Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231571 7.5 危険 webkalk2 - WebKalk2 の engine/engine.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2307 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231572 4.3 警告 VWar - PHP-Nuke 用の VWar モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2306 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231573 7.5 危険 qdblog - QDBlog の authenticate.php における SQL インジェクションの脆弱性 - CVE-2007-2305 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231574 7.5 危険 qdblog - QDBlog におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2304 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231575 4.3 警告 surat kabar - Endy Kristanto Surat kabar / News Management Online におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2300 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
231576 7.5 危険 wf-links - XOOPS 用の WF-Links モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2373 2012-12-20 18:19 2005-06-22 Show GitHub Exploit DB Packet Storm
231577 9.3 危険 シマンテック - Windows 用の Symantec Storage Foundation における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2279 2012-12-20 18:19 2007-06-1 Show GitHub Exploit DB Packet Storm
231578 7.5 危険 Plogger Project - Plogger におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-2277 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
231579 9.4 危険 rajneel lal totaram - Rajneel Lal TotaRam USP FOSS におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2271 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
231580 5 警告 swsoft - Windows 用の SWsoft Plesk の top.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2269 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211941 9.8 CRITICAL
Network 		airforce nitf_extract_utility U.S. Air Force Sensor Data Management System extract75 has a buffer overflow that leads to code execution. An overflow in a global variable (sBuffer) leads to a Write-What-Where outcome. Writing beyo… CWE-787
 Out-of-bounds Write 		CVE-2020-13995 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
211942 7.5 HIGH
Network 		jerryscript jerryscript vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow of control by controlling a register. NVD-CWE-noinfo
CVE-2020-13991 2024-11-21 14:02 2020-09-25 Show GitHub Exploit DB Packet Storm
211943 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The outbox functionality of the TXT File module can be used to delete all/most files in a folder. Because the product usually runs as N… NVD-CWE-noinfo
CVE-2020-14031 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211944 7.2 HIGH
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. By leveraging a path traversal vulnerability in the Autoreply module's Script Name, an attacker may write to or overwrite arbitrary fil… CWE-22
Path Traversal 		CVE-2020-14028 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211945 5.3 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway An issue was discovered in Ozeki NG SMS Gateway through 4.17.6. The database connection strings accept custom unsafe arguments, such as ENABLE_LOCAL_INFILE, that can be leveraged by attackers to enab… CWE-88
Argument Injection 		CVE-2020-14027 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211946 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the Export Of Contacts feature in Ozeki NG SMS Gateway through 4.17.6 via a value that is mishandled in a CSV export. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2020-14026 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211947 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple CSRF vulnerabilities. For example, an administrator, by following a link, can be tricked into making unwanted changes such as installing new modules o… CWE-352
 Origin Validation Error 		CVE-2020-14025 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211948 6.1 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 has multiple authenticated stored and/or reflected XSS vulnerabilities via the (1) Receiver or Recipient field in the Mailbox feature, (2) OZFORM_GROUPNAME field i… CWE-79
Cross-site Scripting 		CVE-2020-14024 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211949 4.9 MEDIUM
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway through 4.17.6 allows SSRF via SMS WCF or RSS To SMS. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-14023 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm
211950 8.8 HIGH
Network 		ozeki ozeki_ng_sms_gateway Ozeki NG SMS Gateway 4.17.1 through 4.17.6 does not check the file type when bulk importing new contacts ("Import Contacts" functionality) from a file. It is possible to upload an executable or .bat … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-14022 2024-11-21 14:02 2020-09-23 Show GitHub Exploit DB Packet Storm