Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231341 5 警告 vincent hor - Calendarix の calendar.php における重要な情報を取得される脆弱性 - CVE-2007-3258 2012-12-20 18:19 2007-06-27 Show GitHub Exploit DB Packet Storm
231342 4 警告 xythos - XEDM などにおけるマルウェアを配布するドキュメントと任意の Content-Type HTTP ヘッダを関連づけられる脆弱性 - CVE-2007-3256 2012-12-20 18:19 2007-06-27 Show GitHub Exploit DB Packet Storm
231343 6.5 警告 xythos - XEDM におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-3255 2012-12-20 18:19 2007-06-27 Show GitHub Exploit DB Packet Storm
231344 3.5 注意 xythos - XEDM におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3254 2012-12-20 18:19 2007-06-27 Show GitHub Exploit DB Packet Storm
231345 7.8 危険 portalapp - PortalApp におけるデータベースをダウンロードされる脆弱性 - CVE-2007-3252 2012-12-20 18:19 2007-06-18 Show GitHub Exploit DB Packet Storm
231346 6.8 警告 VirtueMart - VirtueMart における SQL インジェクションの脆弱性 - CVE-2007-3247 2012-12-20 18:19 2007-06-18 Show GitHub Exploit DB Packet Storm
231347 7.5 危険 web-app.org
web-app.net		 - web-app.net WebAPP などの Menu Manager Mod における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3242 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231348 4.3 警告 WordPress.org - WordPress 用の cordobo-green-park テーマの blogroll.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3241 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231349 4.3 警告 WordPress.org - WordPress 用の Vistered-Little テーマの 404.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3240 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231350 4.3 警告 WordPress.org - WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3239 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210721 7.5 HIGH
Network 		microsoft windows_server_2008
windows_10
windows_server_2016
windows_rt_8.1
windows_server_2012
windows_server_2019
windows_8.1
windows_7 		<p>An information disclosure vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who succe… NVD-CWE-noinfo
CVE-2020-16896 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210722 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a tar… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-16895 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210723 7.7 HIGH
Network 		microsoft windows_server_2016
windows_10 		<p>A denial of service vulnerability exists when Windows Network Address Translation (NAT) on a host server fails to properly validate input from a privileged user on a guest operating system. An att… NVD-CWE-noinfo
CVE-2020-16894 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210724 7.8 HIGH
Local 		microsoft windows_10
windows_8.1
windows_server_2016
windows_rt_8.1
windows_server_2012
windows_server_2019 		<p>An elevation of privilege vulnerability exists in the way that the Windows kernel image handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with … NVD-CWE-noinfo
CVE-2020-16892 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210725 8.8 HIGH
Local 		microsoft windows_10
windows_server_2008
windows_server_2016
windows_server_2012
windows_server_2019
windows_8.1
windows_7 		<p>A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system. To exploit the vulnerabi… CWE-20
 Improper Input Validation  		CVE-2020-16891 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210726 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary cod… NVD-CWE-noinfo
CVE-2020-16890 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210727 5.5 MEDIUM
Local 		microsoft windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_rt_8.1
windows_server_2012
windows_server_2019
windows_7 		<p>An information disclosure vulnerability exists when the Windows KernelStream improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain informatio… NVD-CWE-noinfo
CVE-2020-16889 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210728 7.8 HIGH
Local 		microsoft windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2012
windows_server_2019 		<p>An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could exe… NVD-CWE-noinfo
CVE-2020-16887 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm
210729 6.1 MEDIUM
Network 		olimpoks olimpok OLIMPOKS under 3.3.39 allows Auth/Admin ErrorMessage XSS. Remote Attacker can use discovered vulnerability to inject malicious JavaScript payload to victim’s browsers in context of vulnerable applica… CWE-79
Cross-site Scripting 		CVE-2020-16270 2024-11-21 14:07 2020-10-16 Show GitHub Exploit DB Packet Storm
210730 5.3 MEDIUM
Local 		microsoft powershellget <p>A security feature bypass vulnerability exists in the PowerShellGet V2 module. An attacker who successfully exploited this vulnerability could bypass WDAC (Windows Defender Application Control) po… NVD-CWE-noinfo
CVE-2020-16886 2024-11-21 14:07 2020-10-17 Show GitHub Exploit DB Packet Storm