Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232101	6.8	警告	WordPress.org	-	WordPress の wp-includes/query.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6318	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232102	5.5	警告	Real Time Logic	-	BarracudaDrive Web Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6317	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232103	4.3	警告	Real Time Logic	-	BarracudaDrive Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6316	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232104	4	警告	Real Time Logic	-	Group Chat の BarracudaDrive Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2007-6315	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232105	5	警告	Real Time Logic	-	BarracudaDrive Web Server における Web スクリプトに対するソースコードを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2007-6314	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232106	4.3	警告	ウェブセンス	-	Websense Enterprise および Web Security Suite の Web Reporting Tools portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6312	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232107	4.3	警告	webSPELL	-	webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6309	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

232108	5	警告	phpmychat	-	phpMyChat の users_popupL.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6296	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

232109	7.5	危険	xigla	-	Xigla Absolute Banner Manager .NET の abm.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6291	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

232110	7.5	危険	tecnick.com	-	TCExam における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6288	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211381	6.1	MEDIUM Network	pega	pega_platform	Pega Platform before 8.4.0 has a XSS issue via stream rule parameters used in the request header.	CWE-79 Cross-site Scripting	CVE-2020-24353	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211382	9.1	CRITICAL Network	magento	magento	Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an unsafe file upload vulnerability that could result in arbitrary code execution. This vulnerability could be abused by authenticated…	-	CVE-2020-24407	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211383	3.7	LOW Network	magento	magento	When in maintenance mode, Magento version 2.4.0 and 2.3.4 (and earlier) are affected by an information disclosure vulnerability that could expose the installation path during build deployments. This …	CWE-22 Path Traversal	CVE-2020-24406	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211384	4.3	MEDIUM Network	magento	magento	Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions issue vulnerability in the Inventory module. This vulnerability could be abused by authenticated users to modi…	NVD-CWE-Other	CVE-2020-24405	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211385	2.7	LOW Network	magento	magento	Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability within the Integrations component. This vulnerability could be abused by users with permissions …	NVD-CWE-Other	CVE-2020-24404	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211386	2.7	LOW Network	magento	magento	Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect user permissions vulnerability within the Inventory component. This vulnerability could be abused by authenticated users w…	NVD-CWE-Other	CVE-2020-24403	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211387	4.9	MEDIUM Network	magento	magento	Magento version 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect permissions vulnerability in the Integrations component. This vulnerability could be abused by authenticated users with pe…	-	CVE-2020-24402	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211388	6.5	MEDIUM Network	magento	magento	Magento versions 2.4.0 and 2.3.5p1 (and earlier) are affected by an incorrect authorization vulnerability. A user can still access resources provisioned under their old role after an administrator re…	-	CVE-2020-24401	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211389	7.1	HIGH Network	magento	magento	Magento versions 2.4.0 and 2.3.5 (and earlier) are affected by an SQL Injection vulnerability that could lead to sensitive information disclosure. This vulnerability could be exploited by an authenti…	-	CVE-2020-24400	2024-11-21 14:14	2020-11-9	Show	GitHub Exploit DB Packet Storm

211390	2.8	LOW Local	adobe	acrobat acrobat_dc acrobat_reader acrobat_reader_dc	Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical securit…	-	CVE-2020-24439	2024-11-21 14:14	2020-11-6	Show	GitHub Exploit DB Packet Storm