Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228551 7.5 危険 viksoe - viksoe GMail Drive シェルエクステンションにおける仮想ファイルシステムのアクションを実行される脆弱性 - CVE-2006-5902 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
228552 6.8 警告 Zend Technologies Ltd. - Zend Framework Preview の incubator/tests/Zend/Http/_files/testRedirections.php サンプルコードにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5900 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
228553 5 警告 php heaven - PhpMyChat の localization/languages.lib.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5898 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
228554 5 警告 php heaven - PhpMyChat Plus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5897 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
228555 5 警告 remlab - REMLAB Web Mech Designer におけるスクリプトのフルパスを取得される脆弱性 - CVE-2006-5896 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
228556 6.8 警告 rama cms - Rama CMS の lang.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5894 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
228557 7.5 危険 the net guys - The Net Guys ASPired2Poll の MoreInfo.asp における SQL インジェクションの脆弱性 - CVE-2006-5892 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
228558 7.5 危険 superfreaker studios - Superfreaker Studios Ustore の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5891 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
228559 7.5 危険 superfreaker studios - Superfreaker Studios Usupport の detail.asp における SQL インジェクションの脆弱性 - CVE-2006-5890 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
228560 7.5 危険 superfreaker studios - Superfreaker Studios UPublisher の viewarticle.asp における SQL インジェクションの脆弱性 - CVE-2006-5888 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199471 7.5 HIGH
Network 		cdatatec 72408a_firmware
9008a_firmware
9016a_firmware
92408a_firmware
92416a_firmware
9288_firmware
97016_firmware
97024p_firmware
97028p_firmware
97042p_firmware
97084p_firmwar… 		An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,… NVD-CWE-noinfo
CVE-2020-29057 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199472 6.1 MEDIUM
Network 		hrsale hrsale HRSALE 2.0.0 allows XSS via the admin/project/projects_calendar set_date parameter. CWE-79
Cross-site Scripting 		CVE-2020-29053 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199473 9.8 CRITICAL
Network 		cdatatec
cdata 		72408a_firmware
9008a_firmware
9016a_firmware
92408a_firmware
92416a_firmware
9288_firmware
97016_firmware
97024p_firmware
97028p_firmware
97042p_firmware
97084p_firmwar… 		An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,… CWE-78
OS Command  		CVE-2020-29056 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199474 5.9 MEDIUM
Network 		cdatatec 72408a_firmware
9008a_firmware
9016a_firmware
92408a_firmware
92416a_firmware
9288_firmware
97016_firmware
97024p_firmware
97028p_firmware
97042p_firmware
97084p_firmwar… 		An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-29055 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199475 9.8 CRITICAL
Network 		cdatatec 72408a_firmware
9008a_firmware
9016a_firmware
92408a_firmware
92416a_firmware
9288_firmware
97016_firmware
97024p_firmware
97028p_firmware
97042p_firmware
97084p_firmwar… 		An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN,… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-29054 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199476 9.8 CRITICAL
Network 		karenderia_multiple_restaurant_system_project karenderia_multiple_restaurant_system A SQL injection vulnerability was discovered in Karenderia Multiple Restaurant System, affecting versions 5.4.2 and below. The vulnerability allows for an unauthenticated attacker to perform various … CWE-89
SQL Injection 		CVE-2020-28994 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199477 5.5 MEDIUM
Local 		musl-libc
debian
fedoraproject
oracle 		musl
debian_linux
fedora
graalvm 		In musl libc through 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow). CWE-787
 Out-of-bounds Write 		CVE-2020-28928 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199478 8.8 HIGH
Local 		xen xen An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service (stack corruption), cause a data leak, or possibly gain privileges because of an off-by-one … CWE-787
CWE-193
 Out-of-bounds Write
 Off-by-one Error 		CVE-2020-29040 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199479 6.1 MEDIUM
Network 		seeddms seeddms Open redirect in SeedDMS 6.0.13 via the dropfolderfileform1 parameter to out/out.AddDocument.php. CWE-601
Open Redirect 		CVE-2020-28726 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm
199480 9.8 CRITICAL
Network 		misp misp MISP before 2.4.135 lacks an ACL check, related to app/Controller/GalaxyElementsController.php and app/Model/GalaxyElement.php. CWE-862
 Missing Authorization 		CVE-2020-29006 2024-11-21 14:23 2020-11-25 Show GitHub Exploit DB Packet Storm