Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230801 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5589 2012-12-20 18:33 2007-10-17 Show GitHub Exploit DB Packet Storm
230802 5 警告 XScreenSaver project - xscreensaver におけるロックされたセッションへのアクセス権を取得される脆弱性 CWE-399
リソース管理の問題 		CVE-2007-5585 2012-12-20 18:33 2007-10-19 Show GitHub Exploit DB Packet Storm
230803 7.5 危険 Pligg - Pligg CMS の login.php におけるユーザのパスワードを再設定される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-5579 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230804 7.5 危険 Secure Ideas - BASE における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5578 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230805 4.3 警告 treble designs - 1024 CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5575 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230806 6.8 警告 phpdj - PHPDJ の djpage.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5574 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230807 4.3 警告 sphpblog - Simple PHP Blog におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-5572 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230808 2.6 注意 simple php forum - NSSboard におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5564 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230809 7.5 危険 VirtueMart - VirtueMart における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5563 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
230810 6.9 警告 シマンテック - Symantec Altiris Deployment Solution における認証資格情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-5555 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213491 7.5 HIGH
Network 		sqlite
fedoraproject
debian
oracle
siemens
netapp 		sqlite
fedora
debian_linux
hyperion_infrastructure_technology
enterprise_manager_ops_center
communications_network_charging_and_control
zfs_storage_appliance_kit
communications_m… 		SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late. CWE-416
 Use After Free 		CVE-2020-13871 2024-11-21 14:02 2020-06-7 Show GitHub Exploit DB Packet Storm
213492 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from multiple stored XSS vulnerabilities. An author user can create posts that result in stored XSS vulnerabilities, by using a cr… CWE-79
Cross-site Scripting 		CVE-2020-13865 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213493 5.4 MEDIUM
Network 		elementor elementor_page_builder The Elementor Page Builder plugin before 2.9.9 for WordPress suffers from a stored XSS vulnerability. An author user can create posts that result in a stored XSS by using a crafted payload in custom … CWE-79
Cross-site Scripting 		CVE-2020-13864 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213494 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. There is stored XSS via an asset volume name. CWE-79
Cross-site Scripting 		CVE-2020-13870 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213495 5.4 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.6 for Craft CMS. There is stored XSS via a guest name. CWE-79
Cross-site Scripting 		CVE-2020-13869 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213496 6.5 MEDIUM
Network 		verbb comments An issue was discovered in the Comments plugin before 1.5.5 for Craft CMS. CSRF affects comment integrity. CWE-352
 Origin Validation Error 		CVE-2020-13868 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213497 5.5 MEDIUM
Local 		targetcli-fb_project
fedoraproject 		targetcli-fb
fedora 		Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files). CWE-276
Incorrect Default Permissions  		CVE-2020-13867 2024-11-21 14:02 2020-06-6 Show GitHub Exploit DB Packet Storm
213498 7.5 HIGH
Network 		mqtt mqtt The MQTT protocol 3.1.1 requires a server to set a timeout value of 1.5 times the Keep-Alive value specified by a client, which allows remote attackers to cause a denial of service (loss of the abili… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-13849 2024-11-21 14:02 2020-06-5 Show GitHub Exploit DB Packet Storm
213499 8.1 HIGH
Network 		loadbalancer enterprise_va_max The web-services interface of Loadbalancer.org Enterprise VA MAX through 8.3.8 could allow an authenticated, remote, low-privileged attacker to conduct directory traversal attacks and obtain read and… CWE-22
Path Traversal 		CVE-2020-13377 2024-11-21 14:01 2023-05-12 Show GitHub Exploit DB Packet Storm
213500 8.8 HIGH
Network 		loadbalancer enterprise_va_max Loadbalancer.org Enterprise VA MAX through 8.3.8 has an OS Command Injection vulnerability that allows a remote authenticated attacker to execute arbitrary code. CWE-78
OS Command  		CVE-2020-13378 2024-11-21 14:01 2023-05-12 Show GitHub Exploit DB Packet Storm