Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231541 7.8 危険 サン・マイクロシステムズ - Sun Java System Directory Server および Sun ONE Directory Server で使用されている C 用の LDAP SDK におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2466 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
231542 7.8 危険 tony cook - Imager perl モジュールの BMP リーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2459 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
231543 7.5 危険 pixaria - Pixaria Gallery における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2458 2012-12-20 18:19 2007-04-15 Show GitHub Exploit DB Packet Storm
231544 7.5 危険 pixaria - Pixaria Gallery の resources/includes/class.Smarty.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2457 2012-12-20 18:19 2007-04-15 Show GitHub Exploit DB Packet Storm
231545 2.1 注意 CollabNet, Inc. - Subversion における重要な情報 (プロパティの改定) を取得される脆弱性 - CVE-2007-2448 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
231546 6.8 警告 tecnick.com - TCExam の shared/config/tce_config.php におけるクロスサイトスクリプティング攻撃 (XSS) を実行される脆弱性 - CVE-2007-2431 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
231547 7.8 危険 tecnick.com - TCExam の shared/code/tce_tmx.php における cache/ 配下の任意の PHP ファイルを作成される脆弱性 - CVE-2007-2430 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
231548 7.5 危険 pnflashgames - PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性 - CVE-2007-2427 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
231549 7.5 危険 wildbits - WordPress 用の myGallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2426 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
231550 7.5 危険 the merchant project - themerchant の help/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2424 2012-12-20 18:19 2007-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211391 4.8 MEDIUM
Network 		tp-link tl-wr740n_firmware
tl-wr740nd_firmware 		On TP-Link TL-WR740N v4 and TL-WR740ND v4 devices, an attacker with access to the admin panel can inject HTML code and change the HTML context of the target pages and stations in the access-control s… CWE-79
Cross-site Scripting 		CVE-2020-14965 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211392 9.8 CRITICAL
Network 		draytek vigor300b_firmware
vigor2960_firmware
vigor3900_firmware 		A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authu… CWE-787
 Out-of-bounds Write 		CVE-2020-14993 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211393 7.5 HIGH
Network 		herac tuxguitar An issue was discovered in io/gpx/GPXDocumentReader.java in TuxGuitar 1.5.4. It uses misconfigured XML parsers, leading to XXE while loading GP6 (.gpx) and GP7 (.gp) tablature files. CWE-611
XXE 		CVE-2020-14940 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211394 7.8 HIGH
Local 		freedroid freedroidrpg An issue was discovered in savestruct_internal.c in FreedroidRPG 1.0rc2. Saved game files are composed of Lua scripts that recover a game's state. A file can be modified to put any Lua code inside, l… CWE-20
 Improper Input Validation  		CVE-2020-14939 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211395 9.8 CRITICAL
Network 		freedroid freedroidrpg An issue was discovered in map.c in FreedroidRPG 1.0rc2. It assumes lengths of data sets read from saved game files. It copies data from a file into a fixed-size heap-allocated buffer without size ve… CWE-787
 Out-of-bounds Write 		CVE-2020-14938 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211396 4.3 MEDIUM
Network 		globalradar bsa_radar downloadFile.ashx in the Administrator section of the Surveillance module in Global RADAR BSA Radar 1.6.7234.24750 and earlier allows users to download transaction files. When downloading the files, … CWE-22
Path Traversal 		CVE-2020-14946 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211397 8.8 HIGH
Network 		globalradar bsa_radar A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator ri… NVD-CWE-noinfo
CVE-2020-14945 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211398 9.8 CRITICAL
Network 		globalradar bsa_radar Global RADAR BSA Radar 1.6.7234.24750 and earlier lacks valid authorization controls in multiple functions. This can allow for manipulation and takeover of user accounts if successfully exploited. Th… CWE-862
 Missing Authorization 		CVE-2020-14944 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211399 5.4 MEDIUM
Network 		globalradar bsa_radar The Firstname and Lastname parameters in Global RADAR BSA Radar 1.6.7234.24750 and earlier are vulnerable to stored cross-site scripting (XSS) via Update User Profile. CWE-79
Cross-site Scripting 		CVE-2020-14943 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm
211400 7.1 HIGH
Local 		iobit advanced_systemcare IOBit Advanced SystemCare Free 13.5.0.263 allows local users to gain privileges for file deletion by manipulating the Clean & Optimize feature with an NTFS junction and an Object Manager symbolic lin… CWE-59
Link Following 		CVE-2020-14990 2024-11-21 14:04 2020-06-23 Show GitHub Exploit DB Packet Storm