Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231301	9.3	危険	シマンテック	-	Symantec 製品の Decomposer コンポーネントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0447	2012-12-20 18:19	2007-07-11	Show	GitHub Exploit DB Packet Storm

231302	7.5	危険	t-com	-	T-Com Speedport 500V ルータにおける認証を回避され脆弱性	-	CVE-2007-0435	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

231303	5	警告	wzdftpd	-	WzdFTPD の hash.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0428	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

231304	6.8	警告	plain black	-	Plain Black WebGUI の Operation/User.pm におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0407	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

231305	6	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0399	2012-12-20 18:19	2007-01-22	Show	GitHub Exploit DB Packet Storm

231306	4.6	警告	サン・マイクロシステムズ	-	Sun Solaris における権限を取得される脆弱性	-	CVE-2007-0393	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

231307	6.8	警告	sabros.us	-	sabros.us の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0390	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

231308	7.5	危険	woltlab	-	wBB の search.php における SQL インジェクションの脆弱性	-	CVE-2007-0388	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

231309	10	危険	postnuke software foundation	-	PostNuke の rating セクションにおける脆弱性	-	CVE-2007-0386	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

231310	7.8	危険	postnuke software foundation	-	PostNuke の faq セクションにおける重要な情報を取得される脆弱性	-	CVE-2007-0385	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211861	6.5	MEDIUM Network	teradici	cloud_access_connector	An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID…	CWE-352 Origin Validation Error	CVE-2020-13186	2024-11-21 14:00	2021-02-12	Show	GitHub Exploit DB Packet Storm

211862	6.5	MEDIUM Network	teradici	cloud_access_connector	Certain web application pages in the authenticated section of the Teradici Cloud Access Connector prior to v18 were accessible without the need to specify authentication tokens, which allowed an atta…	CWE-287 Improper Authentication	CVE-2020-13185	2024-11-21 14:00	2021-02-12	Show	GitHub Exploit DB Packet Storm

211863	9.8	CRITICAL Network	wavlink	wn575a4_firmware wn579x3_firmware	Wavlink WN575A4 and WN579X3 devices through 2020-05-15 allow unauthenticated remote users to inject commands via the key parameter in a login request.	CWE-77 Command Injection	CVE-2020-13117	2024-11-21 14:00	2021-02-10	Show	GitHub Exploit DB Packet Storm

211864	4.8	MEDIUM Network	tufin	securechange	Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges (for storing the XSS payload itself), and can exploit (be trigg…	CWE-79 Cross-site Scripting	CVE-2020-13134	2024-11-21 14:00	2021-01-20	Show	GitHub Exploit DB Packet Storm

211865	6.1	MEDIUM Network	tufin	securechange	Tufin SecureChange prior to R19.3 HF3 and R20-1 HF1 are vulnerable to stored XSS. The successful exploitation requires admin privileges (for storing the XSS payload itself), and can exploit (be trigg…	CWE-79 Cross-site Scripting	CVE-2020-13133	2024-11-21 14:00	2021-01-20	Show	GitHub Exploit DB Packet Storm

211866	5.4	MEDIUM Network	carbonite	server_backup_portal	OpenText Carbonite Server Backup Portal before 8.8.7 allows XSS by an authenticated user via policy creation.	CWE-79 Cross-site Scripting	CVE-2020-13116	2024-11-21 14:00	2021-01-13	Show	GitHub Exploit DB Packet Storm

211867	9.8	CRITICAL Network	gssproxy_project debian	gssproxy debian_linux	gssproxy (aka gss-proxy) before 0.8.3 does not unlock cond_mutex before pthread exit in gp_worker_main() in gp_workers.c. NOTE: An upstream comment states "We are already on a shutdown path when runn…	CWE-667 Improper Locking	CVE-2020-12658	2024-11-21 14:00	2020-12-31	Show	GitHub Exploit DB Packet Storm

211868	7.8	HIGH Local	amd	vbios_flash_tool_software_development_kit	A potential vulnerability in a dynamically loaded AMD driver in AMD VBIOS Flash Tool SDK may allow any authenticated user to escalate privileges to NT authority system.	NVD-CWE-noinfo	CVE-2020-12927	2024-11-21 14:00	2020-11-13	Show	GitHub Exploit DB Packet Storm

211869	6.4	MEDIUM Physics	amd	trusted_platform_modules_reference	The Trusted Platform Modules (TPM) reference software may not properly track the number of times a failed shutdown happens. This can leave the TPM in a state where confidential key material in the TP…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2020-12926	2024-11-21 14:00	2020-11-13	Show	GitHub Exploit DB Packet Storm

211870	5.5	MEDIUM Local	amd	energy_driver_for_linux	A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks.…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-12912	2024-11-21 14:00	2020-11-13	Show	GitHub Exploit DB Packet Storm