Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231351	4.3	警告	symantec veritas	-	Windows 用の Symantec Veritas Storage Foundation におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-4516	2012-12-20 18:33	2008-02-20	Show	GitHub Exploit DB Packet Storm

231352	4.3	警告	x-diesel	-	Unreal Commander における重要な情報 (メモリコンテンツ) を取得される脆弱性	CWE-noinfo 情報不足	CVE-2007-4547	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231353	5.8	警告	x-diesel	-	Unreal Commander におけるユーザに危険なファイルを上書きまたは作成させる脆弱性	CWE-DesignError	CVE-2007-4546	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231354	6.8	警告	x-diesel	-	Unreal Commander におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4545	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231355	4.3	警告	WordPress.org	-	WordPress MU の wp-newblog.php におけるクロスサイトスクリプティングの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-4544	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231356	4.3	警告	university of minnesota	-	MapServer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4542	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231357	6.8	警告	skulltag team	-	Huffman 解凍アルゴリズムにおけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-4537	2012-12-20 18:33	2007-08-27	Show	GitHub Exploit DB Packet Storm

231358	4.6	警告	torrenttrader	-	TorrentTrader における任意の PHP コードを実行される脆弱性	-	CVE-2007-4536	2012-12-20 18:33	2007-08-24	Show	GitHub Exploit DB Packet Storm

231359	4.3	警告	vavoom	-	Vavoom の str.cpp におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4535	2012-12-20 18:33	2007-08-24	Show	GitHub Exploit DB Packet Storm

231360	7.5	危険	vavoom	-	Vavoom の p_thinker.cpp におけるバッファオーバーフローの脆弱性	-	CVE-2007-4534	2012-12-20 18:33	2007-08-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212961	6.1	MEDIUM Network	ge	s2020_firmware s2024_firmware	The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS), which may allow an attacker to trick application users into performing critical application actions that include, …	-	CVE-2020-16242	2024-11-21 14:07	2020-09-26	Show	GitHub Exploit DB Packet Storm

212962	7.8	HIGH Local	pango	hotspot_shield	Improper directory permissions in the Hotspot Shield VPN client software for Windows 10.3.0 and earlier may allow an authorized user to potentially enable escalation of privilege via local access. Th…	CWE-59 CWE-732 Link Following Incorrect Permission Assignment for Critical Resource	CVE-2020-17365	2024-11-21 14:07	2020-09-25	Show	GitHub Exploit DB Packet Storm

212963	7.2	HIGH Network	ge	asset_performance_management_classic	GE Digital APM Classic, Versions 4.4 and prior. Salt is not used for hash calculation of passwords, making it possible to decrypt passwords. This design flaw, along with the IDOR vulnerability, puts …	NVD-CWE-Other	CVE-2020-16244	2024-11-21 14:07	2020-09-23	Show	GitHub Exploit DB Packet Storm

212964	5.3	MEDIUM Network	ge	asset_performance_management_classic	GE Digital APM Classic, Versions 4.4 and prior. An insecure direct object reference (IDOR) vulnerability allows user account data to be downloaded in JavaScript object notation (JSON) format by users…	-	CVE-2020-16240	2024-11-21 14:07	2020-09-23	Show	GitHub Exploit DB Packet Storm

212965	7.1	HIGH Local	philips	clinical_collaboration_platform	Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-16247	2024-11-21 14:07	2020-09-19	Show	GitHub Exploit DB Packet Storm

212966	4.2	MEDIUM Network	microsoft	edge	<p>A remote code execution vulnerability exists in the way that the IEToEdge Browser Helper Object (BHO) plugin on Internet Explorer handles objects in memory. The vulnerability could corrupt memory …	CWE-787 Out-of-bounds Write	CVE-2020-16884	2024-11-21 14:07	2020-09-12	Show	GitHub Exploit DB Packet Storm

212967	7.8	HIGH Local	microsoft	visual_studio_code	<p>A remote code execution vulnerability exists in Visual Studio Code when a user is tricked into opening a malicious 'package.json' file. An attacker who successfully exploited the vulnerability cou…	NVD-CWE-noinfo	CVE-2020-16881	2024-11-21 14:07	2020-09-12	Show	GitHub Exploit DB Packet Storm

212968	5.5	MEDIUM Local	microsoft	windows_server_2019 windows_10 windows_server_2016	<p>An information disclosure vulnerability exists when a Windows Projected Filesystem improperly handles file redirections. An attacker who successfully exploited this vulnerability could obtain info…	NVD-CWE-noinfo	CVE-2020-16879	2024-11-21 14:07	2020-09-12	Show	GitHub Exploit DB Packet Storm

212969	5.4	MEDIUM Network	microsoft	dynamics_365	<p>A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server. An authenticated at…	CWE-79 Cross-site Scripting	CVE-2020-16878	2024-11-21 14:07	2020-09-12	Show	GitHub Exploit DB Packet Storm

212970	8.4	HIGH Network	microsoft	exchange_server	<p>A remote code execution vulnerability exists in Microsoft Exchange server due to improper validation of cmdlet arguments.</p> <p>An attacker who successfully exploited the vulnerability could run …	CWE-74 CWE-269 Injection Improper Privilege Management	CVE-2020-16875	2024-11-21 14:07	2020-09-12	Show	GitHub Exploit DB Packet Storm