Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231391	7.6	危険	quicksoft	-	Quiksoft EasyMail Objects の IMAP4 コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1029	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231392	7.5	危険	scriptdungeon	-	XLAtunes の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1026	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231393	7.5	危険	virtualsystem	-	VS-Link-Partner の inc/functions_inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1025	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231394	7.5	危険	Snitz	-	Snitz Forums 2000 の pop_profile.asp における SQL インジェクションの脆弱性	-	CVE-2007-1023	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231395	7.5	危険	turuncu portal	-	Turuncu Portal の h_goster.asp における SQL インジェクションの脆弱性	-	CVE-2007-1022	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231396	10	危険	xfairguy	-	CodeAvalanche News の inc_listnews.asp における SQL インジェクションの脆弱性	-	CVE-2007-1021	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231397	6.8	警告	webSPELL	-	webSPELL の news.php における SQL インジェクションの脆弱性	-	CVE-2007-1019	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231398	9.3	危険	virtualsystem	-	VirtualSystem VS-News-System の tpl/header.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1018	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231399	9.3	危険	virtualsystem	-	VirtualSystem VS-News-System の show_news_inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1017	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

231400	10	危険	vicftps	-	VicFTPS におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1014	2012-12-20 18:19	2007-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211721	9.8	CRITICAL Network	openiam	openiam	OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions.	NVD-CWE-Other	CVE-2020-13421	2024-11-21 14:01	2021-04-7	Show	GitHub Exploit DB Packet Storm

211722	9.8	CRITICAL Network	openiam	openiam	OpenIAM before 4.2.0.3 allows remote attackers to execute arbitrary code via Groovy Script.	NVD-CWE-noinfo	CVE-2020-13420	2024-11-21 14:01	2021-04-7	Show	GitHub Exploit DB Packet Storm

211723	5.3	MEDIUM Network	openiam	openiam	OpenIAM before 4.2.0.3 allows Directory Traversal in the Batch task.	CWE-22 Path Traversal	CVE-2020-13419	2024-11-21 14:01	2021-04-7	Show	GitHub Exploit DB Packet Storm

211724	6.1	MEDIUM Network	openiam	openiam	OpenIAM before 4.2.0.3 allows XSS in the Add New User feature.	CWE-79 Cross-site Scripting	CVE-2020-13418	2024-11-21 14:01	2021-04-7	Show	GitHub Exploit DB Packet Storm

211725	8.8	HIGH Network	webkitgtk	webkitgtk	A code execution vulnerability exists in the AudioSourceProviderGStreamer functionality of Webkit WebKitGTK 2.30.1. A specially crafted web page can lead to a use after free.	CWE-416 Use After Free	CVE-2020-13558	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

211726	7.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13554	2024-11-21 14:01	2021-03-4	Show	GitHub Exploit DB Packet Storm

211727	6.1	MEDIUM Network	nanohttpd	nanohttpd	An issue was discovered in RouterNanoHTTPD.java in NanoHTTPD through 2.3.1. The GeneralHandler class implements a basic GET handler that prints debug information as an HTML page. Any web server that …	CWE-79 Cross-site Scripting	CVE-2020-13697	2024-11-21 14:01	2021-02-23	Show	GitHub Exploit DB Packet Storm

211728	7.8	HIGH Local	sytech	xlreporter	An exploitable local privilege elevation vulnerability exists in the file system permissions of Sytech XL Reporter v14.0.1 install directory. Depending on the vector chosen, an attacker can overwrite…	CWE-276 Incorrect Default Permissions	CVE-2020-13549	2024-11-21 14:01	2021-02-20	Show	GitHub Exploit DB Packet Storm

211729	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attack…	CWE-276 Incorrect Default Permissions	CVE-2020-13555	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm

211730	8.8	HIGH Local	advantech	webaccess\/scada	An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation …	CWE-276 Incorrect Default Permissions	CVE-2020-13553	2024-11-21 14:01	2021-02-18	Show	GitHub Exploit DB Packet Storm