Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231391 6.8 警告 Winamp - Nullsoft Winamp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6403 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
231392 5 警告 poldoc - PolDoc CMS の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6400 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
231393 7.5 危険 sh-news - SH-News の patch/comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6391 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
231394 4.3 警告 s9y - Serendipity 用の mycalendar プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-6390 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
231395 7.2 危険 トレンドマイクロ - Trend Micro AntiVirus などの PccScan.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6386 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
231396 6.8 警告 robocode - Robocode の Event Dispatch Thread における任意の Java コードを実行される脆弱性 CWE-DesignError
CVE-2007-6382 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
231397 6.5 警告 TYPO3 Association - TYPO3 用の indexed_search システムエクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6381 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
231398 5 警告 WordPress.org - WordPress 用の PictPress プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6369 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
231399 4.3 警告 sinecms - SineCMS の guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6367 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
231400 7.5 危険 sinecms - SineCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6366 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210291 7.0 HIGH
Local 		xen
fedoraproject
opensuse
debian 		xen
fedora
leap
debian_linux 		An issue was discovered in Xen through 4.14.x. There are evtchn_reset() race conditions. Uses of EVTCHNOP_reset (potentially by a guest on itself) or XEN_DOMCTL_soft_reset (by itself covered by XSA-7… CWE-119
CWE-362
Incorrect Access of Indexable Resource ('Range Error') 
Race Condition 		CVE-2020-25599 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
210292 5.5 MEDIUM
Local 		xen
fedoraproject
opensuse 		xen
fedora
leap 		An issue was discovered in Xen 4.14.x. There is a missing unlock in the XENMEM_acquire_resource error path. The RCU (Read, Copy, Update) mechanism is a synchronisation primitive. A buggy error path i… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2020-25598 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
210293 6.5 MEDIUM
Local 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.14.x. There is mishandling of the constraint that once-valid event channels may not turn invalid. Logic in the handling of event channel operations in Xen ass… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-25597 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
210294 5.5 MEDIUM
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.14.x. x86 PV guest kernels can experience denial of service via SYSENTER. The SYSENTER instruction leaves various state sanitization activities to software. O… CWE-74
Injection 		CVE-2020-25596 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
210295 7.8 HIGH
Local 		xen
fedoraproject
debian
opensuse 		xen
fedora
debian_linux
leap 		An issue was discovered in Xen through 4.14.x. The PCI passthrough code improperly uses register data. Code paths in Xen's MSI handling have been identified that act on unsanitized values read back f… CWE-269
 Improper Privilege Management 		CVE-2020-25595 2024-11-21 14:18 2020-09-24 Show GitHub Exploit DB Packet Storm
210296 6.1 MEDIUM
Network 		gon_project
debian
canonical 		gon
debian_linux
ubuntu_linux 		An issue was discovered in the gon gem before gon-6.4.0 for Ruby. MultiJson does not honor the escape_mode parameter to escape fields as an XSS protection mechanism. To mitigate, json_dumper.rb in go… CWE-79
Cross-site Scripting 		CVE-2020-25739 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm
210297 7.8 HIGH
Local 		pingidentity pingid_integration_for_windows_login PingID Integration for Windows Login before 2.4.2 allows local users to gain privileges by modifying CefSharp.BrowserSubprocess.exe. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-25826 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm
210298 7.5 HIGH
Network 		peg-markdown_project peg-markdown peg-markdown 0.4.14 has a NULL pointer dereference in process_raw_blocks in markdown_lib.c. NOTE: This vulnerability only affects products that are no longer supported by the maintainer CWE-476
 NULL Pointer Dereference 		CVE-2020-25821 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm
210299 7.8 HIGH
Local 		simple_library_management_system_project simple_library_management_system Sourcecodester Simple Library Management System 1.0 is affected by Insecure Permissions via Books > New Book , http://<site>/lms/index.php?page=books. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-25515 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm
210300 8.4 HIGH
Local 		simple_library_management_system_project simple_library_management_system Sourcecodester Simple Library Management System 1.0 is affected by Incorrect Access Control via the Login Panel, http://<site>/lms/admin.php. CWE-89
SQL Injection 		CVE-2020-25514 2024-11-21 14:18 2020-09-23 Show GitHub Exploit DB Packet Storm