Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 4:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231141 6.8 警告 vigilecms - VigileCMS の index.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-6087 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
231142 9.3 危険 vigilecms - VigileCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6086 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
231143 4.3 警告 vigilecms - VigileCMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6085 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
231144 9.3 危険 sciurus - Sciurus Hosting Panel の acp/savenews.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6082 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
231145 7.5 危険 skyportal - SkyPortal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6078 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
231146 7.5 危険 profilecms - ProfileCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6058 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
231147 6.8 警告 swsoft - SWSoft Confixx Professional の fehler.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6042 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
231148 7.5 危険 rigs of rogs - RoR のサーバの sequencer.cpp におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6041 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
231149 9 危険 Wonderware - Invensys Wonderware InTouch における任意のプログラムを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6033 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
231150 7.8 危険 van dyke technologies - VanDyke VShell におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6031 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213351 7.8 HIGH
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a type confusion condition, which m… CWE-843
Type Confusion 		CVE-2020-16229 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213352 7.8 HIGH
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. A double free vulnerability caused by processing specially crafted project files may allow remote code execution, disclosure/modificatio… CWE-415
 Double Free 		CVE-2020-16217 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213353 7.8 HIGH
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause a stack-based buffer overflow, whic… CWE-20
 Improper Input Validation  		CVE-2020-16215 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213354 7.8 HIGH
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Processing specially crafted project files lacking proper validation of user supplied data may cause the system to write outside the int… CWE-787
 Out-of-bounds Write 		CVE-2020-16213 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213355 5.5 MEDIUM
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. An out-of-bounds read vulnerability may be exploited by processing specially crafted project files, which may allow an attacker to read … CWE-125
Out-of-bounds Read 		CVE-2020-16211 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213356 7.8 HIGH
Local 		advantech webaccess\/hmi_designer Advantech WebAccess HMI Designer, Versions 2.1.9.31 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by opening specially crafted project files that may overflow the he… CWE-787
 Out-of-bounds Write 		CVE-2020-16207 2024-11-21 14:06 2020-08-7 Show GitHub Exploit DB Packet Storm
213357 6.1 MEDIUM
Network 		limesurvey limesurvey LimeSurvey 4.3.2 allows reflected XSS because application/controllers/LSBaseController.php lacks code to validate parameters. CWE-79
Cross-site Scripting 		CVE-2020-16192 2024-11-21 14:06 2020-08-6 Show GitHub Exploit DB Packet Storm
213358 7.5 HIGH
Network 		acti nvr ActiveMediaServer.exe in ACTi NVR3 Standard Server 3.0.12.42 allows remote unauthenticated attackers to trigger a buffer overflow and application termination via a malformed payload. CWE-120
Classic Buffer Overflow 		CVE-2020-15956 2024-11-21 14:06 2020-08-5 Show GitHub Exploit DB Packet Storm
213359 5.4 MEDIUM
Network 		gantt-chart_project gantt-chart An issue was discovered in the Gantt-Chart module before 5.5.5 for Jira. Due to missing validation of user input, it is vulnerable to a persistent XSS attack. An attacker can embed the attack vectors… CWE-79
Cross-site Scripting 		CVE-2020-15944 2024-11-21 14:06 2020-08-5 Show GitHub Exploit DB Packet Storm
213360 8.1 HIGH
Network 		gantt-chart_project gantt-chart An issue was discovered in the Gantt-Chart module before 5.5.4 for Jira. Due to a missing privilege check, it is possible to read and write to the module configuration of other users. This can also b… CWE-79
CWE-862
Cross-site Scripting
 Missing Authorization 		CVE-2020-15943 2024-11-21 14:06 2020-08-5 Show GitHub Exploit DB Packet Storm