Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231691	3.5	注意	xythos	-	XEDM におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3254	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

231692	7.8	危険	portalapp	-	PortalApp におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-3252	2012-12-20 18:19	2007-06-18	Show	GitHub Exploit DB Packet Storm

231693	6.8	警告	VirtueMart	-	VirtueMart における SQL インジェクションの脆弱性	-	CVE-2007-3247	2012-12-20 18:19	2007-06-18	Show	GitHub Exploit DB Packet Storm

231694	7.5	危険	web-app.org web-app.net	-	web-app.net WebAPP などの Menu Manager Mod における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-3242	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231695	4.3	警告	WordPress.org	-	WordPress 用の cordobo-green-park テーマの blogroll.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3241	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231696	4.3	警告	WordPress.org	-	WordPress 用の Vistered-Little テーマの 404.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3240	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231697	4.3	警告	WordPress.org	-	WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3239	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231698	6	警告	WordPress.org	-	WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3238	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

231699	6.8	警告	XOOPS	-	XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3237	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

231700	7.5	危険	XOOPS	-	XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3236	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212231	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to properly identify and filter unsafe ASP.Net web controls, aka 'Microsoft SharePoint Server Remote Code Exe…	CWE-476 NULL Pointer Dereference	CVE-2020-1069	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212232	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists in Windows Media Service that allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the sy…	NVD-CWE-noinfo	CVE-2020-1068	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212233	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists in the way that Windows handles objects in memory, aka 'Windows Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1067	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212234	7.8	HIGH Local	microsoft	.net_framework	An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access th…	NVD-CWE-noinfo	CVE-2020-1066	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212235	7.5	HIGH Network	microsoft	chakracore edge	A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka 'Scripting Engine Memory Corruption Vulnerability'.	CWE-787 Out-of-bounds Write	CVE-2020-1065	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212236	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input.An attacker could execute arbitrary code in the context of the current user, aka 'MSHTML Engi…	NVD-CWE-noinfo	CVE-2020-1064	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212237	5.4	MEDIUM Network	microsoft	dynamics_365	A cross site scripting vulnerability exists when Microsoft Dynamics 365 (on-premises) does not properly sanitize a specially crafted web request to an affected Dynamics server, aka 'Microsoft Dynamic…	CWE-79 Cross-site Scripting	CVE-2020-1063	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212238	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020…	CWE-787 Out-of-bounds Write	CVE-2020-1062	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212239	8.8	HIGH Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists in the way that the Microsoft Script Runtime handles objects in memory, aka 'Microsoft Script Runtime Remote Code Execution Vulnerability'.	CWE-787 Out-of-bounds Write	CVE-2020-1061	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm

212240	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-103…	CWE-787 Out-of-bounds Write	CVE-2020-1060	2024-11-21 14:09	2020-05-22	Show	GitHub Exploit DB Packet Storm