Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231941	4.3	警告	TIBCO Software	-	TIBCO RV の rvd におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4161	2012-12-20 18:33	2007-08-3	Show	GitHub Exploit DB Packet Storm

231942	4.3	警告	vikingboard	-	Vikingboard における重要な情報を取得される脆弱性	-	CVE-2007-4089	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231943	4.3	警告	vikingboard	-	Vikingboard におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4088	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231944	5	警告	Tincan	-	Webbler CMS における任意の数量の偽装メールを送信される脆弱性	-	CVE-2007-4073	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231945	5	警告	Tincan	-	Webbler CMS における重要な情報を取得される脆弱性	-	CVE-2007-4072	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231946	4.3	警告	Tincan	-	Webbler CMS の uploader/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4071	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231947	5.8	警告	webyapar	-	Webyapar における SQL インジェクションの脆弱性	-	CVE-2007-4068	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231948	5.8	警告	VMware	-	EMC VMware の IntraProcessLogging.dll における絶対パストラバーサルの脆弱性	-	CVE-2007-4059	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231949	4.6	警告	ultradefrag	-	UltraDefrag の FindFiles 関数におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-4051	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231950	4.3	警告	phpsysinfo	-	phpSysInfo の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4048	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211721	6.1	MEDIUM Network	jizhicms	jizhicms	XSS exists in JIZHICMS 1.7.1 via index.php/Error/index?msg={XSS] to Home/c/ErrorController.php.	CWE-79 Cross-site Scripting	CVE-2020-23644	2024-11-21 14:13	2021-01-11	Show	GitHub Exploit DB Packet Storm

211722	6.1	MEDIUM Network	jizhicms	jizhicms	XSS exists in JIZHICMS 1.7.1 via index.php/Wechat/checkWeixin?signature=1&echostr={XSS] to Home/c/WechatController.php.	CWE-79 Cross-site Scripting	CVE-2020-23643	2024-11-21 14:13	2021-01-11	Show	GitHub Exploit DB Packet Storm

211723	2.3	LOW Local	gigamon	gigavue-os	GigaVUE-OS (GVOS) 5.4 - 5.9 uses a weak algorithm for a hash stored in internal database.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-23250	2024-11-21 14:13	2021-01-6	Show	GitHub Exploit DB Packet Storm

211724	4.7	MEDIUM Network	gigamon	gigavue-os	GigaVUE-OS (GVOS) 5.4 - 5.9 stores a Redis database password in plaintext.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-23249	2024-11-21 14:13	2021-01-6	Show	GitHub Exploit DB Packet Storm

211725	7.5	HIGH Network	veno_file_manager_project	veno_file_manager	Veno File Manager 3.5.6 is affected by a directory traversal vulnerability. Using the traversal allows an attacker to download sensitive files from the server.	CWE-22 Path Traversal	CVE-2020-22550	2024-11-21 14:13	2021-01-5	Show	GitHub Exploit DB Packet Storm

211726	9.8	CRITICAL Network	jsonpickle_project	jsonpickle	jsonpickle through 1.4.1 allows remote code execution during deserialization of a malicious payload through the decode() function. Note: It has been argued that this is expected and clearly documente…	CWE-502 Deserialization of Untrusted Data	CVE-2020-22083	2024-11-21 14:13	2020-12-18	Show	GitHub Exploit DB Packet Storm

211727	7.2	HIGH Network	txjia	imcat	imcat 5.2 allows an authenticated file upload and consequently remote code execution via the picture functionality.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-23520	2024-11-21 14:13	2020-12-10	Show	GitHub Exploit DB Packet Storm

211728	6.1	MEDIUM Network	yzmcms	yzmcms	In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting (XSS) vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-22394	2024-11-21 14:13	2020-11-20	Show	GitHub Exploit DB Packet Storm

211729	6.1	MEDIUM Network	ljcmsshop_project	ljcmsshop	A cross-site scripting (XSS) vulnerability in Beijing Liangjing Zhicheng Technology Co., Ltd ljcmsshop version 1.14 allows remote attackers to inject arbitrary web script or HTML via user.php by regi…	CWE-79 Cross-site Scripting	CVE-2020-22723	2024-11-21 14:13	2020-11-19	Show	GitHub Exploit DB Packet Storm

211730	7.5	HIGH Network	wwbn	avideo	There was a local file disclosure vulnerability in AVideo < 8.9 via the proxy streaming. An unauthenticated attacker can exploit this issue to read an arbitrary file on the server. Which could leak d…	NVD-CWE-noinfo	CVE-2020-23490	2024-11-21 14:13	2020-11-17	Show	GitHub Exploit DB Packet Storm