Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228941	7.5	危険	rediff	-	Rediff Bol Downloader OCX コントロールにおける重要な情報 (ユーザ名およびパス名) を取得される脆弱性	-	CVE-2006-6838	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228942	6.8	警告	sergey oblomov	-	Total Commander 用の ISO プラグインの LoadTree などの関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6837	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

228943	7.5	危険	yrch	-	Yrch! の plugins/metasearch/plug.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6823	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

228944	7.5	危険	vladimir menshakov	-	Vladimir Menshakov buratinable templator の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6809	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

228945	6.8	警告	WordPress.org	-	WordPress の wp-admin/templates.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6808	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

228946	7.5	危険	softwebsnepal	-	Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性	-	CVE-2006-6807	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

228947	6.8	警告	sh-news	-	SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6801	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

228948	7.5	危険	The Cacti Group	-	Cacti における SQL インジェクションの脆弱性	-	CVE-2006-6799	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

228949	7.5	危険	PHP Outburst	-	UPB の chat/login.php における任意の PHP コードを挿入される脆弱性	-	CVE-2006-6790	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

228950	7.5	危険	phpbbxtra	-	Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6789	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213131	8.8	HIGH Network	schneider-electric	meg6501-0001_firmware meg6501-0002_firmware meg6260-0410_firmware meg6260-0415_firmware	A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motio…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-6839	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213132	6.5	MEDIUM Network	schneider-electric	meg6501-0001_firmware meg6501-0002_firmware meg6260-0410_firmware meg6260-0415_firmware	A CWE-863: Incorrect Authorization vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch…	NVD-CWE-Other	CVE-2019-6838	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213133	9.1	CRITICAL Network	schneider-electric	meg6501-0001_firmware meg6501-0002_firmware meg6260-0410_firmware meg6260-0415_firmware	A Server-Side Request Forgery (SSRF): CWE-918 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-6837	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213134	7.5	HIGH Network	schneider-electric	meg6501-0001_firmware meg6501-0002_firmware meg6260-0410_firmware meg6260-0415_firmware	A CWE-863: Incorrect Authorization vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touch…	NVD-CWE-Other	CVE-2019-6836	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213135	5.4	MEDIUM Network	schneider-electric	meg6501-0001_firmware meg6501-0002_firmware meg6260-0410_firmware meg6260-0415_firmware	A Cross-Site Scripting (XSS) CWE-79 vulnerability exists in U.motion Server (MEG6501-0001 - U.motion KNX server, MEG6501-0002 - U.motion KNX Server Plus, MEG6260-0410 - U.motion KNX Server Plus, Touc…	CWE-79 Cross-site Scripting	CVE-2019-6835	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213136	8.3	HIGH Network	schneider-electric	wiser_for_knx_firmware spacelynk_firmware	A CWE-287: Authentication vulnerability exists in spaceLYnk (all versions before 2.4.0) and Wiser for KNX (all versions before 2.4.0 - formerly known as homeLYnk), which could cause loss of control w…	CWE-287 Improper Authentication	CVE-2019-6832	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213137	6.5	MEDIUM Network	schneider-electric	hmigto_firmware hmisto_firmware xbtgh_firmware hmigtu_firmware hmiscu_firmware hmistu_firmware xbtgt_firmware hmigxo_firmware hmigxu_firmware	A CWE-754 – Improper Check for Unusual or Exceptional Conditions vulnerability exists in Magelis HMI Panels (all versions of - HMIGTO, HMISTO, XBTGH, HMIGTU, HMIGTUX, HMISCU, HMISTU, XBTGT, XBTGT, HM…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-6833	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213138	8.6	HIGH Network	schneider-electric	bmxnor0200h_firmware	A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which could cause disconnection of active con…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-6831	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213139	5.9	MEDIUM Network	schneider-electric	modicon_m580_firmware	A CWE-248: Uncaught Exception vulnerability exists IN Modicon M580 all versions prior to V2.80, which could cause a possible denial of service when sending an appropriately timed HTTP request to the …	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-6830	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm

213140	7.5	HIGH Network	schneider-electric	modicon_m580_firmware modicon_m340_firmware	A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware version prior to V2.90) and Modicon M340 (firmware version prior to V3.10), which could cause a possible denial of service…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-6829	2024-11-21 13:47	2019-09-18	Show	GitHub Exploit DB Packet Storm