Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228351	5	警告	winftp server	-	WinFtp Server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6673	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228352	6.8	警告	webcalendar	-	WebCalendar の export_handler.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6669	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228353	6.8	警告	verliadmin	-	VerliAdmin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6668	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228354	7.5	危険	verliadmin	-	VerliAdmin における SQL インジェクションの脆弱性	-	CVE-2006-6667	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228355	7.5	危険	verliadmin	-	VerliAdmin の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6666	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228356	4.1	警告	SUSE	-	SUSE Linux 上で稼動する Linux novell-lum におけるパスワードなしでコンソールへログインされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-6662	2012-12-20 18:02	2006-12-19	Show	GitHub Exploit DB Packet Storm

228357	7.5	危険	php-update	-	PHP-Update の blog.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-6661	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

228358	7.5	危険	planetluc.com	-	planetluc.com RateMe の main.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6648	2012-12-20 18:02	2006-12-19	Show	GitHub Exploit DB Packet Storm

228359	7.5	危険	yapbb	-	YapBB の include/yapbb_session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6633	2012-12-20 18:02	2006-12-18	Show	GitHub Exploit DB Packet Storm

228360	7.5	危険	webwork	-	WeBWorK PG Language の lib/WeBWorK/PG/Translator.pm における dangerousMacros.pl などの文字列を含む名前を伴う任意のマクロを起動される脆弱性	-	CVE-2006-6629	2012-12-20 18:02	2006-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199641	6.1	MEDIUM Network	hrsale	hrsale	HRSALE 2.0.0 allows XSS via the admin/project/projects_calendar set_date parameter.	CWE-79 Cross-site Scripting	CVE-2020-29053	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199642	9.8	CRITICAL Network	cdatatec cdata	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-78 OS Command	CVE-2020-29056	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199643	5.9	MEDIUM Network	cdatatec	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-29055	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199644	9.8	CRITICAL Network	cdatatec	72408a_firmware 9008a_firmware 9016a_firmware 92408a_firmware 92416a_firmware 9288_firmware 97016_firmware 97024p_firmware 97028p_firmware 97042p_firmware 97084p_firmwar…	An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,…	CWE-522 Insufficiently Protected Credentials	CVE-2020-29054	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199645	9.8	CRITICAL Network	karenderia_multiple_restaurant_system_project	karenderia_multiple_restaurant_system	A SQL injection vulnerability was discovered in Karenderia Multiple Restaurant System, affecting versions 5.4.2 and below. The vulnerability allows for an unauthenticated attacker to perform various …	CWE-89 SQL Injection	CVE-2020-28994	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199646	5.5	MEDIUM Local	musl-libc debian fedoraproject oracle	musl debian_linux fedora graalvm	In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).	CWE-787 Out-of-bounds Write	CVE-2020-28928	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199647	8.8	HIGH Local	xen	xen	An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service (stack corruption), cause a data leak, or possibly gain privileges because of an off-by-one …	CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error	CVE-2020-29040	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199648	6.1	MEDIUM Network	seeddms	seeddms	Open redirect in SeedDMS 6.0.13 via the dropfolderfileform1 parameter to out/out.AddDocument.php.	CWE-601 Open Redirect	CVE-2020-28726	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199649	9.8	CRITICAL Network	misp	misp	MISP before 2.4.135 lacks an ACL check, related to app/Controller/GalaxyElementsController.php and app/Model/GalaxyElement.php.	CWE-862 Missing Authorization	CVE-2020-29006	2024-11-21 14:23	2020-11-25	Show	GitHub Exploit DB Packet Storm

199650	5.4	MEDIUM Network	mediawiki	mediawiki	The PollNY extension for MediaWiki through 1.35 allows XSS via an answer option for a poll question, entered during Special:CreatePoll or Special:UpdatePoll.	CWE-79 Cross-site Scripting	CVE-2020-29003	2024-11-21 14:23	2020-11-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed