Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 9, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 232121 | 7.5 | 危険 | Rayzz | - | Rayzz Script の common/classes/class_HeaderHandler.lib.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6230 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232122 | 7.5 | 危険 | Rayzz | - | Rayzz Script の common/classes/class_HeaderHandler.lib.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-6229 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232123 | 6.8 | 警告 | ヤフー株式会社 | - | Yahoo! Toolbar の yt.ythelper.2 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2007-6228 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232124 | 7.2 | 危険 | Fabrice Bellard | - | QEMU における TranslationBlock バッファを上書きされる脆弱性 |
CWE-119
バッファエラー |
CVE-2007-6227 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232125 | 5 | 警告 | リアルネットワークス | - | RealPlayer に同梱されている rmoc3260.dll におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2007-6224 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232126 | 7.5 | 危険 | phpBB | - | phpBB Garage の garage.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6223 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232127 | 7.8 | 危険 | tumusika evolution | - | TuMusika Evolution における設定ファイルを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2007-6221 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232128 | 5 | 警告 | typespeed | - | typespeed におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2007-6220 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232129 | 5 | 警告 | web-meetme | - | Web-MeetMe の play.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6215 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
| 232130 | 5 | 警告 | webed | - | WebED の mod/chat/index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-6213 | 2012-12-20 18:34 | 2007-12-4 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 211971 | 5.4 |
MEDIUM
Network |
laborator | neon | Laborator Neon dashboard v3 is affected by stored Cross Site Scripting (XSS) via the chat tab. |
CWE-79
Cross-site Scripting |
CVE-2020-23576 | 2024-11-21 14:13 | 2020-08-28 | Show | GitHub Exploit DB Packet Storm |
| 211972 | 5.4 |
MEDIUM
Network |
webtareas_project | webtareas | webTareas v2.1 is affected by Cross Site Scripting (XSS) on "Search." |
CWE-79
Cross-site Scripting |
CVE-2020-23660 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211973 | 5.4 |
MEDIUM
Network |
webport | web_port | WebPort-v1.19.17121 is affected by Cross Site Scripting (XSS) on the "connections" feature. |
CWE-79
Cross-site Scripting |
CVE-2020-23659 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211974 | 5.4 |
MEDIUM
Network |
php-fusion | php-fusion | PHP-Fusion 9.03.60 is affected by Cross Site Scripting (XSS) via infusions/member_poll_panel/poll_admin.php. |
CWE-79
Cross-site Scripting |
CVE-2020-23658 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211975 | 5.4 |
MEDIUM
Network |
naviwebs | navigatecms | NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration." |
CWE-79
Cross-site Scripting |
CVE-2020-23657 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211976 | 5.4 |
MEDIUM
Network |
naviwebs | navigatecms | NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Content." |
CWE-79
Cross-site Scripting |
CVE-2020-23656 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211977 | 5.4 |
MEDIUM
Network |
naviwebs | navigatecms | NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) on module "Configuration." |
CWE-79
Cross-site Scripting |
CVE-2020-23655 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211978 | 5.4 |
MEDIUM
Network |
naviwebs | navigatecms | NavigateCMS 2.9 is affected by Cross Site Scripting (XSS) via the module "Shop." |
CWE-79
Cross-site Scripting |
CVE-2020-23654 | 2024-11-21 14:13 | 2020-08-27 | Show | GitHub Exploit DB Packet Storm |
| 211979 | 6.5 |
MEDIUM
Network |
sysax | multi_server | When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfile_name1.htm form to a length of 368 or more bytes. This will create a buff… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2020-23574 | 2024-11-21 14:13 | 2020-08-20 | Show | GitHub Exploit DB Packet Storm |
| 211980 | 7.8 |
HIGH
Local |
pnotes.net_project | pnotes.net | A File Upload Vulnerability in PNotes - Andrey Gruber PNotes.NET v3.8.1.2 allows a local attacker to execute arbitrary code via the Miscellaneous " External Programs by uploading the malicious .exe f… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2020-22721 | 2024-11-21 14:13 | 2020-08-15 | Show | GitHub Exploit DB Packet Storm |