Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231751 10 危険 visionsoft - Visionsoft Audit の VSAOD における任意のファイルを作成される脆弱性 - CVE-2007-4149 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
231752 10 危険 visionsoft - Visionsoft Audit の VSAOD におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-4148 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
231753 4.3 警告 webevents - ebEvent の webevent.cgi におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4146 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
231754 4 警告 phpcoupon - phpCoupon の Billing Control Panel における Premium Member ステイタスを取得される脆弱性 - CVE-2007-4143 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
231755 4.3 警告 WordPress.org - WordPress の Temporary Uploads 編集機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4139 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
231756 6.5 警告 レッドハット - Red Hat Network Satellite Server における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2007-4132 2012-12-20 18:33 2007-08-29 Show GitHub Exploit DB Packet Storm
231757 7.5 危険 suskunduygular - SuskunDuygular Uyelik Sistemi の unuttum.asp における SQL インジェクションの脆弱性 - CVE-2007-4114 2012-12-20 18:33 2007-07-31 Show GitHub Exploit DB Packet Storm
231758 7.5 危険 phpmyforum - phpMyForum の editpost.php における SQL インジェクションの脆弱性 - CVE-2007-4107 2012-12-20 18:33 2007-06-7 Show GitHub Exploit DB Packet Storm
231759 4.3 警告 sblog - sBlog の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4102 2012-12-20 18:33 2007-07-31 Show GitHub Exploit DB Packet Storm
231760 5.8 警告 The Tor Project - Tor における重要な情報を取得される脆弱性 - CVE-2007-4099 2012-12-20 18:33 2007-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210921 9.8 CRITICAL
Network 		shopex ecshop SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php. CWE-89
SQL Injection 		CVE-2020-22205 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210922 9.8 CRITICAL
Network 		shopex ecshop SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php. . CWE-89
SQL Injection 		CVE-2020-22204 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210923 9.8 CRITICAL
Network 		phpcms phpcms SQL Injection in phpCMS 2008 sp4 via the genre parameter to yp/job.php. CWE-89
SQL Injection 		CVE-2020-22203 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210924 8.8 HIGH
Network 		phpcms phpcms phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize parameter to yp/product.php. CWE-94
Code Injection 		CVE-2020-22201 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210925 5.3 MEDIUM
Network 		phpcms phpcms Directory Traversal vulnerability in phpCMS 9.1.13 via the q parameter to public_get_suggest_keyword. CWE-22
Path Traversal 		CVE-2020-22200 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210926 9.8 CRITICAL
Network 		phpcms phpcms SQL Injection vulnerability in phpCMS 2007 SP6 build 0805 via the digg_mod parameter to digg_add.php. CWE-89
SQL Injection 		CVE-2020-22199 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210927 9.8 CRITICAL
Network 		dedecms dedecms SQL Injection vulnerability in DedeCMS 5.7 via mdescription parameter to member/ajax_membergroup.php. CWE-89
SQL Injection 		CVE-2020-22198 2024-11-21 14:13 2021-06-17 Show GitHub Exploit DB Packet Storm
210928 9.8 CRITICAL
Network 		jerryscript jerryscript There is a heap-buffer-overflow at re-parser.c in re_parse_char_escape in JerryScript 2.2.0. CWE-787
 Out-of-bounds Write 		CVE-2020-23323 2024-11-21 14:13 2021-06-11 Show GitHub Exploit DB Packet Storm
210929 7.5 HIGH
Network 		jerryscript jerryscript There is an Assertion in 'context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type == LEXER_ASSIGN || context_p->token.type == LEXER_COMMA' in parser_parse_object_initializer in JerryScrip… CWE-617
 Reachable Assertion 		CVE-2020-23322 2024-11-21 14:13 2021-06-11 Show GitHub Exploit DB Packet Storm
210930 9.8 CRITICAL
Network 		jerryscript jerryscript There is a heap-buffer-overflow at lit-strings.c:431 in lit_read_code_unit_from_utf8 in JerryScript 2.2.0. CWE-787
 Out-of-bounds Write 		CVE-2020-23321 2024-11-21 14:13 2021-06-11 Show GitHub Exploit DB Packet Storm