Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231331 7.5 危険 university of minnesota - MapServer の maptemplate.c におけるバッファオーバーフローの脆弱性 - CVE-2007-4629 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231332 7.5 危険 phpns - phpns の shownews.php における SQL インジェクションの脆弱性 - CVE-2007-4628 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231333 5 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4626 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231334 4.3 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4625 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231335 7.5 危険 winterburns.co.uk - ePersonnel の protection.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4608 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231336 7.5 危険 phpnuke-clan - PHP-Nuke 用の VWar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4606 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231337 7.5 危険 VWar - VWar の convert/mvcw.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4605 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231338 5 警告 Canonical - tcp-wrappers のリグレッションエラーにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4601 2012-12-20 18:33 2007-08-29 Show GitHub Exploit DB Packet Storm
231339 4.6 警告 PTC Inc. - Mathsoft Mathcad および PTC Mathcad の "ワークシート保護" 機能における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4600 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231340 7.5 危険 turnkey web tools - TurnkeyWebTools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4597 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210461 6.1 MEDIUM
Network 		halo halo Cross Site Scripting (XSS) vulnerability in Halo 1.1.3 via post publish components in the manage panel, which lets a remote malicious user execute arbitrary code. CWE-79
Cross-site Scripting 		CVE-2020-21345 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210462 8.1 HIGH
Network 		fusionpbx fusionpbx Directory Traversal vulnerability in FusionPBX 4.5.7, which allows a remote malicious user to delete folders on the system via the folder variable to app/edit/folderdelete.php. CWE-22
Path Traversal 		CVE-2020-21057 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210463 4.3 MEDIUM
Network 		fusionpbx fusionpbx Directory Traversal vulnerability exists in FusionPBX 4.5.7, which allows a remote malicious user to create folders via the folder variale to app\edit\foldernew.php. CWE-22
Path Traversal 		CVE-2020-21056 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210464 6.5 MEDIUM
Network 		fusionpbx fusionpbx A Directory Traversal vulnerability exists in FusionPBX 4.5.7 allows malicoius users to rename any file of the system.via the (1) folder, (2) filename, and (3) newfilename variables in app\edit\filer… CWE-22
Path Traversal 		CVE-2020-21055 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210465 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scripting (XSS) vulnerability in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "f" variable in app\vars\vars_textarea.php. CWE-79
Cross-site Scripting 		CVE-2020-21054 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210466 6.1 MEDIUM
Network 		fusionpbx fusionpbx Cross Site Scriptiong (XSS) vulnerability exists in FusionPBX 4.5.7 allows remote malicious users to inject arbitrary web script or HTML via an unsanitized "query_string" variable in app\devices\devi… CWE-79
Cross-site Scripting 		CVE-2020-21053 2024-11-21 14:12 2021-05-21 Show GitHub Exploit DB Packet Storm
210467 9.8 CRITICAL
Network 		pluck-cms pluck In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploading files. CWE-77
Command Injection 		CVE-2020-20951 2024-11-21 14:12 2021-05-19 Show GitHub Exploit DB Packet Storm
210468 8.8 HIGH
Network 		gnu libredwg GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code (remote). The component is: read_2004_section_header ../../src/decode.c:2580. NVD-CWE-Other
CVE-2020-21844 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
210469 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318. CWE-787
 Out-of-bounds Write 		CVE-2020-21843 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm
210470 8.8 HIGH
Network 		gnu libredwg A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051. CWE-787
 Out-of-bounds Write 		CVE-2020-21842 2024-11-21 14:12 2021-05-18 Show GitHub Exploit DB Packet Storm