Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231211	4.3	警告	publicwarehouse	-	Light Blog の add_comment.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3131	2012-12-20 18:19	2007-06-8	Show	GitHub Exploit DB Packet Storm

231212	2.6	注意	Utopia Software	-	Utopia News Pro の login.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3129	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

231213	5	警告	The GIMP Team	-	Gimp におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3126	2012-12-20 18:19	2007-06-7	Show	GitHub Exploit DB Packet Storm

231214	7.5	危険	zapping	-	Zapping VBI Library の zvbi-ntsc-cc ツールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3121	2012-12-20 18:19	2007-06-7	Show	GitHub Exploit DB Packet Storm

231215	6.8	警告	The Cacti Group	-	Cacti におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3113	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

231216	7.8	危険	The Cacti Group	-	Cacti におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3112	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

231217	9	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における "認証システムを無効にされる" 脆弱性	-	CVE-2007-3095	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

231218	7.8	危険	rainbowsoft	-	Z-Blog におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-3083	2012-12-20 18:19	2007-06-6	Show	GitHub Exploit DB Packet Storm

231219	7.8	危険	sendcard	-	Sendcard の sendcard.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3082	2012-12-20 18:19	2007-06-6	Show	GitHub Exploit DB Packet Storm

231220	7.8	危険	zenturi	-	Zenturi ProgramChecker の sasatl.dll における任意のファイルをダウンロードされる脆弱性	-	CVE-2007-3076	2012-12-20 18:19	2007-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199021	9.8	CRITICAL Network	rapid7	metasploit	The Metasploit Framework module "post/osx/gather/enum_osx module" is affected by a relative path traversal vulnerability in the get_keychains method which can be exploited to write arbitrary files to…	CWE-22 Path Traversal	CVE-2020-7376	2024-11-21 14:37	2020-08-25	Show	GitHub Exploit DB Packet Storm

199022	8.1	HIGH Network	mintegral	mintegraladsdk	This affects the package MintegralAdSDK from 0.0.0. The SDK distributed by the company contains malicious functionality that tracks any URL opened by the app and reports it back to the company, along…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2020-7705	2024-11-21 14:37	2020-08-25	Show	GitHub Exploit DB Packet Storm

199023	8.8	HIGH Network	inogard	ebiz4u	A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via direct…	CWE-494 Download of Code Without Integrity Check	CVE-2020-7831	2024-11-21 14:37	2020-08-25	Show	GitHub Exploit DB Packet Storm

199024	7.5	HIGH Network	goxmldsig_project	goxmldsig	This affects all versions of package github.com/russellhaering/goxmldsig. There is a crash on nil-pointer dereference caused by sending malformed XML signatures.	CWE-476 NULL Pointer Dereference	CVE-2020-7711	2024-11-21 14:37	2020-08-23	Show	GitHub Exploit DB Packet Storm

199025	9.8	CRITICAL Network	safe-eval_project	safe-eval	This affects all versions of package safe-eval. It is possible for an attacker to run an arbitrary command on the host machine.	CWE-94 Code Injection	CVE-2020-7710	2024-11-21 14:37	2020-08-21	Show	GitHub Exploit DB Packet Storm

199026	6.9	MEDIUM Local	mcafee	total_protection	Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via man…	CWE-269 Improper Privilege Management	CVE-2020-7310	2024-11-21 14:37	2020-08-21	Show	GitHub Exploit DB Packet Storm

199027	9.8	CRITICAL Network	irrelon	\@irrelon\/path irrelon-path	The package irrelon-path before 4.7.0; the package @irrelon/path before 4.7.0 are vulnerable to Prototype Pollution via the set, unSet, pushVal and pullVal functions.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7708	2024-11-21 14:37	2020-08-19	Show	GitHub Exploit DB Packet Storm

199028	9.8	CRITICAL Network	property-expr_project	property-expr	The package property-expr before 2.0.3 are vulnerable to Prototype Pollution via the setter function.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7707	2024-11-21 14:37	2020-08-18	Show	GitHub Exploit DB Packet Storm

199029	9.8	CRITICAL Network	connie-lang_project	connie-lang	The package connie-lang before 0.1.1 are vulnerable to Prototype Pollution in the configuration language library used by connie.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7706	2024-11-21 14:37	2020-08-18	Show	GitHub Exploit DB Packet Storm

199030	9.8	CRITICAL Network	linux-cmdline_project	linux-cmdline	The package linux-cmdline before 1.0.1 are vulnerable to Prototype Pollution via the constructor.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2020-7704	2024-11-21 14:37	2020-08-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed