Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230051	4.3	警告	softbiz	-	Softbiz Photo Gallery におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3511	2012-12-20 18:52	2008-08-7	Show	GitHub Exploit DB Packet Storm

230052	5	警告	wogan may	-	LiteNews における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3508	2012-12-20 18:52	2008-08-7	Show	GitHub Exploit DB Packet Storm

230053	7.5	危険	wogan may	-	LiteNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3507	2012-12-20 18:52	2008-08-7	Show	GitHub Exploit DB Packet Storm

230054	7.5	危険	polypager	-	PolyPager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3506	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230055	4.3	警告	polypager	-	PolyPager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3505	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230056	5	警告	webgui	-	Plain Black WebGUI の RSSFromParent における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-3503	2012-12-20 18:52	2008-06-20	Show	GitHub Exploit DB Packet Storm

230057	5	警告	RealVNC	-	RealVNC Windows Client の vncviewer.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3493	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230058	7.5	危険	scripts24	-	Scripts24 iPost および iTGP の go.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3491	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230059	7.5	危険	phpx	-	PHPX の includes/functions.inc.php の checkCookie 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3489	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

230060	7.5	危険	phpauctions	-	PHPAuction GPL の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3487	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214451	7.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13554	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

214452	6.1	MEDIUM Network	nanohttpd	nanohttpd	An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that …	CWE-79 Cross-site Scripting	CVE-2020-13697	2024-11-21 14:01	2021-02-23	Show	GitHub Exploit DB Packet Storm

214453	7.8	HIGH Local	sytech	xlreporter	An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite…	CWE-276 Incorrect Default Permissions	CVE-2020-13549	2024-11-21 14:01	2021-02-20	Show	GitHub Exploit DB Packet Storm

214454	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attack…	CWE-276 Incorrect Default Permissions	CVE-2020-13555	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214455	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13553	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214456	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables …	CWE-276 Incorrect Default Permissions	CVE-2020-13552	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214457	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an att…	CWE-276 Incorrect Default Permissions	CVE-2020-13551	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214458	7.7	HIGH Network	advantech	webaccess\/scada	A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can s…	CWE-22 Path Traversal	CVE-2020-13550	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214459	8.8	HIGH Network	accusoft	imagegear	An out-of-bounds write vulnerability exists in the PSD Header processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to code execution. An attacker can provi…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2020-13585	2024-11-21 14:01	2021-02-11	Show	GitHub Exploit DB Packet Storm

214460	7.5	HIGH Network	micrium	uc-http	A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP requ…	CWE-476 NULL Pointer Dereference	CVE-2020-13583	2024-11-21 14:01	2021-02-11	Show	GitHub Exploit DB Packet Storm