Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230661 7.8 危険 scrymud - ScryMUD における脆弱性 - CVE-2007-1098 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230662 10 危険 wiclear - Wiclear の upload tool における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-1097 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230663 6.8 警告 VirtueMart - VirtueMart の ps_cart.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1096 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
230664 7.5 危険 TYPO3 Association - TYPO3 用の class.t3lib_formmail.php における任意の電子メールヘッダを挿入される脆弱性 - CVE-2007-1081 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
230665 7.8 危険 turbosoft - TurboFTP におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-1080 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
230666 7.8 危険 rhinosoft - Rhino Software の Inc. FTP Voyager におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1079 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
230667 7.5 危険 phptraffica - phpTrafficA におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-1076 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
230668 7.8 危険 turbosoft - TurboFTP におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1075 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
230669 10 危険 トレンドマイクロ - Windows 用などの Trend Micro ServerProtect におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1070 2012-12-20 18:19 2007-02-15 Show GitHub Exploit DB Packet Storm
230670 7.8 危険 VMware - VMware Workstation のメモリ管理におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1069 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210941 5.4 MEDIUM
Network 		bludit bludit showAlert() in the administration panel in Bludit 3.12.0 allows XSS. CWE-79
Cross-site Scripting 		CVE-2020-13889 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
210942 6.7 MEDIUM
Network 		wso2 identity_server_as_key_manager
api_microgateway
api_manager 		In WSO2 API Manager 3.0.0 and earlier, WSO2 API Microgateway 2.2.0, and WSO2 IS as Key Manager 5.9.0 and earlier, Management Console allows XXE during addition or update of a Lifecycle. CWE-611
XXE 		CVE-2020-13883 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
210943 7.5 HIGH
Network 		pam_tacplus_project
debian
canonical
arista 		pam_tacplus
debian_linux
ubuntu_linux
cloudvision_portal 		In support.c in pam_tacplus 1.3.8 through 1.5.1, the TACACS+ shared secret gets logged via syslog if the DEBUG loglevel and journald are used. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-13881 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
210944 7.5 HIGH
Network 		sqlite
fedoraproject
debian
oracle
siemens
netapp 		sqlite
fedora
debian_linux
hyperion_infrastructure_technology
enterprise_manager_ops_center
communications_network_charging_and_control
zfs_storage_appliance_kit
communications_m… 		SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late. CWE-416
 Use After Free 		CVE-2020-13871 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
210945 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from multiple stored XSS vulnerabilities. An author user can create posts that result in stored XSS vulnerabilities, by using a cr… CWE-79
Cross-site Scripting 		CVE-2020-13865 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
210946 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from a stored XSS vulnerability. An author user can create posts that result in a stored XSS by using a crafted payload in custom … CWE-79
Cross-site Scripting 		CVE-2020-13864 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
210947 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name. CWE-79
Cross-site Scripting 		CVE-2020-13870 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
210948 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name. CWE-79
Cross-site Scripting 		CVE-2020-13869 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
210949 6.5 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity. CWE-352
 Origin Validation Error 		CVE-2020-13868 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
210950 5.5 MEDIUM
Local 		targetcli-fb_project
fedoraproject 		targetcli-fb
fedora 		Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files). CWE-276
Incorrect Default Permissions  		CVE-2020-13867 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm