Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231441 4.3 警告 treble designs - 1024 CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5575 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231442 6.8 警告 phpdj - PHPDJ の djpage.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5574 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231443 4.3 警告 sphpblog - Simple PHP Blog におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5572 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231444 2.6 注意 simple php forum - NSSboard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5564 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231445 7.5 危険 VirtueMart - VirtueMart における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5563 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231446 6.9 警告 シマンテック - Symantec Altiris Deployment Solution における認証資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-5555 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
231447 9.3 危険 TIBCO Software - TIBCO SmartPGM FX におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5546 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231448 7.5 危険 TIBCO Software - TIBCO SmartPGM FX におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-5545 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231449 10 危険 runcms - RunCms の newbb_plus における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5535 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
231450 4.6 警告 sitebar - SiteBar の translator.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5492 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210391 7.5 HIGH
Network 		xuxueli xxl-job xxl-job 2.2.0 allows Information Disclosure of username, model, and password via job/admin/controller/UserController.java. NVD-CWE-noinfo
CVE-2020-23811 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
210392 5.5 MEDIUM
Local 		midnightbsd
freebsd 		midnightbsd
freebsd 		In MidnightBSD before 1.2.6 and 1.3 before August 2020, and FreeBSD before 7, a NULL pointer dereference was found in the Linux emulation layer that allows attackers to crash the running kernel. Duri… CWE-476
 NULL Pointer Dereference 		CVE-2020-24385 2024-11-21 14:14 2020-09-4 Show GitHub Exploit DB Packet Storm
210393 6.1 MEDIUM
Network 		golang
fedoraproject
opensuse
oracle 		go
fedora
leap
communications_cloud_native_core_policy 		Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. CWE-79
Cross-site Scripting 		CVE-2020-24553 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
210394 9.8 CRITICAL
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 has weak token expiration. This allows remote unauthenticated privilege escalation and access to sensitive data via token reuse. CWE-672
 Operation on a Resource after Expiration or Release 		CVE-2020-24030 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
210395 9.8 CRITICAL
Network 		forlogic qualiex Because of unauthenticated password changes in ForLogic Qualiex v1 and v3, customer and admin permissions and data can be accessed via a simple request. CWE-287
Improper Authentication 		CVE-2020-24029 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
210396 8.8 HIGH
Network 		forlogic qualiex ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via user creations, password changes, or user permission updates. NVD-CWE-noinfo
CVE-2020-24028 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
210397 7.1 HIGH
Network 		stock_management_system_project stock_management_system A Cross-Site Request Forgery (CSRF) vulnerability in changeUsername.php in SourceCodester Stock Management System v1.0 allows remote attackers to deny future logins by changing an authenticated victi… CWE-352
 Origin Validation Error 		CVE-2020-23830 2024-11-21 14:14 2020-09-3 Show GitHub Exploit DB Packet Storm
210398 9.8 CRITICAL
Network 		zyxel vmg5313-b30b_firmware Zyxel VMG5313-B30B router on firmware 5.13(ABCJ.6)b3_1127, and possibly older versions of firmware are affected by insecure permissions which allows regular and other users to create new users with e… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-24355 2024-11-21 14:14 2020-09-2 Show GitHub Exploit DB Packet Storm
210399 7.8 HIGH
Local 		trendmicro apex_one
officescan
worry-free_business_security
worry-free_business_security_services 		A vulnerability in Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services on macOS may allow an attacker to manipulate a certain binary to load and run … CWE-59
Link Following 		CVE-2020-24559 2024-11-21 14:14 2020-09-2 Show GitHub Exploit DB Packet Storm
210400 7.1 HIGH
Local 		trendmicro apex_one
worry-free_business_security
worry-free_business_security_services 		A vulnerability in an Trend Micro Apex One, Worry-Free Business Security 10.0 SP1 and Worry-Free Business Security Services dll may allow an attacker to manipulate it to cause an out-of-bounds read t… CWE-125
Out-of-bounds Read 		CVE-2020-24558 2024-11-21 14:14 2020-09-2 Show GitHub Exploit DB Packet Storm