Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231821 4.3 警告 Snitz - Snitz Forums 2000 の pop_profile.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1374 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231822 10 危険 Pegasus Mail - Mercury/32 におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1373 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231823 10 危険 postguestbook - PHP-Nuke 用の PostGuestbook モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1372 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231824 6.9 警告 Jon Trulson - Conquest におけるバッファオーバーフローの脆弱性 - CVE-2007-1371 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231825 6.2 警告 Zend Technologies Ltd. - Zend Platform におけるルート権限を取得される脆弱性 - CVE-2007-1370 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231826 4.4 警告 Zend Technologies Ltd. - Zend Platform の ini_modifier における system.ini ファイルを変更される脆弱性 - CVE-2007-1369 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
231827 4.3 警告 VirtueMart - VirtueMart の virtuemart_parser.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1361 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
231828 6.6 警告 サン・マイクロシステムズ - Sun Fire X2100M2 および X2200M2 用の ipmitool における権限を取得される脆弱性 - CVE-2007-1346 2012-12-20 18:19 2007-03-7 Show GitHub Exploit DB Packet Storm
231829 7.5 危険 webcalendar - Craig Knudsen WebCalendar の includes/functions.php における任意のグローバル変数を設定される脆弱性 - CVE-2007-1343 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
231830 5 警告 Simple Invoices - Simple Invoices の include/auth/auth.php における重要な情報を取得される脆弱性 - CVE-2007-1341 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211661 4.7 MEDIUM
Network 		oracle cloud_infrastructure_identity_and_access_management Vulnerability in the Oracle Cloud Infrastructure Identity and Access Management product of Oracle Cloud Services. Easily exploitable vulnerability allows high privileged attacker with network access … NVD-CWE-noinfo
CVE-2020-14874 2024-11-21 14:04 2020-12-23 Show GitHub Exploit DB Packet Storm
211662 5.9 MEDIUM
Network 		askey ap5100w_firmware Askey AP5100W devices through AP5100W_Dual_SIG_1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exc… CWE-330
 Use of Insufficiently Random Values 		CVE-2020-15023 2024-11-21 14:04 2020-12-12 Show GitHub Exploit DB Packet Storm
211663 9.8 CRITICAL
Network 		oracle fusion_middleware Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.… NVD-CWE-noinfo
CVE-2020-14750 2024-11-21 14:04 2020-11-3 Show GitHub Exploit DB Packet Storm
211664 4.8 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows stats/diagnostic?param= XSS. CWE-79
Cross-site Scripting 		CVE-2020-15004 2024-11-21 14:04 2020-10-23 Show GitHub Exploit DB Packet Storm
211665 4.3 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows Information Exposure because a user can obtain the IP address and User-Agent string of a different user (via the session API during shared Drive access). NVD-CWE-noinfo
CVE-2020-15003 2024-11-21 14:04 2020-10-23 Show GitHub Exploit DB Packet Storm
211666 5.0 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.3 allows SSRF via the the /ajax/messaging/message message API. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-15002 2024-11-21 14:04 2020-10-23 Show GitHub Exploit DB Packet Storm
211667 4.9 MEDIUM
Network 		oracle database Vulnerability in the RDBMS Security component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having Analyze… NVD-CWE-noinfo
CVE-2020-14901 2024-11-21 14:04 2020-10-22 Show GitHub Exploit DB Packet Storm
211668 5.4 MEDIUM
Network 		oracle application_express Vulnerability in the Oracle Application Express Group Calendar component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows lo… NVD-CWE-noinfo
CVE-2020-14900 2024-11-21 14:04 2020-10-22 Show GitHub Exploit DB Packet Storm
211669 5.4 MEDIUM
Network 		oracle application_express Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low… NVD-CWE-noinfo
CVE-2020-14899 2024-11-21 14:04 2020-10-22 Show GitHub Exploit DB Packet Storm
211670 5.4 MEDIUM
Network 		oracle application_express Vulnerability in the Oracle Application Express Packaged Apps component of Oracle Database Server. The supported version that is affected is Prior to 20.2. Easily exploitable vulnerability allows low… NVD-CWE-noinfo
CVE-2020-14898 2024-11-21 14:04 2020-10-22 Show GitHub Exploit DB Packet Storm