Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249471 6.8 警告 guestbara - Guestbara の admin/configuration.php における任意の PHP コードを挿入される脆弱性 - CVE-2007-1554 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249472 5 警告 guestbara - Guestbara の admin/configuration.php における管理者アカウントのパスワードを変更される脆弱性 - CVE-2007-1553 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249473 5 警告 シスコシステムズ - Cisco IP Phone 7940 などにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1542 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249474 6.8 警告 dayfox designs - dfblog の postpost.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1525 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249475 6.8 警告 cicoandcico - Cicoandcico CcMail の functions/update.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1516 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249476 6.8 警告 grafx - CWB PRO の comanda.php における PHP リモートファイルインクルーションの脆弱性 - CVE-2007-1513 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249477 7.1 危険 frontbase - FrontBase Relational Database Server におけるバッファオーバーフローの脆弱性 - CVE-2007-1511 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
249478 9.3 危険 avant force - Avant Browser におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1501 2012-06-26 15:46 2007-03-19 Show GitHub Exploit DB Packet Storm
249479 4.3 警告 Gentoo Linux - LSAT における任意のファイルを上書きされる脆弱性 - CVE-2007-1500 2012-06-26 15:46 2007-03-18 Show GitHub Exploit DB Packet Storm
249480 5.2 警告 アバイア - 複数の Avaya 製品で使用されている Apache Tomcat における外部から攻撃される脆弱性 - CVE-2007-1491 2012-06-26 15:46 2007-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209221 7.2 HIGH
Network 		jaws_project jaws Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of UploadTheme to upload a theme ZIP archive containing a .php file that is able to execute OS … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-35657 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
209222 7.2 HIGH
Network 		jaws_project jaws Jaws through 1.8.0 allows remote authenticated administrators to execute arbitrary code via crafted use of admin.php?reqGadget=Components&reqAction=InstallGadget&comp=FileBrowser and admin.php?reqGad… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-35656 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
209223 5.5 MEDIUM
Local 		microsoft azure_sphere A denial-of-service vulnerability exists in the asynchronous ioctl functionality of Microsoft Azure Sphere 20.05. A sequence of specially crafted ioctl calls can cause a denial of service. An attacke… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-35609 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
209224 7.8 HIGH
Local 		microsoft azure_sphere A code execution vulnerability exists in the normal world’s signed code execution functionality of Microsoft Azure Sphere 20.07. A specially crafted AF_PACKET socket can cause a process to create an … CWE-74
Injection 		CVE-2020-35608 2024-11-21 14:27 2020-12-23 Show GitHub Exploit DB Packet Storm
209225 8.8 HIGH
Network 		mediawiki mediawiki An issue was discovered in the PushToWatch extension for MediaWiki through 1.35.1. The primary form did not implement an anti-CSRF token and therefore was completely vulnerable to CSRF attacks agains… CWE-352
 Origin Validation Error 		CVE-2020-35626 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
209226 8.8 HIGH
Network 		mediawiki mediawiki An issue was discovered in the Widgets extension for MediaWiki through 1.35.1. Any user with the ability to edit pages within the Widgets namespace could call any static function within any class (de… CWE-862
 Missing Authorization 		CVE-2020-35625 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
209227 5.3 MEDIUM
Network 		mediawiki mediawiki An issue was discovered in the SecurePoll extension for MediaWiki through 1.35.1. The non-admin vote list contains a full vote timestamp, which may provide unintended clues about how a voting process… CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-35624 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
209228 7.5 HIGH
Network 		mediawiki mediawiki An issue was discovered in the CasAuth extension for MediaWiki through 1.35.1. Due to improper username validation, it allowed user impersonation with trivial manipulations of certain characters with… CWE-20
CWE-706
 Improper Input Validation 
 Use of Incorrectly-Resolved Name or Reference 		CVE-2020-35623 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
209229 6.1 MEDIUM
Network 		mediawiki mediawiki An issue was discovered in the GlobalUsage extension for MediaWiki through 1.35.1. SpecialGlobalUsage.php calls WikiMap::makeForeignLink unsafely. The $page variable within the formatItem function wa… CWE-79
Cross-site Scripting 		CVE-2020-35622 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm
209230 8.8 HIGH
Network 		webmin webmin Arbitrary command execution can occur in Webmin through 1.962. Any user authorized for the Package Updates module can execute arbitrary commands with root privileges via vectors involving %0A and %0C… CWE-78
OS Command  		CVE-2020-35606 2024-11-21 14:27 2020-12-22 Show GitHub Exploit DB Packet Storm