Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231191 7.5 危険 phpmyquote - phpMyQuote の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4835 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231192 7.5 危険 phprealty - phpRealty における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4834 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231193 2.6 注意 torrenttrader - TorrentTrader の account_settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4831 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231194 7.5 危険 sisfo kampus - Sisfo Kampus 2006 の blanko.preview.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4820 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231195 4.3 警告 txx cms - Txx CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4819 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231196 7.5 危険 txx cms - Txx CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4818 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231197 7.5 危険 tlm cms - TLM CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4808 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231198 5 警告 ソフォス - Sophos Anti-Virus のウィルス検出エンジンにおけるマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4787 2012-12-20 18:33 2007-09-10 Show GitHub Exploit DB Packet Storm
231199 7.5 危険 tim jackson - PHPOF の dbmodules/DB_adodb.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4763 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
231200 7.5 危険 phpmytourney - phpMytourney の menu.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4757 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212801 6.5 MEDIUM
Network 		samba
redhat 		samba
enterprise_linux 		A flaw was found in samba's DNS server. An authenticated user could use this flaw to the RPC server to crash. This RPC server, which also serves protocols other than dnsserver, will be restarted afte… NVD-CWE-Other
CVE-2020-14383 2024-11-21 14:03 2020-12-2 Show GitHub Exploit DB Packet Storm
212802 8.1 HIGH
Network 		redhat keycloak It was found that Keycloak before version 12.0.0 would permit a user with only view-profile role to manage the resources in the new account console, allowing access and modification of data the user … CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2020-14389 2024-11-21 14:03 2020-11-17 Show GitHub Exploit DB Packet Storm
212803 7.5 HIGH
Network 		redhat keycloak A vulnerability was found in keycloak, where path traversal using URL-encoded path segments in the request is possible because the resources endpoint applies a transformation of the url path to the f… CWE-22
Path Traversal 		CVE-2020-14366 2024-11-21 14:03 2020-11-10 Show GitHub Exploit DB Packet Storm
212804 7.8 HIGH
Local 		foxitsoftware foxit_reader Foxit Reader before 10.0 allows Remote Command Execution via the app.opencPDFWebPage JavsScript API. An attacker can execute local files and bypass the security dialog. NVD-CWE-noinfo
CVE-2020-14425 2024-11-21 14:03 2020-11-3 Show GitHub Exploit DB Packet Storm
212805 5.5 MEDIUM
Local 		samba
opensuse
fedoraproject
debian 		samba
leap
fedora
debian_linux 		A null pointer dereference flaw was found in samba's Winbind service in versions before 4.11.15, before 4.12.9 and before 4.13.1. A local user could use this flaw to crash the winbind service causing… CWE-476
 NULL Pointer Dereference 		CVE-2020-14323 2024-11-21 14:03 2020-10-30 Show GitHub Exploit DB Packet Storm
212806 3.1 LOW
Network 		oracle retail_customer_management_and_segmentation_foundation Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications (component: Segment). Supported versions that are affected are 18.0 and 19.0. … NVD-CWE-noinfo
CVE-2020-14731 2024-11-21 14:03 2020-10-22 Show GitHub Exploit DB Packet Storm
212807 4.9 MEDIUM
Network 		oracle
netapp
fedoraproject 		mysql
oncommand_workflow_automation
snapcenter_server
oncommand_insight
active_iq_unified_manager
fedora 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easi… NVD-CWE-noinfo
CVE-2020-14672 2024-11-21 14:03 2020-10-22 Show GitHub Exploit DB Packet Storm
212808 6.6 MEDIUM
Network 		spice_project
redhat
canonical
debian
opensuse 		spice
enterprise_linux
ubuntu_linux
debian_linux
enterprise_linux_eus
leap
enterprise_linux_aus
openstack
enterprise_linux_tus
enterprise_linux_update_services_for_sap_solu… 		Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client (spice-gtk) and server are affe… CWE-120
Classic Buffer Overflow 		CVE-2020-14355 2024-11-21 14:03 2020-10-8 Show GitHub Exploit DB Packet Storm
212809 8.8 HIGH
Local 		dpdk
opensuse
canonical 		data_plane_development_kit
leap
ubuntu_linux 		A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copy_data function leads to a buffer overflow allowing an attacker in a virtual machine to wri… - CVE-2020-14374 2024-11-21 14:03 2020-10-1 Show GitHub Exploit DB Packet Storm
212810 3.3 LOW
Local 		dpdk
opensuse
canonical 		data_plane_development_kit
leap
ubuntu_linux 		An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could c… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2020-14378 2024-11-21 14:03 2020-10-1 Show GitHub Exploit DB Packet Storm