Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232101 7.5 危険 precisionid barcode - PrecisionID_Barcode.dll の PrecisionID Barcode ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2744 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232102 6.8 警告 xajax-project - xajax における脆弱性 - CVE-2007-2740 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232103 4.3 警告 xajax-project - xajax におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2739 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232104 7.5 危険 XOOPS - XOOPS 用の Glossaire モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2738 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232105 7.5 危険 XOOPS - Xoops 用の MyConference モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2737 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232106 7.5 危険 touteresa - Xoops 用の ResManager モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2735 2012-12-20 18:19 2007-05-17 Show GitHub Exploit DB Packet Storm
232107 10 危険 snaps gallery - Snaps! Gallery の Admin/users.php における任意のユーザ名を変更される脆弱性 - CVE-2007-2715 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
232108 10 危険 tinyirc - TinyIdentD におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2711 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
232109 6.8 警告 simple php scripts gallery - sphp の Ivan Peevski gallery における任意の PHP コードを実行される脆弱性 - CVE-2007-2679 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
232110 7.5 危険 phpchess - phpChess Community Edition における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2677 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211861 6.5 MEDIUM
Network 		ceph
redhat
opensuse
canonical 		ceph
openshift_container_storage
leap
ubuntu_linux 		A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making multiple disconnect attempts resulting in a permanent … CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-1700 2024-11-21 14:11 2020-02-8 Show GitHub Exploit DB Packet Storm
211862 5.4 MEDIUM
Network 		otrs otrs The external frontend system uses numerous background calls to the backend. Each background request is treated as user activity so the SessionMaxIdleTime will not be reached. This issue affects: OTRS… CWE-613
 Insufficient Session Expiration 		CVE-2020-1768 2024-11-21 14:11 2020-02-8 Show GitHub Exploit DB Packet Storm
211863 8.1 HIGH
Network 		apache spamassassin A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious Configuration (.cf) files can be configured to run system commands similar to CVE-2018-11805. Th… CWE-78
OS Command  		CVE-2020-1931 2024-11-21 14:11 2020-01-31 Show GitHub Exploit DB Packet Storm
211864 8.1 HIGH
Network 		apache spamassassin A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious rule configuration (.cf) files can be configured to run system commands similar to CVE-2018-1180… CWE-78
OS Command  		CVE-2020-1930 2024-11-21 14:11 2020-01-31 Show GitHub Exploit DB Packet Storm
211865 7.5 HIGH
Network 		apache jackrabbit_oak The optional initial password change and password expiration features present in Apache Jackrabbit Oak 1.2.0 to 1.22.0 are prone to a sensitive information disclosure vulnerability. The code mandates… CWE-212
 Improper Removal of Sensitive Information Before Storage or Transfer 		CVE-2020-1940 2024-11-21 14:11 2020-01-29 Show GitHub Exploit DB Packet Storm
211866 6.1 MEDIUM
Network 		apache nifi A XSS vulnerability was found in Apache NiFi 1.0.0 to 1.10.0. Malicious scripts could be injected to the UI through action by an unaware authenticated user in Firefox. Did not appear to occur in othe… CWE-79
Cross-site Scripting 		CVE-2020-1933 2024-11-21 14:11 2020-01-28 Show GitHub Exploit DB Packet Storm
211867 6.5 MEDIUM
Network 		apache superset An information disclosure issue was found in Apache Superset 0.34.0, 0.34.1, 0.35.0, and 0.35.1. Authenticated Apache Superset users are able to retrieve other users' information, including hashed pa… NVD-CWE-noinfo
CVE-2020-1932 2024-11-21 14:11 2020-01-28 Show GitHub Exploit DB Packet Storm
211868 5.3 MEDIUM
Network 		apache nifi An information disclosure vulnerability was found in Apache NiFi 1.10.0. The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a s… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-1928 2024-11-21 14:11 2020-01-28 Show GitHub Exploit DB Packet Storm
211869 5.5 MEDIUM
Local 		huawei honor_v30_firmware Honor V30 smartphones with versions earlier than 10.0.1.135(C00E130R4P1) have an improper authentication vulnerability. Certain applications do not properly validate the identity of another applicati… CWE-287
Improper Authentication 		CVE-2020-1788 2024-11-21 14:11 2020-01-22 Show GitHub Exploit DB Packet Storm
211870 6.0 MEDIUM
Local 		huawei mate_20_firmware HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to… CWE-287
Improper Authentication 		CVE-2020-1840 2024-11-21 14:11 2020-01-22 Show GitHub Exploit DB Packet Storm