Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231071	7.5	危険	scriptmate	-	ScriptMate User Manager における重要な情報を取得される脆弱性	-	CVE-2006-6583	2012-12-20 18:02	2006-12-15	Show	GitHub Exploit DB Packet Storm

231072	6.8	警告	scriptmate	-	ScriptMate User Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6582	2012-12-20 18:02	2006-12-15	Show	GitHub Exploit DB Packet Storm

231073	7.5	危険	vernet loic	-	Vernet Loic PHP_Debug の tests/debug_test.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6581	2012-12-20 18:02	2006-12-15	Show	GitHub Exploit DB Packet Storm

231074	6.4	警告	scriptphp	-	ProNews の admin/change.php におけるアイテム内の情報を追加される脆弱性	-	CVE-2006-6580	2012-12-20 18:02	2006-12-15	Show	GitHub Exploit DB Packet Storm

231075	6.8	警告	skulls	-	Skulls! における脆弱性	-	CVE-2006-6557	2012-12-20 18:02	2006-12-14	Show	GitHub Exploit DB Packet Storm

231076	7.5	危険	tucows	-	Tucows CCS の libs/tucows/api/cartridges/crt_TUCOWS_domains/lib/domainutils.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6551	2012-12-20 18:02	2006-12-14	Show	GitHub Exploit DB Packet Storm

231077	6.8	警告	vt-forum	-	Vt-Forum Lite におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6532	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

231078	6.8	警告	wikitimescale	-	WikiTimeScale TwoZero におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6522	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

231079	7.5	危険	scriptphp	-	Messageriescripthp の lire-avis.php における SQL インジェクションの脆弱性	-	CVE-2006-6521	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

231080	6.8	警告	scriptphp	-	Messageriescripthp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6520	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211421	8.8	HIGH Network	tufin	securetrack	Multiple Cross-Site Request Forgery (CSRF) vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA.	CWE-352 Origin Validation Error	CVE-2020-13460	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

211422	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13409	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

211423	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13408	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

211424	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13407	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

211425	7.8	HIGH Local	softmaker	planmaker_2021	A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted malforme…	CWE-787 Out-of-bounds Write	CVE-2020-13586	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211426	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause…	CWE-787 Out-of-bounds Write	CVE-2020-13580	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211427	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the docum…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-13579	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211428	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13564	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

211429	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13563	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

211430	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13562	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm