Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230311	6.8	警告	xomol	-	Xomol CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2484	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

230312	6.8	警告	xomol	-	Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2483	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

230313	10	危険	phpraider	-	phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2481	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

230314	10	危険	plusphp	-	plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2480	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

230315	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin Gold の faq.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2460	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

230316	7.5	危険	phpclassifiedsscript	-	PHP Classifieds Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2453	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

230317	4.3	警告	TYPO3 Association	-	TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2452	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

230318	7.5	危険	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2451	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

230319	4.3	警告	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2450	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

230320	7.5	危険	wgcc	-	WGCC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2446	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214451	7.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13554	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

214452	6.1	MEDIUM Network	nanohttpd	nanohttpd	An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that …	CWE-79 Cross-site Scripting	CVE-2020-13697	2024-11-21 14:01	2021-02-23	Show	GitHub Exploit DB Packet Storm

214453	7.8	HIGH Local	sytech	xlreporter	An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite…	CWE-276 Incorrect Default Permissions	CVE-2020-13549	2024-11-21 14:01	2021-02-20	Show	GitHub Exploit DB Packet Storm

214454	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attack…	CWE-276 Incorrect Default Permissions	CVE-2020-13555	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214455	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13553	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214456	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables …	CWE-276 Incorrect Default Permissions	CVE-2020-13552	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214457	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an att…	CWE-276 Incorrect Default Permissions	CVE-2020-13551	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214458	7.7	HIGH Network	advantech	webaccess\/scada	A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can s…	CWE-22 Path Traversal	CVE-2020-13550	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

214459	8.8	HIGH Network	accusoft	imagegear	An out-of-bounds write vulnerability exists in the PSD Header processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to code execution. An attacker can provi…	CWE-131 Incorrect Calculation of Buffer Size	CVE-2020-13585	2024-11-21 14:01	2021-02-11	Show	GitHub Exploit DB Packet Storm

214460	7.5	HIGH Network	micrium	uc-http	A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP requ…	CWE-476 NULL Pointer Dereference	CVE-2020-13583	2024-11-21 14:01	2021-02-11	Show	GitHub Exploit DB Packet Storm