Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227861	6	警告	tuxplanet	-	BilboBlog の admin/delete.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3302	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

227862	3.5	注意	tuxplanet	-	BilboBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3301	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

227863	6	警告	socialengine	-	SE における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3298	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

227864	7.5	危険	socialengine	-	SE における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3297	2012-12-20 18:52	2008-07-25	Show	GitHub Exploit DB Packet Storm

227865	5	警告	sierra	-	SWAT におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3286	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

227866	5	警告	レッドハット	-	Red Hat Enterprise IPA および FreeIPA のデフォルト設定における Kerberos マスターキーを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3274	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

227867	5	警告	winsoftmagic	-	WinSoftMagic WRPC Lite におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-3269	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

227868	7.5	危険	softacid	-	SoftAcid HRS Multi の picture_pic_bv.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3266	2012-12-20 18:52	2008-07-24	Show	GitHub Exploit DB Packet Storm

227869	7.5	危険	Zoph	-	Zoph における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3258	2012-12-20 18:52	2008-07-22	Show	GitHub Exploit DB Packet Storm

227870	7.5	危険	siteframe	-	Siteframe CMS の folder.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3256	2012-12-20 18:52	2008-07-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209561	6.1	MEDIUM Network	openiam	openiam	OpenIAM before 4.2.0.3 allows XSS in the Add New User feature.	CWE-79 Cross-site Scripting	CVE-2020-13418	2024-11-21 14:01	2021-04-7	Show	GitHub Exploit DB Packet Storm

209562	8.8	HIGH Network	webkitgtk	webkitgtk	A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.	CWE-416 Use After Free	CVE-2020-13558	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

209563	7.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13554	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

209564	6.1	MEDIUM Network	nanohttpd	nanohttpd	An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that …	CWE-79 Cross-site Scripting	CVE-2020-13697	2024-11-21 14:01	2021-02-23	Show	GitHub Exploit DB Packet Storm

209565	7.8	HIGH Local	sytech	xlreporter	An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite…	CWE-276 Incorrect Default Permissions	CVE-2020-13549	2024-11-21 14:01	2021-02-20	Show	GitHub Exploit DB Packet Storm

209566	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attack…	CWE-276 Incorrect Default Permissions	CVE-2020-13555	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

209567	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13553	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

209568	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables …	CWE-276 Incorrect Default Permissions	CVE-2020-13552	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

209569	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an att…	CWE-276 Incorrect Default Permissions	CVE-2020-13551	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

209570	7.7	HIGH Network	advantech	webaccess\/scada	A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can s…	CWE-22 Path Traversal	CVE-2020-13550	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm