Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231401 7.8 危険 sendcard - Sendcard の sendcard.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3082 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
231402 7.8 危険 zenturi - Zenturi ProgramChecker の sasatl.dll における任意のファイルをダウンロードされる脆弱性 - CVE-2007-3076 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
231403 7.5 危険 phpreactor - Reactor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3066 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231404 5 警告 sendcard - SendCard における重要な情報を取得される脆弱性 - CVE-2007-3059 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231405 6.8 警告 XOOPS - XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3057 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231406 4.3 警告 WebSVN - WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3056 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231407 7.5 危険 postnuke software foundation - PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-3052 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231408 7.5 危険 revokesoft - RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性 - CVE-2007-3051 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231409 10 危険 Vonage - Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性 - CVE-2007-3047 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
231410 4.3 警告 シマンテック - Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性 - CVE-2007-3022 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199601 9.8 CRITICAL
Network 		safe-object2_project safe-object2 All versions of package safe-object2 are vulnerable to Prototype Pollution via the setter function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7726 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199602 9.8 CRITICAL
Network 		guidesmiths worksmith All versions of package worksmith are vulnerable to Prototype Pollution via the setValue function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7725 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199603 9.8 CRITICAL
Network 		tiny-conf_project tiny-conf All versions of package tiny-conf are vulnerable to Prototype Pollution via the set function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7724 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199604 9.8 CRITICAL
Network 		yola promisehelpers All versions of package promisehelpers are vulnerable to Prototype Pollution via the insert function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7723 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199605 9.8 CRITICAL
Network 		nodee-utils_project nodee-utils All versions of package nodee-utils are vulnerable to Prototype Pollution via the deepSet function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7722 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199606 9.8 CRITICAL
Network 		node-oojs_project node-oojs All versions of package node-oojs are vulnerable to Prototype Pollution via the setPath function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7721 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199607 7.3 HIGH
Network 		digitalbazaar forge The package node-forge before 0.10.0 is vulnerable to Prototype Pollution via the util.setPath function. Note: Version 0.10.0 is a breaking change removing the vulnerable functions. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7720 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199608 9.8 CRITICAL
Network 		locutus locutus Versions of package locutus before 2.0.12 are vulnerable to prototype Pollution via the php.strings.parse_str function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7719 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199609 9.8 CRITICAL
Network 		gammautils_project gammautils All versions of package gammautils are vulnerable to Prototype Pollution via the deepSet and deepMerge functions. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7718 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm
199610 9.8 CRITICAL
Network 		dot-notes_project dot-notes All versions of package dot-notes are vulnerable to Prototype Pollution via the create function. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-7717 2024-11-21 14:37 2020-09-1 Show GitHub Exploit DB Packet Storm