Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228901	7.5	危険	the address book	-	The Address Book における SQL インジェクションの脆弱性	-	CVE-2006-4575	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228902	5.1	警告	Simple Machines	-	Simple Machines Forum の Sources/ManageBoards.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4564	2012-12-20 18:02	2006-09-5	Show	GitHub Exploit DB Packet Storm

228903	6.8	警告	PHPNUKE	-	PHP-Nuke 用の MyHeadlines モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4563	2012-12-20 18:02	2006-09-5	Show	GitHub Exploit DB Packet Storm

228904	7.5	危険	retro64	-	Retro64 / Miniclip CR64Loader ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2006-4555	2012-12-20 18:02	2006-09-5	Show	GitHub Exploit DB Packet Storm

228905	7.5	危険	Plume CMS	-	Plume CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4533	2012-12-20 18:02	2006-09-1	Show	GitHub Exploit DB Packet Storm

228906	5	警告	qbik	-	Qbik WinGate におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4518	2012-12-20 18:02	2006-11-28	Show	GitHub Exploit DB Packet Storm

228907	4	警告	The Tor Project scatterchat	-	Tor および ScatterChatどにおける任意の Tor トラフィックをルーティングされる脆弱性	-	CVE-2006-4508	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

228908	4.6	警告	ソニー・コンピュータエンタテインメント	-	PSP の Photo Viewer の libTIFF における任意のコードを実行される脆弱性	-	CVE-2006-4507	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

228909	7.5	危険	ztml	-	ezPortal/ztml CMS における認証コントロールを回避される脆弱性	-	CVE-2006-4502	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

228910	7.5	危険	ztml	-	ezPortal/ztml CMS の index.php における SQL インジェクションの脆弱性	-	CVE-2006-4501	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198231	6.1	MEDIUM Network	digisol	dg-hr3400_firmware	Cross Site Scripting (XSS) vulnerability in Digisol DG-HR3400 can be exploited via the NTP server name in Time and date module and "Keyword" in URL Filter.	CWE-79 Cross-site Scripting	CVE-2020-35262	2024-11-21 14:27	2021-01-7	Show	GitHub Exploit DB Packet Storm

198232	7.5	HIGH Network	nxlog	nxlog	The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service (daemon crash) via a crafted Syslog payload to the Syslog service. Thi…	CWE-502 Deserialization of Untrusted Data	CVE-2020-35488	2024-11-21 14:27	2021-01-6	Show	GitHub Exploit DB Packet Storm

198233	9.8	CRITICAL Network	asus	dsl-n17u_firmware	The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to Advanced_System_Content.asp wi…	CWE-287 Improper Authentication	CVE-2020-35219	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198234	5.5	MEDIUM Local	gnu redhat netapp broadcom	binutils enterprise_linux hci_compute_node_firmware cloud_backup ontap_select_deploy_administration_utility solidfire_\&_hci_management_node solidfire\ _enterprise_sds_\&…	There's a flaw in bfd_pef_parse_function_stubs of bfd/pef.c in binutils in versions prior to 2.34 which could allow an attacker who is able to submit a crafted file to be processed by objdump to caus…	-	CVE-2020-35507	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198235	5.5	MEDIUM Local	gnu fedoraproject netapp broadcom	binutils fedora cloud_backup ontap_select_deploy_administration_utility solidfire_\&_hci_management_node solidfire\ _enterprise_sds_\&_hci_storage_node brocade_fabric_ope…	There's a flaw in bfd_pef_scan_start_address() of bfd/pef.c in binutils which could allow an attacker who is able to submit a crafted file to be processed by objdump to cause a NULL pointer dereferen…	-	CVE-2020-35496	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198236	5.5	MEDIUM Local	gnu fedoraproject netapp broadcom	binutils fedora cloud_backup ontap_select_deploy_administration_utility solidfire_\&_hci_management_node solidfire\ _enterprise_sds_\&_hci_storage_node brocade_fabric_ope…	There's a flaw in binutils /bfd/pef.c. An attacker who is able to submit a crafted input file to be processed by the objdump program could cause a null pointer dereference. The greatest threat from t…	-	CVE-2020-35495	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198237	6.1	MEDIUM Local	gnu fedoraproject netapp broadcom	binutils fedora cloud_backup ontap_select_deploy_administration_utility solidfire_\&_hci_management_node solidfire\ _enterprise_sds_\&_hci_storage_node brocade_fabric_ope…	There's a flaw in binutils /opcodes/tic4x-dis.c. An attacker who is able to submit a crafted input file to be processed by binutils could cause usage of uninitialized memory. The highest threat is to…	-	CVE-2020-35494	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198238	5.5	MEDIUM Local	gnu fedoraproject netapp broadcom	binutils fedora cloud_backup ontap_select_deploy_administration_utility solidfire_\&_hci_management_node solidfire\ _enterprise_sds_\&_hci_storage_node brocade_fabric_ope…	A flaw exists in binutils in bfd/pef.c. An attacker who is able to submit a crafted PEF file to be parsed by objdump could cause a heap buffer overflow -> out-of-bounds read that could lead to an imp…	-	CVE-2020-35493	2024-11-21 14:27	2021-01-5	Show	GitHub Exploit DB Packet Storm

198239	9.0	CRITICAL Network	electronjs	zonote	zonote through 0.4.0 allows XSS via a crafted note, with resultant Remote Code Execution (because nodeIntegration in webPreferences is true).	CWE-79 Cross-site Scripting	CVE-2020-35717	2024-11-21 14:27	2021-01-1	Show	GitHub Exploit DB Packet Storm

198240	6.5	MEDIUM Adjacent	tenda	f3_firmware	Tenda N300 F3 12.01.01.48 devices allow remote attackers to obtain sensitive information (possibly including an http_passwd line) via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg, a related…	CWE-425 Direct Request ('Forced Browsing')	CVE-2020-35391	2024-11-21 14:27	2021-01-1	Show	GitHub Exploit DB Packet Storm