Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231711	4.3	警告	vincent hor	-	Calendarix におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3182	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

231712	7.5	危険	zindizayn okul web sistemi	-	Zindizayn Okul Web Sistemi における SQL インジェクションの脆弱性	-	CVE-2007-3178	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231713	7.5	危険	w2b	-	W2B Online Banking における SQL インジェクションの脆弱性	-	CVE-2007-3175	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231714	4.3	警告	w2b	-	W2B Online Banking の auth.w2b におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3174	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231715	5	警告	uebimiau	-	Uebimiau Webmail の demo/pop3/error.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3172	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231716	5	警告	uebimiau	-	Uebimiau Webmail における重要な情報を取得される脆弱性	-	CVE-2007-3171	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231717	4.3	警告	uebimiau	-	Uebimiau Webmail におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3170	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231718	7.6	危険	VIVOTEK Inc.	-	MjpegDecoder.dll の Vivotek Motion Jpeg ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3167	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231719	6.8	警告	クアルコム	-	Qualcomm Eudora におけるバッファオーバーフローの脆弱性	-	CVE-2007-3166	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

231720	5	警告	The Tor Project	-	Tor におけるトラフィックの送信元などの匿名性を侵害される脆弱性	-	CVE-2007-3165	2012-12-20 18:19	2007-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211121	7.8	HIGH Local	microsoft	windows_10 windows_7 windows_server_2012 windows_server_2016 windows_rt_8.1 windows_server_2008 windows_8.1 windows_server_2019	A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1409	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211122	8.8	HIGH Network	microsoft	windows_10 windows_7 windows_server_2012 windows_server_2016 windows_rt_8.1 windows_server_2008 windows_8.1 windows_server_2019	A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Microsoft Graphics Remote Code Execution Vulnerability'.	CWE-346 Origin Validation Error	CVE-2020-1408	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211123	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2020-1407	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211124	7.8	HIGH Local	microsoft	windows_10 windows_server_2012 windows_server_2016 windows_rt_8.1 windows_8.1 windows_server_2019	An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory, aka 'Windows Network List Service Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1406	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211125	7.1	HIGH Local	microsoft	windows_server_2019 windows_10 windows_server_2016	An elevation of privilege vulnerability exists when Windows Mobile Device Management (MDM) Diagnostics improperly handles junctions, aka 'Windows Mobile Device Management Diagnostics Elevation of Pri…	NVD-CWE-noinfo	CVE-2020-1405	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211126	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory, aka 'Windows Runtime Elevation of Privilege Vulnerability'. This CVE ID is unique from CV…	NVD-CWE-noinfo	CVE-2020-1404	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211127	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2020-1403	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211128	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on th…	NVD-CWE-noinfo	CVE-2020-1402	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211129	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2020-1401	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

211130	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2020-1400	2024-11-21 14:10	2020-07-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed