Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231011 4.3 警告 simplegallery - SimpleGallery の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6157 2012-12-20 18:34 2007-11-28 Show GitHub Exploit DB Packet Storm
231012 6 警告 迅雷 - Xunlei Thunder の pplayer.dll_1_work におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6144 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
231013 7.5 危険 vu - VU Case Manager の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6143 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
231014 4.3 警告 salims softhouse - ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6142 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
231015 4.3 警告 vbtube - vBTube の vBTube.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6141 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
231016 7.5 危険 vu - VU Mass Mailer の redir.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6138 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
231017 4.3 警告 phpslideshow - PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6135 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
231018 7.5 危険 PHPKIT - PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6134 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
231019 2.1 注意 レッドハット - scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性 CWE-16
環境設定 		CVE-2007-6131 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
231020 7.5 危険 project alumni - project alumni における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6127 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210121 5.5 MEDIUM
Local 		gpac gpac The gf_dash_segmenter_probe_input function in GPAC v0.8 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted file in the MP4Box command. CWE-476
 NULL Pointer Dereference 		CVE-2020-22352 2024-11-21 14:13 2021-08-5 Show GitHub Exploit DB Packet Storm
210122 6.1 MEDIUM
Network 		nukeviet nukeviet Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module. CWE-79
Cross-site Scripting 		CVE-2020-22765 2024-11-21 14:13 2021-07-30 Show GitHub Exploit DB Packet Storm
210123 8.8 HIGH
Network 		flatpress flatpress Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php. CWE-352
 Origin Validation Error 		CVE-2020-22761 2024-11-21 14:13 2021-07-30 Show GitHub Exploit DB Packet Storm
210124 4.8 MEDIUM
Network 		naviwebs navigatecms Cross Site Scripting (XSS) vulnerability in NavigateCMS NavigateCMS 2.9 via the name="wrong_path_redirect" feature. CWE-79
Cross-site Scripting 		CVE-2020-23243 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210125 4.8 MEDIUM
Network 		naviwebs navigatecms Cross Site Scripting (XSS) vulnerability in NavigateCMS 2.9 when performing a Create or Edit via the Tools feature. CWE-79
Cross-site Scripting 		CVE-2020-23242 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210126 4.8 MEDIUM
Network 		cmsmadesimple cms_made_simple Cross Site Scripting (XSS) vulnerability in CMS Made Simple 2.2.14 in "Extra" via 'News > Article" feature. CWE-79
Cross-site Scripting 		CVE-2020-23241 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210127 4.8 MEDIUM
Network 		cmsmadesimple cms_made_simple Cross Site Scripting (XSS) vulnerablity in CMS Made Simple 2.2.14 via the Logic field in the Content Manager feature. CWE-79
Cross-site Scripting 		CVE-2020-23240 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210128 4.8 MEDIUM
Network 		textpattern textpattern Cross Site Scripting (XSS) vulnerability in Textpattern CMS 4.8.1 via Custom fields in the Menu Preferences feature. CWE-79
Cross-site Scripting 		CVE-2020-23239 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210129 5.4 MEDIUM
Network 		evo evolution_cms Cross Site Scripting (XSS) vulnerability in Evolution CMS 2.0.2 via the Document Manager feature. CWE-79
Cross-site Scripting 		CVE-2020-23238 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
210130 4.8 MEDIUM
Network 		lavalite lavalite Cross Site Scripting (XSS) vulnerabiity exists in LavaLite CMS 5.8.0 via the Menu Blocks feature, which can be bypassed by using HTML event handlers, such as "ontoggle,". CWE-79
Cross-site Scripting 		CVE-2020-23234 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm