Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231151	7.8	危険	turbosoft	-	TurboFTP におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1075	2012-12-20 18:19	2007-02-22	Show	GitHub Exploit DB Packet Storm

231152	10	危険	トレンドマイクロ	-	Windows 用などの Trend Micro ServerProtect におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1070	2012-12-20 18:19	2007-02-15	Show	GitHub Exploit DB Packet Storm

231153	7.8	危険	VMware	-	VMware Workstation のメモリ管理におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1069	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

231154	6.8	警告	ultimate fun book	-	Ultimate Fun Book の function.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1059	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231155	7.2	危険	VMware	-	VMware Workstation における制限された操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-1056	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231156	4.3	警告	WordPress.org	-	WordPress 用の nonce AYS 機能におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1049	2012-12-20 18:19	2007-02-13	Show	GitHub Exploit DB Packet Storm

231157	7.5	危険	phpbb wordsearch	-	phpbb_wordsearch の admin_rebuild_search.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1048	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231158	5.8	警告	xpression news	-	X-News の news.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-1042	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231159	9.3	危険	sandh	-	S&H Computer Systems News Rover におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-1041	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231160	7.5	危険	xpression news	-	X-News の archives.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1040	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211191	6.5	MEDIUM Network	hcltechsw	onetest_performance	HCL OneTest Performance V9.5, V10.0, V10.1 contains an inadequate session timeout, which could allow an attacker time to guess and use a valid session ID.	CWE-613 Insufficient Session Expiration	CVE-2020-14247	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

211192	7.5	HIGH Network	hcltechsw	onetest_performance	HCL OneTest Performance V9.5, V10.0, V10.1 uses basic authentication which is relatively weak. An attacker could potentially decode the encoded credentials.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-14246	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

211193	9.8	CRITICAL Network	hcltechsw	onetest_performance	HCL OneTest UI V9.5, V10.0, and V10.1 does not perform authentication for functionality that either requires a provable user identity or consumes a significant amount of resources.	CWE-306 Missing Authentication for Critical Function	CVE-2020-14245	2024-11-21 14:02	2021-02-4	Show	GitHub Exploit DB Packet Storm

211194	7.5	HIGH Network	hcltech	digital_experience	HCL Digital Experience 9.5 containers include vulnerabilities that could expose sensitive data to unauthorized parties via crafted requests. These affect containers only. These do not affect traditio…	NVD-CWE-noinfo	CVE-2020-14255	2024-11-21 14:02	2021-02-3	Show	GitHub Exploit DB Packet Storm

211195	4.9	MEDIUM Network	hcltech	digital_experience	HCL Digital Experience 8.5, 9.0, and 9.5 exposes information about the server to unauthorized users.	NVD-CWE-noinfo	CVE-2020-14221	2024-11-21 14:02	2021-02-3	Show	GitHub Exploit DB Packet Storm

211196	4.3	MEDIUM Network	atlassian	crucible fisheye	Affected versions of Atlassian Fisheye and Crucible allow remote attackers to view a product's SEN via an Information Disclosure vulnerability in the x-asen response header from Atlassian Analytics. …	CWE-200 Information Exposure	CVE-2020-14192	2024-11-21 14:02	2021-02-2	Show	GitHub Exploit DB Packet Storm

211197	7.5	HIGH Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. The one-time password algorithm for the undocumented system account mofidev generates a predictable six-digit password.	CWE-330 Use of Insufficiently Random Values	CVE-2020-13860	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

211198	9.8	CRITICAL Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. A format error in /etc/shadow, coupled with a logic bug in the LuCI - OpenWrt Configuration Interface framework, allows the…	CWE-287 CWE-755 Improper Authentication Improper Handling of Exceptional Conditions	CVE-2020-13859	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

211199	9.8	CRITICAL Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They contain two undocumented administrator accounts. The sftp and mofidev accounts are defined in /etc/passw…	CWE-798 Use of Hard-coded Credentials	CVE-2020-13858	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm

211200	7.5	HIGH Network	mofinetwork	mofi4500-4gxelte_firmware	An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an unauthenticated poof.cgi HTTP GET request.	NVD-CWE-noinfo	CVE-2020-13857	2024-11-21 14:02	2021-02-1	Show	GitHub Exploit DB Packet Storm