Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231291 4.3 警告 techexcel inc. - TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4882 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
231292 7.5 危険 psi-labs - psisns の profile/myprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4881 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
231293 5 警告 Simplenews Project - SimpNews における任意の .inc ファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4873 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
231294 5 警告 Simplenews Project - SimpleNews における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-4872 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
231295 6.8 警告 Quirm - SAXON の example.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4863 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
231296 4.3 警告 Quirm - SAXON の admin/menu.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4862 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
231297 5 警告 Quirm - SAXON における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-4861 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
231298 7.5 危険 webace - wls の start.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4846 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231299 7.5 危険 rwscripts.com - RW::Download の UPLOAD/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4845 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231300 4.3 警告 x-diesel - X-Diesel Unreal Commander におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4844 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210281 9.8 CRITICAL
Network 		mkcms_project mkcms MKCMS V6.2 has SQL injection via the /ucenter/repass.php name parameter. CWE-89
SQL Injection 		CVE-2020-22820 2024-11-21 14:13 2022-11-4 Show GitHub Exploit DB Packet Storm
210282 - - - Stored Cross-Site Scripting (XSS) vulnerability in Codoforum v4.9, allows attackers to execute arbitrary code and obtain sensitive information via crafted payload to Category name component. - CVE-2020-22540 2024-11-21 14:13 2024-04-16 Show GitHub Exploit DB Packet Storm
210283 - - - An arbitrary file upload vulnerability in the Add Category function of Codoforum v4.9 allows attackers to execute arbitrary code via uploading a crafted file. - CVE-2020-22539 2024-11-21 14:13 2024-04-16 Show GitHub Exploit DB Packet Storm
210284 9.8 CRITICAL
Network 		mybb mybb Installer RCE on settings file write in MyBB before 1.8.22. NVD-CWE-noinfo
CVE-2020-22612 2024-11-21 14:13 2023-09-2 Show GitHub Exploit DB Packet Storm
210285 5.5 MEDIUM
Local 		tukaani xz An issue discovered in XZ 5.2.5 allows attackers to cause a denial of service via decompression of a crafted file. NOTE: the vendor disputes the claims of "endless output" and "denial of service" bec… NVD-CWE-noinfo
CVE-2020-22916 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm
210286 6.5 MEDIUM
Network 		libraw libraw Buffer Overflow vulnerability in LibRaw::stretch() function in libraw\src\postprocessing\aspect_ratio.cpp. CWE-120
Classic Buffer Overflow 		CVE-2020-22628 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm
210287 7.5 HIGH
Network 		memcached memcached Memcached 1.6.0 before 1.6.3 allows remote attackers to cause a denial of service (daemon crash) via a crafted meta command. CWE-77
Command Injection 		CVE-2020-22570 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm
210288 6.5 MEDIUM
Network 		freeimage_project freeimage Buffer Overflow vulnerability in FreeImage_Load function in FreeImage Library 3.19.0(r1828) allows attackers to cuase a denial of service via crafted PFM file. CWE-120
Classic Buffer Overflow 		CVE-2020-22524 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm
210289 7.5 HIGH
Network 		libssh2 libssh2 An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access out of bounds memory. CWE-787
 Out-of-bounds Write 		CVE-2020-22218 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm
210290 5.9 MEDIUM
Network 		c-ares
debian 		c-ares
debian_linux 		Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c. CWE-125
Out-of-bounds Read 		CVE-2020-22217 2024-11-21 14:13 2023-08-23 Show GitHub Exploit DB Packet Storm