Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246541 4.3 警告 Drupal - Drupal 用の Shoutbox モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6298 2012-06-26 15:54 2007-12-5 Show GitHub Exploit DB Packet Storm
246542 9.3 危険 Xiph.Org - FLAC libFLAC における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6279 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246543 9.3 危険 アドビシステムズ - Adobe Form Designer および Form Client におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6253 2012-06-26 15:54 2008-03-11 Show GitHub Exploit DB Packet Storm
246544 9.3 危険 マイクロソフト
AOL		 - AmpX.dll で使用される AOLMediaPlaybackControl.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6250 2012-06-26 15:54 2008-01-9 Show GitHub Exploit DB Packet Storm
246545 9.3 危険 Xiph.Org - FLAC libFLAC におけるクライアントに任意のファイルを強制ダウンロードされる脆弱性 CWE-20
CWE-264
CVE-2007-6278 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246546 9.3 危険 Xiph.Org - FLAC libFLAC におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6277 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246547 7.5 危険 bcoos - bcoos の modules/adresses/ratefile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6275 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246548 4.3 警告 bcoos - bcoos の Event Calendar の modules/ecal/display.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6274 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246549 2.1 注意 シトリックス・システムズ - Citrix EdgeSight for Presentation Server などの製品における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-6267 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
246550 7.5 危険 bcoos - bcoos における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6266 2012-06-26 15:54 2007-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218731 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… NVD-CWE-noinfo
CVE-2020-0963 2024-11-21 13:54 2020-05-22 Show GitHub Exploit DB Packet Storm
218732 7.5 HIGH
Network 		microsoft windows_10
windows_server_2008
windows_server_2012
windows_server_2016
windows_7
windows_8.1
windows_server_2019 		A denial of service vulnerability exists when Hyper-V on a Windows Server fails to properly handle specially crafted network packets.To exploit the vulnerability, an attacker would send specially cra… NVD-CWE-noinfo
CVE-2020-0909 2024-11-21 13:54 2020-05-22 Show GitHub Exploit DB Packet Storm
218733 9.8 CRITICAL
Network 		microsoft office
365_apps 		A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2020-0901 2024-11-21 13:54 2020-05-22 Show GitHub Exploit DB Packet Storm
218734 5.4 MEDIUM
Adjacent 		bluetooth
opensuse 		bluetooth_core
leap 		Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing crede… CWE-290
 Authentication Bypass by Spoofing 		CVE-2020-10135 2024-11-21 13:54 2020-05-20 Show GitHub Exploit DB Packet Storm
218735 6.3 MEDIUM
Adjacent 		bluetooth bluetooth_core Pairing in Bluetooth® Core v5.2 and earlier may permit an unauthenticated attacker to acquire credentials with two pairing devices via adjacent access when the unauthenticated user initiates differen… CWE-436
 Interpretation Conflict 		CVE-2020-10134 2024-11-21 13:54 2020-05-20 Show GitHub Exploit DB Packet Storm
218736 8.8 HIGH
Network 		powerdns recursor An issue has been found in PowerDNS Recursor 4.1.0 up to and including 4.3.0. It allows an attacker (with enough privileges to change the system's hostname) to cause disclosure of uninitialized memor… CWE-125
Out-of-bounds Read 		CVE-2020-10030 2024-11-21 13:54 2020-05-20 Show GitHub Exploit DB Packet Storm
218737 7.8 HIGH
Local 		zephyrproject zephyr A malicious userspace application can cause a integer overflow and bypass security checks performed by system call handlers. The impact would depend on the underlying system call and can range from d… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-10067 2024-11-21 13:54 2020-05-12 Show GitHub Exploit DB Packet Storm
218738 6.5 MEDIUM
Network 		zephyrproject zephyr In updatehub_probe, right after JSON parsing is complete, objects\[1] is accessed from the output structure in two different places. If the JSON contained less than two elements, this access would re… CWE-824
 Access of Uninitialized Pointer 		CVE-2020-10060 2024-11-21 13:54 2020-05-12 Show GitHub Exploit DB Packet Storm
218739 4.8 MEDIUM
Network 		zephyrproject zephyr The UpdateHub module disables DTLS peer checking, which allows for a man in the middle attack. This is mitigated by firmware images requiring valid signatures. However, there is no benefit to using D… CWE-295
Improper Certificate Validation  		CVE-2020-10059 2024-11-21 13:54 2020-05-12 Show GitHub Exploit DB Packet Storm
218740 7.8 HIGH
Local 		zephyrproject zephyr Multiple syscalls in the Kscan subsystem perform insufficient argument validation, allowing code executing in userspace to potentially gain elevated privileges. See NCC-ZEP-006 This issue affects: ze… CWE-20
 Improper Input Validation  		CVE-2020-10058 2024-11-21 13:54 2020-05-12 Show GitHub Exploit DB Packet Storm