Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231141	4.3	警告	Tincan	-	Webbler CMS の uploader/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4071	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231142	5.8	警告	webyapar	-	Webyapar における SQL インジェクションの脆弱性	-	CVE-2007-4068	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231143	5.8	警告	VMware	-	EMC VMware の IntraProcessLogging.dll における絶対パストラバーサルの脆弱性	-	CVE-2007-4059	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231144	4.6	警告	ultradefrag	-	UltraDefrag の FindFiles 関数におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-4051	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231145	4.3	警告	phpsysinfo	-	phpSysInfo の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4048	2012-12-20 18:33	2007-07-30	Show	GitHub Exploit DB Packet Storm

231146	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-4043	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

231147	9.3	危険	Yahoo!	-	Yahoo! Widgets の YDPCTL.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4034	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

231148	7.5	危険	webSPELL	-	Webspell の index.php における絶対パストラバーサルの脆弱性	-	CVE-2007-4028	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

231149	6.8	警告	Telaxus LLC	-	epesi framework における任意の PHP コードを実行される脆弱性	-	CVE-2007-4026	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

231150	4.3	警告	サン・マイクロシステムズ	-	Windows 用の SJS Application Server における JSP ソースコードを取得される脆弱性	-	CVE-2007-4025	2012-12-20 18:33	2007-07-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212831	7.8	HIGH Local	softmaker	planmaker_2021	A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted malforme…	CWE-787 Out-of-bounds Write	CVE-2020-13586	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212832	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause…	CWE-787 Out-of-bounds Write	CVE-2020-13580	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212833	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the docum…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-13579	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212834	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13564	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

212835	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13563	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

212836	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13562	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

212837	8.8	HIGH Network	open-emr	openemr	A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP …	CWE-352 Origin Validation Error	CVE-2020-13569	2024-11-21 14:01	2021-01-28	Show	GitHub Exploit DB Packet Storm

212838	7.5	HIGH Network	silabs	micrium_uc-http	A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP requ…	CWE-476 NULL Pointer Dereference	CVE-2020-13582	2024-11-21 14:01	2021-01-27	Show	GitHub Exploit DB Packet Storm

212839	7.5	HIGH Network	freyrscada	iec-60879-5-104_server_simulator	A denial-of-service vulnerability exists in the traffic-logging functionality of FreyrSCADA IEC-60879-5-104 Server Simulator 21.04.028. A specially crafted packet can lead to denial of service. An at…	CWE-697 Incorrect Comparison	CVE-2020-13559	2024-11-21 14:01	2021-01-12	Show	GitHub Exploit DB Packet Storm

212840	9.8	CRITICAL Network	thecodingmachine	gotenberg	In Gotenberg through 6.2.1, insecure permissions for tini (writable by user gotenberg) potentially allow an attacker to overwrite the file, which can lead to denial of service or code execution.	CWE-276 Incorrect Default Permissions	CVE-2020-13452	2024-11-21 14:01	2021-01-8	Show	GitHub Exploit DB Packet Storm