Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248601 8.5 危険 アップル - Apple Safari における同一生成元ポリシを回避される脆弱性 - CVE-2007-3514 2012-06-26 15:46 2007-07-3 Show GitHub Exploit DB Packet Storm
248602 9.3 危険 flac123 - flac123 の vorbiscomment.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3507 2012-06-26 15:46 2007-07-2 Show GitHub Exploit DB Packet Storm
248603 7.5 危険 FreeType Project - FreeType の src/base/ftbimap.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3506 2012-06-26 15:46 2007-07-2 Show GitHub Exploit DB Packet Storm
248604 4.3 警告 JBMC Software - DirectAdmin の CMD_USER_STATS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3501 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
248605 6.8 警告 conti - Conti FtpServer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3492 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
248606 9.3 危険 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point VPN-1 Edge X 埋め込み型 NGX におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-3489 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
248607 4.3 警告 altavista - AltaVista の検索エンジンにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3486 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
248608 7.8 危険 アップル
マイクロソフト		 - Apple Safari における "同一生成元ポリシ" を回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3482 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
248609 4.3 警告 LibGD project - GD Graphics Library の gdImageStringFTEx におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-362
競合状態 		CVE-2007-3478 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
248610 7.5 危険 clicktech - ClickGallery Server の edit_image.asp における SQL インジェクションの脆弱性 - CVE-2007-3411 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210281 8.1 HIGH
Network 		bouncycastle
apache
oracle 		legion-of-the-bouncy-castle-java-crytography-api
karaf
peoplesoft_enterprise_peopletools
webcenter_portal
utilities_framework
banking_extensibility_workbench
banking_virtual_account… 		An issue was discovered in Legion of the Bouncy Castle BC Java 1.65 and 1.66. The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the password, allowing incorrect pas… NVD-CWE-Other
CVE-2020-28052 2024-11-21 14:22 2020-12-18 Show GitHub Exploit DB Packet Storm
210282 7.3 HIGH
Network 		datatables datatables.net All versions of package datatables.net are vulnerable to Prototype Pollution due to an incomplete fix for https://snyk.io/vuln/SNYK-JS-DATATABLESNET-598806. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2020-28458 2024-11-21 14:22 2020-12-16 Show GitHub Exploit DB Packet Storm
210283 7.2 HIGH
Network 		alumni_management_system_project alumni_management_system A Remote Code Execution vulnerability exists in DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary file in the gallery.php page and executing it on the server… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-28072 2024-11-21 14:22 2020-12-16 Show GitHub Exploit DB Packet Storm
210284 4.8 MEDIUM
Network 		s-cart s-cart This affects the package s-cart/core before 4.4. The search functionality of the admin dashboard in core/src/Admin/Controllers/AdminOrderController.phpindex is vulnerable to XSS. CWE-79
Cross-site Scripting 		CVE-2020-28457 2024-11-21 14:22 2020-12-16 Show GitHub Exploit DB Packet Storm
210285 6.1 MEDIUM
Network 		s-cart s-cart The package s-cart/core before 4.4 are vulnerable to Cross-site Scripting (XSS) via the admin panel. CWE-79
Cross-site Scripting 		CVE-2020-28456 2024-11-21 14:22 2020-12-16 Show GitHub Exploit DB Packet Storm
210286 5.5 MEDIUM
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader and PhantomPDF 10.1.0.37527 and earlier. There is a null pointer access/dereference while opening a crafted PDF file, leading the application to crash (denial … CWE-476
 NULL Pointer Dereference 		CVE-2020-28203 2024-11-21 14:22 2020-12-15 Show GitHub Exploit DB Packet Storm
210287 9.8 CRITICAL
Network 		js-data js-data All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn function. NVD-CWE-Other
CVE-2020-28442 2024-11-21 14:22 2020-12-15 Show GitHub Exploit DB Packet Storm
210288 7.3 HIGH
Network 		siemens sicam_a8000_cp-8000_firmware
sicam_a8000_cp-8021_firmware
sicam_a8000_cp-8022_firmware 		A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V16), SICAM A8000 CP-8021 (All versions < V16), SICAM A8000 CP-8022 (All versions < V16). A web server misconfiguration of t… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-28396 2024-11-21 14:22 2020-12-15 Show GitHub Exploit DB Packet Storm
210289 9.8 CRITICAL
Network 		corenlp-js-interface_project corenlp-js-interface All versions of package corenlp-js-interface are vulnerable to Command Injection via the main function. CWE-78
OS Command  		CVE-2020-28440 2024-11-21 14:22 2020-12-12 Show GitHub Exploit DB Packet Storm
210290 9.8 CRITICAL
Network 		corenlp-js-prefab_project corenlp-js-prefab This affects all versions of package corenlp-js-prefab. The injection point is located in line 10 in 'index.js.' It depends on a vulnerable package 'corenlp-js-interface.' Vulnerability can be exploi… CWE-78
OS Command  		CVE-2020-28439 2024-11-21 14:22 2020-12-12 Show GitHub Exploit DB Packet Storm