Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249451 7.5 危険 ATRC - ATutor における SQL インジェクションの脆弱性 - CVE-2007-0381 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249452 5 警告 docman - DocMan における重要な情報 (フルパス) を取得される脆弱性 - CVE-2007-0380 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249453 6.8 警告 docman - DocMan におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0379 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249454 7.5 危険 docman - DocMan における SQL インジェクションの脆弱性 - CVE-2007-0378 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249455 7.5 危険 francisco burzi - Francisco Burzi PHP-Nuke における SQL インジェクションの脆弱性 - CVE-2007-0372 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249456 4.3 警告 common controls replacement project - CCRP BrowseDialog Server の ccrpbds6.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0371 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
249457 7.5 危険 comscripts - PHPMyphorum の mep/frame.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0361 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
249458 5 警告 fritzdsl - Fritz!DSL の AVM IGD CTRL Service におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0357 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
249459 5 警告 マイクロソフト
common controls replacement project		 - CCRP FTV ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0356 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
249460 4.3 警告 cvstrac - CVSTrac の format.c の is_eow 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0347 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209221 5.7 MEDIUM
Physics 		logmein lastpass An issue was discovered in the LogMein LastPass Password Manager (aka com.lastpass.ilastpass) app 4.8.11.2403 for iOS. The PIN authentication for unlocking can be bypassed by forcing the authenticati… CWE-287
Improper Authentication 		CVE-2020-35207 2024-11-21 14:26 2020-12-13 Show GitHub Exploit DB Packet Storm
209222 5.4 MEDIUM
Network 		igniterealtime openfire Ignite Realtime Openfire 4.6.0 has plugins/dbaccess/db-access.jsp sql Stored XSS. CWE-79
Cross-site Scripting 		CVE-2020-35202 2024-11-21 14:26 2020-12-13 Show GitHub Exploit DB Packet Storm
209223 5.4 MEDIUM
Network 		igniterealtime openfire Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp users Stored XSS. CWE-79
Cross-site Scripting 		CVE-2020-35201 2024-11-21 14:26 2020-12-13 Show GitHub Exploit DB Packet Storm
209224 6.1 MEDIUM
Network 		igniterealtime openfire Ignite Realtime Openfire 4.6.0 has plugins/clientcontrol/spark-form.jsp Reflective XSS. CWE-79
Cross-site Scripting 		CVE-2020-35200 2024-11-21 14:26 2020-12-13 Show GitHub Exploit DB Packet Storm
209225 5.4 MEDIUM
Network 		igniterealtime openfire Ignite Realtime Openfire 4.6.0 has create-bookmark.jsp groupchatJID Stored XSS. CWE-79
Cross-site Scripting 		CVE-2020-35199 2024-11-21 14:26 2020-12-13 Show GitHub Exploit DB Packet Storm
209226 5.3 MEDIUM
Network 		awstats
debian
fedoraproject 		awstats
debian_linux
fedora 		In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read a file in the /etc/awstats/awstats.conf fo… CWE-22
Path Traversal 		CVE-2020-35176 2024-11-21 14:26 2020-12-12 Show GitHub Exploit DB Packet Storm
209227 5.3 MEDIUM
Network 		frappe frappe Frappe Framework 12 and 13 does not properly validate the HTTP method for the frappe.client API. NVD-CWE-noinfo
CVE-2020-35175 2024-11-21 14:26 2020-12-12 Show GitHub Exploit DB Packet Storm
209228 5.3 MEDIUM
Network 		mquery_project mquery lib/utils.js in mquery before 3.2.3 allows a pollution attack because a special property (e.g., __proto__) can be copied during a merge or clone operation. NVD-CWE-noinfo
CVE-2020-35149 2024-11-21 14:26 2020-12-12 Show GitHub Exploit DB Packet Storm
209229 8.8 HIGH
Network 		infolific ultimate_category_excluder The ultimate-category-excluder plugin before 1.2 for WordPress allows ultimate-category-excluder.php CSRF. CWE-352
 Origin Validation Error 		CVE-2020-35135 2024-11-21 14:26 2020-12-11 Show GitHub Exploit DB Packet Storm
209230 5.4 MEDIUM
Network 		phpldapadmin_project
fedoraproject 		phpldapadmin
fedora 		An XSS issue has been discovered in phpLDAPadmin before 1.2.6.2 that allows users to store malicious values that may be executed by other users at a later time via get_request in lib/function.php. CWE-79
Cross-site Scripting 		CVE-2020-35132 2024-11-21 14:26 2020-12-11 Show GitHub Exploit DB Packet Storm