Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231321 7.5 危険 weblogicnet - Weblogicnet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4715 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231322 7.5 危険 yvora - Yvora の error_view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4714 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231323 4.3 警告 roi revolution - Urchin の urchin.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4713 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231324 4.3 警告 www.toms-seiten.at - Toms Gaestebuch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4711 2012-12-20 18:33 2007-09-5 Show GitHub Exploit DB Packet Storm
231325 7.5 危険 phpBB - phpBB 用の Links MOD における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4653 2012-12-20 18:33 2007-09-4 Show GitHub Exploit DB Packet Storm
231326 6.4 警告 xgb - xGB の xGB.php における不特定の変更を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4637 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231327 7.5 危険 phpbg - phpBG における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4636 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231328 5 警告 Yahoo! - Yahoo! Messenger におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
CWE-20
CVE-2007-4635 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231329 6.9 警告 qgit - QGit の dataloader.cpp における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-4631 2012-12-20 18:33 2007-08-31 Show GitHub Exploit DB Packet Storm
231330 4.3 警告 xigla - Absolute Poll Manager XE の xlaapmview.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4630 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210241 8.8 HIGH
Network 		ethz minetime MineTime through 1.8.5 allows arbitrary command execution via the notes field in a meeting. Could lead to RCE via meeting invite. CWE-74
Injection 		CVE-2020-24364 2024-11-21 14:14 2020-08-25 Show GitHub Exploit DB Packet Storm
210242 10.0 CRITICAL
Network 		gvectors wpdiscuz A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthenticated users to upload any type of file, including PHP files via th… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-24186 2024-11-21 14:14 2020-08-24 Show GitHub Exploit DB Packet Storm
210243 8.8 HIGH
Network 		verint s5120fd_firmware The management website of the Verint S5120FD Verint_FW_0_42 unit features a CGI endpoint ('ipfilter.cgi') that allows the user to manage network filtering on the unit. This endpoint is vulnerable to … CWE-78
OS Command  		CVE-2020-24057 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210244 7.5 HIGH
Network 		verint 5620ptz_firmware
4320_firmware
s5120fd_firmware 		A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_0_23, V4320_FW_0_31, and Verint S5120FD Verint_FW_0_42units. This could cause a confidentiality iss… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-24056 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210245 9.8 CRITICAL
Network 		verint 5620ptz_firmware
4320_firmware 		Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666… CWE-787
 Out-of-bounds Write 		CVE-2020-24055 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210246 9.8 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		The administration console of the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units features a 'statusbroadcast' command that can spawn a given process repeatedly at a certain time interval as 'root'. One… CWE-78
OS Command  		CVE-2020-24054 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210247 7.5 HIGH
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		Moog EXO Series EXVF5C-2 and EXVP7C2-3 units have a hardcoded credentials vulnerability. This could cause a confidentiality issue when using the FTP, Telnet, or SSH protocols. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-24053 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210248 9.1 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		Several XML External Entity (XXE) vulnerabilities in the Moog EXO Series EXVF5C-2 and EXVP7C2-3 units allow remote unauthenticated users to read arbitrary files via a crafted Document Type Definition… CWE-611
XXE 		CVE-2020-24052 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210249 9.8 CRITICAL
Network 		moog exvf5c-2_firmware
exvp7c2-3_firmware 		The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that th… CWE-306
Missing Authentication for Critical Function 		CVE-2020-24051 2024-11-21 14:14 2020-08-22 Show GitHub Exploit DB Packet Storm
210250 7.5 HIGH
Network 		hashicorp vault-ssh-helper HashiCorp vault-ssh-helper up to and including version 0.1.6 incorrectly accepted Vault-issued SSH OTPs for the subnet in which a host's network interface was located, rather than the specific IP add… CWE-20
 Improper Input Validation  		CVE-2020-24359 2024-11-21 14:14 2020-08-21 Show GitHub Exploit DB Packet Storm