Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254051	7.5	危険	Phpgalleryscript	-	PHP Free Photo Gallery script における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4948	2012-02-29 11:19	2011-10-9	Show	GitHub Exploit DB Packet Storm

254052	4.3	警告	Allpcscript	-	ALLPC の advanced_search_result.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4947	2012-02-29 11:17	2011-10-9	Show	GitHub Exploit DB Packet Storm

254053	7.5	危険	Allpcscript	-	ALLPC の product_info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4946	2012-02-29 11:16	2011-10-9	Show	GitHub Exploit DB Packet Storm

254054	7.5	危険	Joomla!	-	Joomla! 用 CamelcityDB コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4945	2012-02-29 11:15	2011-10-9	Show	GitHub Exploit DB Packet Storm

254055	7.5	危険	Joomla!	-	Mambo および Joomla! 用 Elite Experts コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4944	2012-02-29 11:14	2011-10-9	Show	GitHub Exploit DB Packet Storm

254056	7.5	危険	Saurused	-	Saurus CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4943	2012-02-29 11:08	2011-10-9	Show	GitHub Exploit DB Packet Storm

254057	7.5	危険	E-Xoopport	-	E-Xoopport Samsara の location.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4942	2012-02-29 11:06	2011-10-9	Show	GitHub Exploit DB Packet Storm

254058	7.5	危険	Joomla Mo	-	Joomla! 用 Teams (com_teams) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4941	2012-02-29 11:02	2011-10-9	Show	GitHub Exploit DB Packet Storm

254059	7.5	危険	Wanewsletter	-	Wanewsletter の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4940	2012-02-29 11:01	2011-10-9	Show	GitHub Exploit DB Packet Storm

254060	7.5	危険	Scripts bdr130	-	MailForm の index.php におけるリモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4939	2012-02-29 10:58	2011-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218031	5.9	MEDIUM Adjacent	tufin	securetrack	Tufin SecureTrack < R20-2 GA contains reflected + stored XSS (as in, the value is reflected back to the user, but is also stored within the DB and can be later triggered again by the same victim, or …	CWE-79 Cross-site Scripting	CVE-2020-13407	2024-11-21 14:01	2021-02-9	Show	GitHub Exploit DB Packet Storm

218032	7.8	HIGH Local	softmaker	planmaker_2021	A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted malforme…	CWE-787 Out-of-bounds Write	CVE-2020-13586	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

218033	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause…	CWE-787 Out-of-bounds Write	CVE-2020-13580	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

218034	7.8	HIGH Local	softmaker	planmaker_2021	An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the docum…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2020-13579	2024-11-21 14:01	2021-02-4	Show	GitHub Exploit DB Packet Storm

218035	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13564	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

218036	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13563	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

218037	6.1	MEDIUM Network	phpgacl_project open-emr	phpgacl openemr	A cross-site scripting vulnerability exists in the template functionality of phpGACL 3.3.7. A specially crafted HTTP request can lead to arbitrary JavaScript execution. An attacker can provide a craf…	CWE-79 Cross-site Scripting	CVE-2020-13562	2024-11-21 14:01	2021-02-2	Show	GitHub Exploit DB Packet Storm

218038	8.8	HIGH Network	open-emr	openemr	A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP …	CWE-352 Origin Validation Error	CVE-2020-13569	2024-11-21 14:01	2021-01-28	Show	GitHub Exploit DB Packet Storm

218039	7.5	HIGH Network	silabs	micrium_uc-http	A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01.00. A specially crafted HTTP request can lead to denial of service. An attacker can send an HTTP requ…	CWE-476 NULL Pointer Dereference	CVE-2020-13582	2024-11-21 14:01	2021-01-27	Show	GitHub Exploit DB Packet Storm

218040	7.5	HIGH Network	freyrscada	iec-60879-5-104_server_simulator	A denial-of-service vulnerability exists in the traffic-logging functionality of FreyrSCADA IEC-60879-5-104 Server Simulator 21.04.028. A specially crafted packet can lead to denial of service. An at…	CWE-697 Incorrect Comparison	CVE-2020-13559	2024-11-21 14:01	2021-01-12	Show	GitHub Exploit DB Packet Storm