Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231331 7.5 危険 university of minnesota - MapServer の maptemplate.c におけるバッファオーバーフローの脆弱性 - CVE-2007-4629 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231332 7.5 危険 phpns - phpns の shownews.php における SQL インジェクションの脆弱性 - CVE-2007-4628 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231333 5 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4626 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231334 4.3 警告 polipo - Polipo におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4625 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231335 7.5 危険 winterburns.co.uk - ePersonnel の protection.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4608 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231336 7.5 危険 phpnuke-clan - PHP-Nuke 用の VWar モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4606 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231337 7.5 危険 VWar - VWar の convert/mvcw.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4605 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
231338 5 警告 Canonical - tcp-wrappers のリグレッションエラーにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4601 2012-12-20 18:33 2007-08-29 Show GitHub Exploit DB Packet Storm
231339 4.6 警告 PTC Inc. - Mathsoft Mathcad および PTC Mathcad の "ワークシート保護" 機能における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4600 2012-12-20 18:33 2007-10-18 Show GitHub Exploit DB Packet Storm
231340 7.5 危険 turnkey web tools - TurnkeyWebTools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4597 2012-12-20 18:33 2007-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210411 8.8 HIGH
Network 		phpmywind phpmywind SQL injection vulnerability found in PHPMyWind v.5.6 allows a remote attacker to gain privileges via the delete function of the administrator management page. CWE-89
SQL Injection 		CVE-2020-21060 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210412 9.8 CRITICAL
Network 		publiccms publiccms SQL Injection vulnerability found in PublicCMS v.4.0 allows a remote attacker to execute arbitrary code via sql parameter of the the SysSiteAdminControl. CWE-89
SQL Injection 		CVE-2020-20915 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210413 9.8 CRITICAL
Network 		publiccms publiccms SQL Injection vulnerability found in San Luan PublicCMS v.4.0 allows a remote attacker to execute arbitrary code via the sql parameter. CWE-89
SQL Injection 		CVE-2020-20914 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210414 9.8 CRITICAL
Network 		mingsoft mcms SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basic_title parameter. CWE-89
SQL Injection 		CVE-2020-20913 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210415 6.1 MEDIUM
Network 		kitesky kitecms Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the registering user parameter. CWE-79
Cross-site Scripting 		CVE-2020-20522 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210416 6.1 MEDIUM
Network 		kitesky kitecms Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitrary code via the comment parameter. CWE-79
Cross-site Scripting 		CVE-2020-20521 2024-11-21 14:12 2023-04-5 Show GitHub Exploit DB Packet Storm
210417 9.8 CRITICAL
Network 		uqcms uqcms SQL Injection vulnerability in file home\controls\cart.class.php in UQCMS 2.1.3, allows attackers execute arbitrary commands via the cookie_cart parameter to /index.php/cart/num. CWE-89
SQL Injection 		CVE-2020-21120 2024-11-21 14:12 2023-02-16 Show GitHub Exploit DB Packet Storm
210418 9.8 CRITICAL
Network 		kliqqi kliqqi_cms SQL Injection vulnerability in Kliqqi-CMS 2.0.2 in admin/admin_update_module_widgets.php in recordIDValue parameter, allows attackers to gain escalated privileges and execute arbitrary code. CWE-89
SQL Injection 		CVE-2020-21119 2024-11-21 14:12 2023-02-16 Show GitHub Exploit DB Packet Storm
210419 9.8 CRITICAL
Network 		inxedu inxedu SQL Injection vulnerability in inxedu 2.0.6 allows attackers to execute arbitrary commands via the functionIds parameter to /saverolefunction. CWE-89
SQL Injection 		CVE-2020-21152 2024-11-21 14:12 2023-01-21 Show GitHub Exploit DB Packet Storm
210420 6.1 MEDIUM
Network 		netgate pfsense
acme 		Cross Site Scripting (XSS) vulnerability in Netgate pf Sense 2.4.4-Release-p3 and Netgate ACME package 0.6.3 allows remote attackers to to run arbitrary code via the RootFolder field to acme_certific… CWE-79
Cross-site Scripting 		CVE-2020-21219 2024-11-21 14:12 2022-12-16 Show GitHub Exploit DB Packet Storm