Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231481	7.5	危険	phpBB	-	phpBB 用の Mutant ポータルの mutant_functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1961	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231482	7.5	危険	XOOPS	-	XOOPS 用の Rha7 Downloads モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1960	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231483	10	危険	tinymux	-	TinyMUX の command.cpp における脆弱性	-	CVE-2007-1959	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231484	5	警告	tinymux	-	TinyMUX におけるバッファオーバーフローの脆弱性	-	CVE-2007-1958	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

231485	7.5	危険	UBB Systems	-	Groupee UBB.threads の ubbthreads.php における SQL インジェクションの脆弱性	-	CVE-2007-1956	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

231486	10	危険	signkorea	-	SignKorea SKCrypAX ActiveX コントロールモジュールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1955	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

231487	4.3	警告	webblizzard	-	WebBlizzard CMS の index_cms.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1950	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

231488	7.5	危険	webblizzard	-	WebBlizzard CMS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-1949	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

231489	6.8	警告	scar4u.de	-	ScarAdControl の scaradcontrol.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1936	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

231490	6.8	警告	scar4u.de	-	ScarAdControl の admin/index.php における任意の PHP コードを実行される脆弱性	-	CVE-2007-1935	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211341	7.5	HIGH Network	connectwise	connectwise_automate	A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate serv…	CWE-89 SQL Injection	CVE-2020-15008	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211342	4.4	MEDIUM Local	npmjs opensuse fedoraproject	npm leap fedora	Versions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like "<protocol>://[<user>[:<password>]@]<hostname>[:<port>][:…	-	CVE-2020-15095	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211343	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Map.php hde parameter.	CWE-79 Cross-site Scripting	CVE-2020-15035	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211344	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Setup.php tet parameter.	CWE-79 Cross-site Scripting	CVE-2020-15034	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211345	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the snmpget.php ip parameter.	CWE-79 Cross-site Scripting	CVE-2020-15033	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211346	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Incidents.php id parameter.	CWE-79 Cross-site Scripting	CVE-2020-15032	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211347	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php chg parameter.	CWE-79 Cross-site Scripting	CVE-2020-15031	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211348	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Routes.php rtr parameter.	CWE-79 Cross-site Scripting	CVE-2020-15030	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211349	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter.	CWE-79 Cross-site Scripting	CVE-2020-15029	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm

211350	5.4	MEDIUM Network	nedi	nedi	NeDi 1.9C is vulnerable to a cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Map.php xo parameter.	CWE-79 Cross-site Scripting	CVE-2020-15028	2024-11-21 14:04	2020-07-8	Show	GitHub Exploit DB Packet Storm