Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231301 7.5 危険 phpmyquote - phpMyQuote の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4835 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231302 7.5 危険 phprealty - phpRealty における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4834 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231303 2.6 注意 torrenttrader - TorrentTrader の account_settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4831 2012-12-20 18:33 2007-09-12 Show GitHub Exploit DB Packet Storm
231304 7.5 危険 sisfo kampus - Sisfo Kampus 2006 の blanko.preview.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4820 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231305 4.3 警告 txx cms - Txx CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4819 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231306 7.5 危険 txx cms - Txx CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4818 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231307 7.5 危険 tlm cms - TLM CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4808 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
231308 5 警告 ソフォス - Sophos Anti-Virus のウィルス検出エンジンにおけるマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4787 2012-12-20 18:33 2007-09-10 Show GitHub Exploit DB Packet Storm
231309 7.5 危険 tim jackson - PHPOF の dbmodules/DB_adodb.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4763 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
231310 7.5 危険 phpmytourney - phpMytourney の menu.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4757 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210461 6.1 MEDIUM
Network 		halo halo Cross Site Scripting (XSS) vulnerability in Halo 1.1.3 via post publish components in the manage panel, which lets a remote malicious user execute arbitrary code. CWE-79
Cross-site Scripting 		CVE-2020-21345 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210462 8.1 HIGH
Network 		fusionpbx fusionpbx Directory Traversal vulnerability in FusionPBX 4.5.7, which allows a remote malicious user to delete folders on the system via the folder variable to app/edit/folderdelete.php. CWE-22
Path Traversal 		CVE-2020-21057 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210463 4.3 MEDIUM
Network 		fusionpbx fusionpbx Directory Traversal vulnerability exists in FusionPBX 4.5.7, which allows a remote malicious user to create folders via the folder variale to app\edit\foldernew.php. CWE-22
Path Traversal 		CVE-2020-21056 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210464 6.5 MEDIUM
Network 		fusionpbx fusionpbx A Directory Traversal vulnerability exists in FusionPBX 4.5.7 allows malicoius users to rename any file of the system.via the (1) folder, (2) filename, and (3) newfilename variables in app\edit\filer… CWE-22
Path Traversal 		CVE-2020-21055 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210465 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in app\vars\vars_textarea.php. CWE-79
Cross-site Scripting 		CVE-2020-21054 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210466 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "query_string" variable in app\devices\devi… CWE-79
Cross-site Scripting 		CVE-2020-21053 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210467 9.8 CRITICAL
Network 		pluck-cms pluck In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploading files. CWE-77
Command Injection 		CVE-2020-20951 2024-11-21 14:12 2021-05-19 Show GitHub Exploit DB Packet Storm
210468 8.8 HIGH
Network 		gnu libredwg GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code (remote). The component is: read_2004_section_header ../../src/decode.c:2580. NVD-CWE-Other
CVE-2020-21844 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
210469 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318. CWE-787
 Out-of-bounds Write 		CVE-2020-21843 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
210470 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051. CWE-787
 Out-of-bounds Write 		CVE-2020-21842 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm