Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231171	4.3	警告	WordPress.org	-	WordPress 用の cordobo-green-park テーマの blogroll.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3241	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231172	4.3	警告	WordPress.org	-	WordPress 用の Vistered-Little テーマの 404.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3240	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231173	4.3	警告	WordPress.org	-	WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3239	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231174	6	警告	WordPress.org	-	WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3238	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231175	6.8	警告	XOOPS	-	XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3237	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

231176	7.5	危険	XOOPS	-	XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3236	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231177	5	警告	tec-it	-	TEC-IT TBarCode OCX ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	-	CVE-2007-3233	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231178	6.8	警告	simian systems inc	-	Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3230	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231179	6.8	警告	singapore	-	Singapore Gallery の index.php における重要な情報を取得される脆弱性	-	CVE-2007-3229	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231180	6.8	警告	simian systems inc	-	Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3228	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199721	9.8	CRITICAL Network	bftpd_project	bftpd	An issue was discovered in Bftpd before 5.4. There is a heap-based off-by-one error during file-transfer error checking.	CWE-193 Off-by-one Error	CVE-2020-6835	2024-11-21 14:36	2020-01-11	Show	GitHub Exploit DB Packet Storm

199722	6.1	MEDIUM Network	rasilient	pixelstor_5000_firmware	A cross-site scripting (XSS) vulnerability in Option/optionsAll.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows remote attackers to inject arbitrary web script or HTML via th…	CWE-79 Cross-site Scripting	CVE-2020-6758	2024-11-21 14:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

199723	8.8	HIGH Network	rasilient	pixelstor_5000_firmware	contentHostProperties.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows authenticated attackers to remotely execute code via the name parameter.	CWE-78 OS Command	CVE-2020-6757	2024-11-21 14:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

199724	9.8	CRITICAL Network	rasilient	pixelstor_5000_firmware	languageOptions.php in Rasilient PixelStor 5000 K:4.0.1580-20150629 (KDI Version) allows unauthenticated attackers to remotely execute code via the lang parameter.	CWE-78 OS Command	CVE-2020-6756	2024-11-21 14:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

199725	5.9	MEDIUM Network	gnome fedoraproject	glib fedora	GSocketClient in GNOME GLib through 2.62.4 may occasionally connect directly to a target address instead of connecting via a proxy server when configured to do so, because the proxy_addr field is mis…	NVD-CWE-noinfo	CVE-2020-6750	2024-11-21 14:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

199726	6.1	MEDIUM Network	prestashop	prestashop	In PrestaShop 1.7.6.2, XSS can occur during addition or removal of a QuickAccess link. This is related to AdminQuickAccessesController.php, themes/default/template/header.tpl, and themes/new-theme/js…	CWE-79 Cross-site Scripting	CVE-2020-6632	2024-11-21 14:36	2020-01-9	Show	GitHub Exploit DB Packet Storm

199727	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_m2ts_stream_process_pmt() in media_tools/m2ts_mux.c.	CWE-476 NULL Pointer Dereference	CVE-2020-6631	2024-11-21 14:36	2020-01-9	Show	GitHub Exploit DB Packet Storm

199728	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0. There is a NULL pointer dereference in the function gf_isom_get_media_data_size() in isomedia/isom_read.c.	CWE-476 NULL Pointer Dereference	CVE-2020-6630	2024-11-21 14:36	2020-01-9	Show	GitHub Exploit DB Packet Storm

199729	6.5	MEDIUM Network	libming	libming	Ming (aka libming) 0.4.8 has z NULL pointer dereference in the function decompileGETURL2() in decompile.c.	CWE-476 NULL Pointer Dereference	CVE-2020-6629	2024-11-21 14:36	2020-01-9	Show	GitHub Exploit DB Packet Storm

199730	8.8	HIGH Network	libming	libming	Ming (aka libming) 0.4.8 has a heap-based buffer over-read in the function decompile_SWITCH() in decompile.c.	CWE-125 Out-of-bounds Read	CVE-2020-6628	2024-11-21 14:36	2020-01-9	Show	GitHub Exploit DB Packet Storm