Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231451	4.9	警告	レッドハット	-	lha の lharc.c におけるファイルを読み書きされる脆弱性	-	CVE-2007-2030	2012-12-20 18:19	2007-04-16	Show	GitHub Exploit DB Packet Storm

231452	7.5	危険	PhpWiki	-	PhpWiki の lib/plugin/UpLoad.php における二重拡張子を伴う任意の PHP ファイルを実行される脆弱性	-	CVE-2007-2025	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

231453	6.8	警告	PhpWiki	-	PhpWiki の lib/plugin/UpLoad.php における任意の PHP ファイルアップロードされる脆弱性	-	CVE-2007-2024	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

231454	7.2	危険	secustick	-	Secustick USB フラッシュドライブの USB20.dll における認証要件を回避される脆弱性	-	CVE-2007-2023	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

231455	7.5	危険	pineapple technologies	-	Pineapple Technologies Lore における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2021	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231456	7.5	危険	tomex	-	phpGalleryScript の init.gallery.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2019	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231457	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の mysql/phpinfo.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2016	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231458	6.8	警告	request it	-	Request It の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2015	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231459	6.8	警告	simpcms	-	SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2009	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231460	7.5	危険	pl-php	-	pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2008	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211271	8.2	HIGH Local	getcomposer	composer-setup	In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user ma…	-	CVE-2020-15145	2024-11-21 14:04	2020-08-15	Show	GitHub Exploit DB Packet Storm

211272	5.9	MEDIUM Physics	horndis_project	horndis	All versions of HoRNDIS are affected by an integer overflow in the RNDIS packet parsing routines. A malicious USB device can trigger disclosure of unrelated kernel memory to userspace applications on…	CWE-190 Integer Overflow or Wraparound	CVE-2020-15137	2024-11-21 14:04	2020-08-13	Show	GitHub Exploit DB Packet Storm

211273	6.1	MEDIUM Network	getsymphony	symphony	content/content.blueprintsevents.php in Symphony CMS 3.0.0 allows XSS via fields['name'] to appendSubheading.	CWE-79 Cross-site Scripting	CVE-2020-15071	2024-11-21 14:04	2020-08-12	Show	GitHub Exploit DB Packet Storm

211274	7.8	HIGH Local	evga winring0_project	precision_x1 winring0	The WinRing0.sys and WinRing0x64.sys drivers 1.2.0 in EVGA Precision X1 through 1.0.6 allow local users, including low integrity processes, to read and write to arbitrary memory locations. This allow…	NVD-CWE-noinfo	CVE-2020-14979	2024-11-21 14:04	2020-08-12	Show	GitHub Exploit DB Packet Storm

211275	6.1	MEDIUM Network	mybb	mybb	In MyBB before version 1.8.24, the custom MyCode (BBCode) for the visual editor doesn't escape input properly when rendering HTML, resulting in a DOM-based XSS vulnerability. The weakness can be expl…	CWE-79 Cross-site Scripting	CVE-2020-15139	2024-11-21 14:04	2020-08-11	Show	GitHub Exploit DB Packet Storm

211276	6.5	MEDIUM Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to denial-of-service the device via long input values.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-15065	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

211277	4.3	MEDIUM Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to conduct persistent XSS attacks by leveraging administrative privileges to set a crafted se…	CWE-79 Cross-site Scripting	CVE-2020-15064	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

211278	8.8	HIGH Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to bypass authentication via a web-administration request that lacks a password parameter.	CWE-287 Improper Authentication	CVE-2020-15063	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

211279	8.8	HIGH Adjacent	digitus	da-70254_firmware	DIGITUS DA-70254 4-Port Gigabit Network Hub 2.073.000.E0008 devices allow an attacker on the same network to elevate privileges because the administrative password can be discovered by sniffing unenc…	CWE-319 CWE-522 Cleartext Transmission of Sensitive Information Insufficiently Protected Credentials	CVE-2020-15062	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm

211280	6.5	MEDIUM Adjacent	lindy-international	42633_firmware	Lindy 42633 4-Port USB 2.0 Gigabit Network Server 2.078.000 devices allow an attacker on the same network to denial-of-service the device via long input values.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-15061	2024-11-21 14:04	2020-08-8	Show	GitHub Exploit DB Packet Storm