Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231211 6.8 警告 sinecms - SineCms の mods/Core/result.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2357 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
231212 7.8 危険 Progress Software Corporation - Progress Webspeed Messenger における重要な情報を取得される脆弱性 - CVE-2007-2354 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
231213 7.5 危険 php-generics - PHP-Generics における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2346 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
231214 7.5 危険 phpbandmanager - phpBandManager の suite/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2341 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
231215 6.8 警告 phporacleview - phporacleview の inc/include_all.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2340 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
231216 7.5 危険 shop-script - Shop-Script の cart.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2331 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231217 7.5 危険 searchactivity - Searchactivity の searchbot.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2329 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231218 7.5 危険 phpmytgp - phpMYTGP の addvip.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2328 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231219 10 危険 SilverStripe - SilverStripe の検索機能における脆弱性 - CVE-2007-2321 2012-12-20 18:19 2007-04-17 Show GitHub Exploit DB Packet Storm
231220 7.5 危険 VWar - PHP-Nuke 用の VWar モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2312 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211231 5.3 MEDIUM
Local 		openenclave openenclave In openenclave before 0.10.0, enclaves that use x87 FPU operations are vulnerable to tampering by a malicious host application. By violating the Linux System V Application Binary Interface (ABI) for … NVD-CWE-noinfo
CVE-2020-15107 2024-11-21 14:04 2020-07-16 Show GitHub Exploit DB Packet Storm
211232 6.5 MEDIUM
Network 		symless
fedoraproject 		synergy
fedora 		In Synergy before version 1.12.0, a Synergy server can be crashed by receiving a kMsgHelloBack packet with a client name length set to 0xffffffff (4294967295) if the servers memory is less than 4 GB.… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-15117 2024-11-21 14:04 2020-07-16 Show GitHub Exploit DB Packet Storm
211233 3.3 LOW
Local 		schokokeks freewvs In freewvs before 0.1.1, a directory structure of more than 1000 nested directories can interrupt a freewvs scan due to Python's recursion limit and os.walk(). This can be problematic in a case where… CWE-674
 Uncontrolled Recursion 		CVE-2020-15101 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
211234 3.3 LOW
Local 		schokokeks freewvs In freewvs before 0.1.1, a user could create a large file that freewvs will try to read, which will terminate a scan process. This has been patched in 0.1.1. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-15100 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
211235 7.5 HIGH
Network 		openvpn openvpn_access_server OpenVPN Access Server older than version 2.8.4 and version 2.9.5 generates new user authentication tokens instead of reusing exiting tokens on reconnect making it possible to circumvent the initial t… CWE-613
 Insufficient Session Expiration 		CVE-2020-15074 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
211236 5.4 MEDIUM
Network 		envoyproxy envoy In Envoy before versions 1.12.6, 1.13.4, 1.14.4, and 1.15.0 when validating TLS certificates, Envoy would incorrectly allow a wildcard DNS Subject Alternative Name apply to multiple subdomains. For e… CWE-346
 Origin Validation Error 		CVE-2020-15104 2024-11-21 14:04 2020-07-15 Show GitHub Exploit DB Packet Storm
211237 7.5 HIGH
Network 		supremainc biostar_2 An issue was discovered in the Video Extension in Suprema BioStar 2 before 2.8.2. Remote attackers can read arbitrary files from the server via Directory Traversal. CWE-22
Path Traversal 		CVE-2020-15050 2024-11-21 14:04 2020-07-14 Show GitHub Exploit DB Packet Storm
211238 5.4 MEDIUM
Network 		django_two-factor_authentication_project django_two-factor_authentication Django Two-Factor Authentication before 1.12, stores the user's password in clear text in the user session (base64-encoded). The password is stored in the session when the user submits their username… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-15105 2024-11-21 14:04 2020-07-11 Show GitHub Exploit DB Packet Storm
211239 8.6 HIGH
Network 		amazon tough The tough library (Rust/crates.io) prior to version 0.7.1 does not properly verify the threshold of cryptographic signatures. It allows an attacker to duplicate a valid signature in order to circumve… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-15093 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm
211240 4.8 MEDIUM
Network 		northwestern timelinejs In TimelineJS before version 3.7.0, some user data renders as HTML. An attacker could implement an XSS exploit with maliciously crafted content in a number of data fields. This risk is present whethe… CWE-79
Cross-site Scripting 		CVE-2020-15092 2024-11-21 14:04 2020-07-10 Show GitHub Exploit DB Packet Storm