Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249511 4.3 警告 flowers - FloweRS の cas.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2308 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249512 7.5 危険 expow - Expow の autoindex.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2302 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249513 7.5 危険 arash - audioCMS arash における任意の PHP コードが実行される脆弱性 - CVE-2007-2301 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249514 7.5 危険 frogss - Frogss CMS における SQL インジェクションの脆弱性 - CVE-2007-2299 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249515 7.5 危険 GForge Group - Garennes における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2298 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249516 7.8 危険 Digium - Asterisk のSIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2297 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249517 7.8 危険 Digium - Asterisk の Manager Interface におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2294 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249518 7.6 危険 Digium - Asterisk の SIP チャネル T.38 SDP パーサの chan_sip.c の process_sdp 関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2293 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249519 7.5 危険 cafelog - B2 Weblog および News Publishing Tool における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2290 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
249520 7.5 危険 alexscriptengine - Download-Engine の admin/includes/spaw/dialogs/insert_link.php における任意の PHP コードが実行される脆弱性 - CVE-2007-2289 2012-06-26 15:46 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209211 5.3 MEDIUM
Network 		ninjaforms ninja_forms The Ninja Forms plugin before 3.4.28 for WordPress lacks escaping for submissions-table fields. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2020-36173 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
209212 6.1 MEDIUM
Network 		advancedcustomfields advanced_custom_fields The Advanced Custom Fields plugin before 5.8.12 for WordPress mishandles the escaping of strings in Select2 dropdowns, potentially leading to XSS. CWE-79
Cross-site Scripting 		CVE-2020-36172 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
209213 6.1 MEDIUM
Network 		elementor website_builder The Elementor Website Builder plugin before 3.0.14 for WordPress does not properly restrict SVG uploads. CWE-79
Cross-site Scripting 		CVE-2020-36171 2024-11-21 14:28 2021-01-7 Show GitHub Exploit DB Packet Storm
209214 5.3 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member plugin before 2.1.13 for WordPress mishandles hidden name="timestamp" fields in forms. NVD-CWE-noinfo
CVE-2020-36170 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209215 8.8 HIGH
Local 		veritas netbackup
opscenter 		An issue was discovered in Veritas NetBackup through 8.3.0.1 and OpsCenter through 8.3.0.1. Processes using OpenSSL attempt to load and execute libraries from paths that do not exist by default on th… NVD-CWE-noinfo
CVE-2020-36169 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209216 8.8 HIGH
Local 		veritas resiliency_platform An issue was discovered in Veritas Resiliency Platform 3.4 and 3.5. It leverages OpenSSL on Windows systems when using the Managed Host addon. On start-up, it loads the OpenSSL library. This library … NVD-CWE-noinfo
CVE-2020-36168 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209217 8.8 HIGH
Local 		veritas backup_exec An issue was discovered in the server in Veritas Backup Exec through 16.2, 20.6 before hotfix 298543, and 21.1 before hotfix 657517. On start-up, it loads the OpenSSL library from the Installation fo… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-36167 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209218 9.8 CRITICAL
Network 		1234n minicms Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter. CWE-22
Path Traversal 		CVE-2020-36052 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209219 7.5 HIGH
Network 		1234n minicms Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote attackers to read arbitrary files via the state parameter. CWE-22
Path Traversal 		CVE-2020-36051 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm
209220 8.8 HIGH
Local 		veritas infoscale
infoscale_operations_manager
storage_foundation
storage_foundation_and_high_availability 		An issue was discovered in Veritas InfoScale 7.x through 7.4.2 on Windows, Storage Foundation through 6.1 on Windows, Storage Foundation HA through 6.1 on Windows, and InfoScale Operations Manager (a… NVD-CWE-noinfo
CVE-2020-36166 2024-11-21 14:28 2021-01-6 Show GitHub Exploit DB Packet Storm