Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249201	4.3	警告	Phorum	-	Phorum の control.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3392	2012-03-27 18:43	2011-09-8	Show	GitHub Exploit DB Packet Storm

249202	4	警告	IBM	-	IBM Rational Build Forge における鍵ファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3391	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

249203	4.3	警告	IBM	-	IBM OAT for Informix の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3390	2012-03-27 18:43	2011-09-6	Show	GitHub Exploit DB Packet Storm

249204	4.3	警告	Opera Software ASA	-	Opera における安全でないサイトが安全なサイトにみえる脆弱性	CWE-200 情報漏えい	CVE-2011-3388	2012-03-27 18:43	2011-08-31	Show	GitHub Exploit DB Packet Storm

249205	4	警告	IBM	-	IBM Java のクラスファイルパーサーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3387	2012-03-27 18:43	2011-06-29	Show	GitHub Exploit DB Packet Storm

249206	4	警告	Medtronic	-	Medtronic Paradigm ワイヤレスインシュリンポンプにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-3386	2012-03-27 18:43	2011-09-2	Show	GitHub Exploit DB Packet Storm

249207	4.6	警告	OpenTTD	-	OpenTTD におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3343	2012-03-27 18:43	2011-09-8	Show	GitHub Exploit DB Packet Storm

249208	7.5	危険	OpenTTD	-	OpenTTD におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3342	2012-03-27 18:43	2011-09-8	Show	GitHub Exploit DB Packet Storm

249209	7.5	危険	OpenTTD	-	OpenTTD における任意のファイルを実行される脆弱性	CWE-189 数値処理の問題	CVE-2011-3341	2012-03-27 18:43	2011-09-8	Show	GitHub Exploit DB Packet Storm

249210	2.6	注意	Wireshark	-	Wireshark の proto_tree_add_item 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3266	2012-03-27 18:43	2011-08-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212221	4.3	MEDIUM Adjacent	tufin	securetrack	Username enumeration in present in Tufin SecureTrack. It's affecting all versions of SecureTrack. The vendor has decided not to fix this vulnerability. Vendor's response: "This attack requires access…	NVD-CWE-noinfo	CVE-2020-13461	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

212222	8.8	HIGH Network	tufin	securetrack	Multiple Cross-Site Request Forgery (CSRF) vulnerabilities were present in Tufin SecureTrack, affecting all versions prior to R20-2 GA.	CWE-352 Origin Validation Error	CVE-2020-13460	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

212223	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13409	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

212224	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13408	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

212225	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13407	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

212226	7.8	HIGH Local	softmaker	planmaker_2021	A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted malforme…	CWE-787 Out-of-bounds Write	CVE-2020-13586	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212227	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause…	CWE-787 Out-of-bounds Write	CVE-2020-13580	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212228	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the docum…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-13579	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

212229	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13564	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

212230	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13563	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm