Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246511 5 警告 bookelves - Kipper における資格情報を含むファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0767 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
246512 7.5 危険 bookelves - Kipper の default.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0766 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
246513 7.5 危険 bookelves - Kipper の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0765 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
246514 4.3 警告 bookelves - Kipper におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0764 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
246515 4.3 警告 bookelves - Kipper の default.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0763 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
246516 9.3 危険 OptiPNG - OptiPNG の lib/pngxtern/gif/gifread.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0749 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
246517 7.5 危険 craftsilicon - Craft Silicon Banking@Home の Login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0741 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
246518 7.5 危険 frankmancuso - BlueBird Prelease の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0740 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
246519 7.5 危険 frankmancuso - MyNews の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0739 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
246520 7.5 危険 frankmancuso - Auth Php の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0738 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218451 7.5 HIGH
Network 		genivia
fedoraproject 		gsoap
fedora 		A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP… CWE-476
 NULL Pointer Dereference 		CVE-2020-13577 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218452 9.8 CRITICAL
Network 		genivia
fedoraproject 		gsoap
fedora 		A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an H… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-13576 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218453 7.5 HIGH
Network 		genivia
fedoraproject 		gsoap
fedora 		A denial-of-service vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HT… CWE-476
 NULL Pointer Dereference 		CVE-2020-13575 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218454 7.5 HIGH
Network 		genivia
fedoraproject 		gsoap
fedora 		A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP… CWE-476
 NULL Pointer Dereference 		CVE-2020-13574 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218455 6.1 MEDIUM
Network 		open-emr
phpgacl_project 		openemr
phpgacl 		An open redirect vulnerability exists in the return_page redirection functionality of phpGACL 3.3.7, OpenEMR 5.0.2 and OpenEMR development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6… CWE-601
Open Redirect 		CVE-2020-13565 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218456 8.8 HIGH
Network 		foxitsoftware foxit_reader In Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the … CWE-416
 Use After Free 		CVE-2020-13548 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218457 7.8 HIGH
Local 		softmaker office_textmaker_2021 In SoftMaker Software GmbH SoftMaker Office TextMaker 2021 (revision 1014), a specially crafted document can cause the document parser to miscalculate a length used to allocate a buffer, later upon u… CWE-787
CWE-131
 Out-of-bounds Write
Incorrect Calculation of Buffer Size 		CVE-2020-13546 2024-11-21 14:01 2021-02-11 Show GitHub Exploit DB Packet Storm
218458 5.7 MEDIUM
Adjacent 		tufin securetrack Insecure Direct Object Reference (IDOR) exists in Tufin SecureChange, affecting all versions prior to R20-2 GA. Fixed in version R20-2 GA. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2020-13462 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
218459 4.3 MEDIUM
Adjacent 		tufin securetrack Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access… NVD-CWE-noinfo
CVE-2020-13461 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm
218460 8.8 HIGH
Network 		tufin securetrack Multiple Cross-Site Request Forgery (CSRF) vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA. CWE-352
 Origin Validation Error 		CVE-2020-13460 2024-11-21 14:01 2021-02-9 Show GitHub Exploit DB Packet Storm