploit DB Packet Storm
213182 6.3 MEDIUM
Network 		proofpoint enterprise_protection Proofpoint Enterprise Protection (PPS/PoD) before 8.16.4 contains a vulnerability that could allow an attacker to deliver an email message with a malicious attachment that bypasses scanning and file-… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2020-14009 2024-11-21 14:02 2021-05-7 Show GitHub Exploit DB Packet Storm
213183 5.5 MEDIUM
Local 		mi miui The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15. NVD-CWE-noinfo
CVE-2020-14105 2024-11-21 14:02 2021-04-21 Show GitHub Exploit DB Packet Storm
213184 5.5 MEDIUM
Local 		mi miui The application in the mobile phone can unauthorized access to the list of running processes in the mobile phone, Xiaomi Mobile Phone MIUI < 2021.01.26. CWE-863
 Incorrect Authorization 		CVE-2020-14106 2024-11-21 14:02 2021-04-9 Show GitHub Exploit DB Packet Storm
213185 5.5 MEDIUM
Local 		mi miui The application in the mobile phone can read the SNO information of the device, Xiaomi 10 MIUI < 2020.01.15. NVD-CWE-noinfo
CVE-2020-14103 2024-11-21 14:02 2021-04-9 Show GitHub Exploit DB Packet Storm
213186 8.1 HIGH
Network 		mi ax3600_firmware A RACE CONDITION on XQBACKUP causes a decompression path error on Xiaomi router AX3600 with ROM version =1.0.50. CWE-362
Race Condition 		CVE-2020-14104 2024-11-21 14:02 2021-04-9 Show GitHub Exploit DB Packet Storm
213187 7.5 HIGH
Network 		mi ax1800_firmware
rm1800_firmware 		On Xiaomi router AX1800 rom version < 1.0.336 and RM1800 root version < 1.0.26, the encryption scheme for a user's backup files uses hard-coded keys, which can expose sensitive information such as a … CWE-798
 Use of Hard-coded Credentials 		CVE-2020-14099 2024-11-21 14:02 2021-04-9 Show GitHub Exploit DB Packet Storm
213188 9.8 CRITICAL
Network 		soplanning soplanning SOPlanning before 1.47 has Incorrect Access Control because certain secret key information, and the related authentication algorithm, is public. The key for admin is hardcoded in the installation cod… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-13963 2024-11-21 14:02 2021-03-22 Show GitHub Exploit DB Packet Storm
213189 7.5 HIGH
Network 		apache ambari In Apache Ambari versions 2.6.2.2 and earlier, malicious users can construct file names for directory traversal and traverse to other directories to download files. CWE-22
Path Traversal 		CVE-2020-13924 2024-11-21 14:02 2021-03-17 Show GitHub Exploit DB Packet Storm
213190 6.1 MEDIUM
Network 		apache
debian 		velocity_tools
debian_linux 		The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in… CWE-79
Cross-site Scripting 		CVE-2020-13959 2024-11-21 14:02 2021-03-10 Show GitHub Exploit DB Packet Storm