Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249011 7.1 危険 シスコシステムズ - Cisco 4100 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4011 2012-06-26 15:54 2007-07-24 Show GitHub Exploit DB Packet Storm
249012 7.5 危険 entertainment cms - Entertainment Media Sharing CMS の custom.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4008 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249013 9.3 危険 article directory - Article Directory の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4007 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249014 4.3 警告 ASP indir - Asp cvmatik の cv.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3991 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249015 7.5 危険 ASP indir - Dora Emlak の default.asp における SQL インジェクションの脆弱性 - CVE-2007-3990 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249016 4.3 警告 ASP indir - Dora Emlak の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3989 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249017 5 警告 datadynamics - ActiveReports Professional Edition の Data Dynamics DDActiveReports2.ActiveReport.2 ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-3983 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249018 5 警告 datadynamics - Data Dynamics ActiveReport ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-3982 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249019 4.3 警告 bwired - bwired におけるセッションをハイジャックされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-3978 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
249020 4.3 警告 bwired - bwired におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3977 2012-06-26 15:54 2007-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213871 4.8 MEDIUM
Network 		naviwebs navigatecms Cross Site Scripting (XSS) vulnerability in NavigateCMS 2.9 when performing a Create or Edit via the Tools feature. CWE-79
Cross-site Scripting 		CVE-2020-23242 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213872 4.8 MEDIUM
Network 		cmsmadesimple cms_made_simple Cross Site Scripting (XSS) vulnerability in CMS Made Simple 2.2.14 in "Extra" via 'News > Article" feature. CWE-79
Cross-site Scripting 		CVE-2020-23241 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213873 4.8 MEDIUM
Network 		cmsmadesimple cms_made_simple Cross Site Scripting (XSS) vulnerablity in CMS Made Simple 2.2.14 via the Logic field in the Content Manager feature. CWE-79
Cross-site Scripting 		CVE-2020-23240 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213874 4.8 MEDIUM
Network 		textpattern textpattern Cross Site Scripting (XSS) vulnerability in Textpattern CMS 4.8.1 via Custom fields in the Menu Preferences feature. CWE-79
Cross-site Scripting 		CVE-2020-23239 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213875 5.4 MEDIUM
Network 		evo evolution_cms Cross Site Scripting (XSS) vulnerability in Evolution CMS 2.0.2 via the Document Manager feature. CWE-79
Cross-site Scripting 		CVE-2020-23238 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213876 4.8 MEDIUM
Network 		lavalite lavalite Cross Site Scripting (XSS) vulnerabiity exists in LavaLite CMS 5.8.0 via the Menu Blocks feature, which can be bypassed by using HTML event handlers, such as "ontoggle,". CWE-79
Cross-site Scripting 		CVE-2020-23234 2024-11-21 14:13 2021-07-27 Show GitHub Exploit DB Packet Storm
213877 7.5 HIGH
Network 		lwip_project lwip A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6… CWE-120
Classic Buffer Overflow 		CVE-2020-22284 2024-11-21 14:13 2021-07-23 Show GitHub Exploit DB Packet Storm
213878 7.5 HIGH
Network 		lwip_project lwip A buffer overflow vulnerability in the icmp6_send_response_with_addrs_and_netif() function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a cra… CWE-120
Classic Buffer Overflow 		CVE-2020-22283 2024-11-21 14:13 2021-07-23 Show GitHub Exploit DB Packet Storm
213879 6.1 MEDIUM
Network 		piwigo piwigo A cross site scripting (XSS) vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML. CWE-79
Cross-site Scripting 		CVE-2020-22150 2024-11-21 14:13 2021-07-22 Show GitHub Exploit DB Packet Storm
213880 6.1 MEDIUM
Network 		piwigo piwigo A stored cross site scripting (XSS) vulnerability in /admin.php?page=tags of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML. CWE-79
Cross-site Scripting 		CVE-2020-22148 2024-11-21 14:13 2021-07-22 Show GitHub Exploit DB Packet Storm