Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231511	6.8	警告	sky gunning	-	Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1895	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

231512	4.3	警告	WordPress.org	-	WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1894	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

231513	4.9	警告	WordPress.org	-	WordPress の xmlrpc におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-1893	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

231514	7.8	危険	VMware	-	VMware Workstation におけるゲスト OS がサービス運用妨害 (DoS) 状態となる脆弱性	-	CVE-2007-1877	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

231515	7.2	危険	VMware	-	VMware Workstation における "仮想マシンに登録されたコンテキストが破損" する脆弱性	-	CVE-2007-1876	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

231516	4.3	警告	toenda software development	-	toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1872	2012-12-20 18:19	2007-04-13	Show	GitHub Exploit DB Packet Storm

231517	7.5	危険	webasyst llc	-	Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1855	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

231518	7.5	危険	really simple php and ajax	-	RSPA におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1851	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

231519	7.5	危険	XOOPS	-	XOOPS 用の Repository モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1847	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

231520	7.5	危険	XOOPS	-	Xoops 用の MyAds モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1846	2012-12-20 18:19	2007-04-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211531	6.7	MEDIUM Local	x.org fedoraproject canonical opensuse	libx11 fedora ubuntu_linux leap	An integer overflow leading to a heap-buffer overflow was found in The X Input Method (XIM) client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setu…	CWE-190 Integer Overflow or Wraparound	CVE-2020-14344	2024-11-21 14:03	2020-08-5	Show	GitHub Exploit DB Packet Storm

211532	5.9	MEDIUM Network	redhat	enmasse amq_online	It was found that the AMQ Online console is vulnerable to a Cross-Site Request Forgery (CSRF) which is exploitable in cases where preflight checks are not instigated or bypassed. For example authoris…	CWE-352 Origin Validation Error	CVE-2020-14319	2024-11-21 14:03	2020-08-4	Show	GitHub Exploit DB Packet Storm

211533	7.5	HIGH Network	inductiveautomation	ignition_gateway	The affected product is vulnerable to an information leak, which may allow an attacker to obtain sensitive information on the Ignition 8 (all versions prior to 8.0.13).	CWE-862 Missing Authorization	CVE-2020-14520	2024-11-21 14:03	2020-07-31	Show	GitHub Exploit DB Packet Storm

211534	5.8	MEDIUM Network	redhat	ansible_tower	A data exposure flaw was found in Tower, where sensitive data was revealed from the HTTP return error codes. This flaw allows an unauthenticated, remote attacker to retrieve pages from the default or…	CWE-209 Information Exposure Through an Error Message	CVE-2020-14337	2024-11-21 14:03	2020-07-31	Show	GitHub Exploit DB Packet Storm

211535	8.8	HIGH Local	redhat	satellite	A flaw was found in Red Hat Satellite 6 which allows privileged attacker to read cache files. These cache credentials could help attacker to gain complete control of the Satellite instance.	-	CVE-2020-14334	2024-11-21 14:03	2020-07-31	Show	GitHub Exploit DB Packet Storm

211536	8.8	HIGH Network	freemedsoftware	openclinic_ga	OpenClinic GA 5.09.02 and 5.89.05b does not properly verify uploaded files, which may allow a low-privilege user to upload and execute arbitrary files on the system.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-14488	2024-11-21 14:03	2020-07-29	Show	GitHub Exploit DB Packet Storm

211537	9.8	CRITICAL Network	freemedsoftware	openclinic_ga	OpenClinic GA 5.09.02 contains a hidden default user account that may be accessed if an administrator has not expressly turned off this account, which may allow an attacker to login and execute arbit…	NVD-CWE-Other	CVE-2020-14487	2024-11-21 14:03	2020-07-29	Show	GitHub Exploit DB Packet Storm

211538	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	An attacker may bypass permission/authorization checks in OpenClinic GA 5.09.02 and 5.89.05b by ignoring the redirect of a permission failure, which may allow unauthorized execution of commands.	CWE-863 Incorrect Authorization	CVE-2020-14486	2024-11-21 14:03	2020-07-29	Show	GitHub Exploit DB Packet Storm

211539	8.8	HIGH Network	openclinic_ga_project	openclinic_ga	A low-privilege user may use SQL syntax to write arbitrary files to the OpenClinic GA 5.09.02 and 5.89.05b server, which may allow the execution of arbitrary commands.	CWE-269 Improper Privilege Management	CVE-2020-14493	2024-11-21 14:03	2020-07-29	Show	GitHub Exploit DB Packet Storm

211540	6.1	MEDIUM Network	openclinic_ga_project	openclinic_ga	OpenClinic GA 5.09.02 and 5.89.05b does not properly neutralize user-controllable input, which may allow the execution of malicious code within the user’s browser.	CWE-79 Cross-site Scripting	CVE-2020-14492	2024-11-21 14:03	2020-07-29	Show	GitHub Exploit DB Packet Storm