Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231791	4.3	警告	PHPNUKE	-	PHP-Nuke の modules.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1519	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

231792	7.5	危険	woltlab	-	wBB の usergroups.php における SQL インジェクションの脆弱性	-	CVE-2007-1518	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

231793	6.8	警告	viperweb	-	ViperWeb Portal の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1514	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

231794	7.5	危険	rhapsody irc	-	Rhapsody IRC の comm.c におけるフォーマットストリングの脆弱性	-	CVE-2007-1503	2012-12-20 18:19	2007-03-19	Show	GitHub Exploit DB Packet Storm

231795	6.8	警告	rhapsody irc	-	Rhapsody IRC におけるバッファオーバーフローの脆弱性	-	CVE-2007-1502	2012-12-20 18:19	2007-03-19	Show	GitHub Exploit DB Packet Storm

231796	4.9	警告	シマンテック	-	Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1495	2012-12-20 18:19	2007-03-16	Show	GitHub Exploit DB Packet Storm

231797	6.8	警告	web-app.org	-	web-app.org WebAPP における管理アクセス権限を取得される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-1489	2012-12-20 18:19	2007-03-16	Show	GitHub Exploit DB Packet Storm

231798	7.5	危険	wbblog	-	WBBlog の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1481	2012-12-20 18:19	2007-03-16	Show	GitHub Exploit DB Packet Storm

231799	1.9	注意	シマンテック	-	Symantec Norton Personal Firewall などの SYMTDI.SYS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-1476	2012-12-20 18:19	2007-03-16	Show	GitHub Exploit DB Packet Storm

231800	6.8	警告	t-systems solutions for research gmbh	-	Groupit の groupit/base/groupit.start.inc におけるリモートファイルインクルージョン攻撃を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-1472	2012-12-20 18:19	2007-03-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211641	7.8	HIGH Local	idrive	idrive	IDrive before 6.7.3.19 on Windows installs by default to %PROGRAMFILES(X86)%\IDriveWindows with weak folder permissions granting any user modify permission (i.e., NT AUTHORITY\Authenticated Users:(OI…	CWE-276 Incorrect Default Permissions	CVE-2020-15351	2024-11-21 14:05	2020-06-27	Show	GitHub Exploit DB Packet Storm

211642	7.5	HIGH Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /cnr requests.	CWE-306 Missing Authentication for Critical Function	CVE-2020-15336	2024-11-21 14:05	2020-06-27	Show	GitHub Exploit DB Packet Storm

211643	7.5	HIGH Network	zyxel	cloudcnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 has no authentication for /registerCpe requests.	CWE-306 Missing Authentication for Critical Function	CVE-2020-15335	2024-11-21 14:05	2020-06-27	Show	GitHub Exploit DB Packet Storm

211644	9.8	CRITICAL Network	zyxel	cloud_cnm_secumanager	Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows use of live/CPEManager/AXCampaignManager/delete_cpes_by_ids?cpe_ids= for eval injection of Python code.	CWE-94 Code Injection	CVE-2020-15348	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211645	7.2	HIGH Network	turnkeylinux	support_incident_tracker	Support Incident Tracker (aka SiT! or SiTracker) 3.67 p2 allows post-authentication SQL injection via the site_edit.php typeid or site parameter, the search_incidents_advanced.php search_title parame…	CWE-89 SQL Injection	CVE-2020-15308	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211646	5.5	MEDIUM Local	openexr fedoraproject opensuse debian canonical	openexr fedora leap debian_linux ubuntu_linux	An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize() in IlmImf/ImfMisc.cpp.	CWE-787 Out-of-bounds Write	CVE-2020-15306	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211647	5.5	MEDIUM Local	openexr fedoraproject opensuse debian canonical	openexr fedora leap debian_linux ubuntu_linux	An issue was discovered in OpenEXR before 2.5.2. Invalid input could cause a use-after-free in DeepScanLineInputFile::DeepScanLineInputFile() in IlmImf/ImfDeepScanLineInputFile.cpp.	CWE-416 Use After Free	CVE-2020-15305	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211648	5.5	MEDIUM Local	openexr fedoraproject opensuse	openexr fedora leap	An issue was discovered in OpenEXR before 2.5.2. An invalid tiled input file could cause invalid memory access in TiledInputFile::TiledInputFile() in IlmImf/ImfTiledInputFile.cpp, as demonstrated by …	CWE-476 NULL Pointer Dereference	CVE-2020-15304	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211649	7.5	HIGH Network	argent	recoverymanager	In Argent RecoveryManager before 0xdc350d09f71c48c5D22fBE2741e4d6A03970E192, the executeRecovery function does not require any signatures in the zero-guardian case, which allows attackers to cause a …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-15302	2024-11-21 14:05	2020-06-26	Show	GitHub Exploit DB Packet Storm

211650	7.5	HIGH Network	acronis	agent	A logic bug in system monitoring driver of Acronis Agent after 12.5.21540 and before 12.5.23094 allowed to bypass Windows memory protection and access sensitive data.	NVD-CWE-noinfo	CVE-2020-14999	2024-11-21 14:04	2021-07-30	Show	GitHub Exploit DB Packet Storm