Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231511	5	警告	pyrophobia	-	Pyrophobia におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-1152	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231512	4.3	警告	reamday enterprises	-	Magic News Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1142	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231513	7.5	危険	reamday enterprises	-	Magic News Plus の preview.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1141	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231514	5	警告	加藤和良	-	Putmail の putmail.py における重要な情報を取得される脆弱性	-	CVE-2007-1137	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231515	6.8	警告	webmplayer	-	WebMplayer の index.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2007-1136	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231516	6.8	警告	加藤和良	-	WebMplayer における SQL インジェクションの脆弱性	-	CVE-2007-1135	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231517	7.5	危険	web-app.org	-	WebAPP における脆弱性	-	CVE-2007-1188	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231518	5.5	警告	web-app.org	-	WebAPP における重要な情報を取得される脆弱性	-	CVE-2007-1187	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231519	5	警告	web-app.org	-	WebAPP における脆弱性	-	CVE-2007-1186	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

231520	5	警告	web-app.org	-	WebAPP の Search フォームなどにおける脆弱性	-	CVE-2007-1185	2012-12-20 18:19	2007-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211941	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13407	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

211942	7.8	HIGH Local	softmaker	planmaker_2021	A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted malforme…	CWE-787 Out-of-bounds Write	CVE-2020-13586	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211943	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause…	CWE-787 Out-of-bounds Write	CVE-2020-13580	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211944	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the docum…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-13579	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

211945	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13564	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

211946	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13563	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

211947	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13562	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

211948	8.8	HIGH Network	open-emr	openemr	A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP …	CWE-352 Origin Validation Error	CVE-2020-13569	2024-11-21 14:01	2021-01-28	Show	GitHub Exploit DB Packet Storm

211949	7.5	HIGH Network	silabs	micrium_uc-http	A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP requ…	CWE-476 NULL Pointer Dereference	CVE-2020-13582	2024-11-21 14:01	2021-01-27	Show	GitHub Exploit DB Packet Storm

211950	7.5	HIGH Network	freyrscada	iec-60879-5-104_server_simulator	A denial-of-service vulnerability exists in the traffic-logging functionality of FreyrSCADA IEC-60879-5-104 Server Simulator 21.04.028. A specially crafted packet can lead to denial of service. An at…	CWE-697 Incorrect Comparison	CVE-2020-13559	2024-11-21 14:01	2021-01-12	Show	GitHub Exploit DB Packet Storm