Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231981 6.8 警告 request it - Request It の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2015 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231982 6.8 警告 simpcms - SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2009 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231983 7.5 危険 pl-php - pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2008 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
231984 10 危険 stephen craton - Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性 - CVE-2007-2147 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
231985 7.5 危険 shoutpro - ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性 - CVE-2007-2141 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
231986 7.5 危険 rha7 downloads - XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2107 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
231987 6.8 警告 wabbit - Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2098 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
231988 7.5 危険 tsdisplay4xoops - TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2091 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
231989 6.8 警告 tumusika evolution - TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2090 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
231990 7.5 危険 pl-php - pL-PHP の admin.php における認証を回避される脆弱性 - CVE-2007-2007 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211711 6.1 MEDIUM
Network 		medintux medintux Reflected XSS in Medintux v2.16.000 CCAM.php by manipulating the mot1 parameter can result in an attacker performing malicious actions to users who open a maliciously crafted link or third-party web … CWE-79
Cross-site Scripting 		CVE-2020-19361 2024-11-21 14:09 2021-01-20 Show GitHub Exploit DB Packet Storm
211712 7.5 HIGH
Network 		fhem fhem Local file inclusion in FHEM 6.0 allows in fhem/FileLog_logWrapper file parameter can allow an attacker to include a file, which can lead to sensitive information disclosure. CWE-22
Path Traversal 		CVE-2020-19360 2024-11-21 14:09 2021-01-20 Show GitHub Exploit DB Packet Storm
211713 8.8 HIGH
Network 		draytek vigor2960_firmware DrayTek Vigor2960 1.5.1 allows remote command execution via shell metacharacters in a toLogin2FA action to mainfunction.cgi. CWE-78
OS Command  		CVE-2020-19664 2024-11-21 14:09 2020-12-31 Show GitHub Exploit DB Packet Storm
211714 9.8 CRITICAL
Network 		phpshe phpshe PHPSHE 1.7 has SQL injection via the admin.php?mod=user&userlevel_id=1 userlevel_id[] parameter. CWE-89
SQL Injection 		CVE-2020-19165 2024-11-21 14:09 2020-12-12 Show GitHub Exploit DB Packet Storm
211715 9.8 CRITICAL
Network 		idreamsoft icms iCMS 7.0.14 attackers to execute arbitrary OS commands via shell metacharacters in the DB_NAME parameter to install/install.php. CWE-78
OS Command  		CVE-2020-19527 2024-11-21 14:09 2020-12-11 Show GitHub Exploit DB Packet Storm
211716 7.8 HIGH
Local 		imagemagick
debian 		imagemagick
debian_linux 		Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7. CWE-787
 Out-of-bounds Write 		CVE-2020-19667 2024-11-21 14:09 2020-11-21 Show GitHub Exploit DB Packet Storm
211717 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		<p>A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrar… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-1167 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
211718 8.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could … NVD-CWE-noinfo
CVE-2020-1080 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
211719 7.8 HIGH
Local 		microsoft windows_10
windows_server_2019
windows_server_2016 		<p>An elevation of privilege vulnerability exists when Windows Hyper-V on a host server fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could … NVD-CWE-noinfo
CVE-2020-1047 2024-11-21 14:09 2020-10-17 Show GitHub Exploit DB Packet Storm
211720 5.3 MEDIUM
Network 		alibaba nacos Nacos 1.1.4 is affected by: Incorrect Access Control. An environment can be set up locally to get the service details interface. Then other Nacos service names can be accessed through the service lis… NVD-CWE-noinfo
CVE-2020-19676 2024-11-21 14:09 2020-10-1 Show GitHub Exploit DB Packet Storm