Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229011	7.5	危険	zonemetrics	-	ZoneMetrics ZoneX Publishers Gold Edition の includes/usercp_register.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4036	2012-12-20 18:02	2006-08-9	Show	GitHub Exploit DB Packet Storm

229012	10	危険	WordPress.org	-	WordPress における脆弱性	CWE-noinfo 情報不足	CVE-2006-4028	2012-12-20 18:02	2006-07-29	Show	GitHub Exploit DB Packet Storm

229013	7.5	危険	Red Graphic Systems	-	SAPID CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4026	2012-12-20 18:02	2006-08-8	Show	GitHub Exploit DB Packet Storm

229014	7.5	危険	xennobb	-	XennoBB の profile.php における SQL インジェクションの脆弱性	-	CVE-2006-4025	2012-12-20 18:02	2006-08-8	Show	GitHub Exploit DB Packet Storm

229015	2.6	注意	scatterchat	-	ScatterChat の cryptographic モジュールにおける大量のメッセージのパターンを特定される脆弱性	-	CVE-2006-4021	2012-12-20 18:02	2006-08-17	Show	GitHub Exploit DB Packet Storm

229016	4.3	警告	toenda software development	-	toendaCMS stable および unstable の /toendaCMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4016	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

229017	5	警告	シマンテック	-	SBAS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4014	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

229018	7.6	危険	シマンテック	-	SBAS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2006-4013	2012-12-20 18:02	2006-07-27	Show	GitHub Exploit DB Packet Storm

229019	5.1	警告	savewebportal	-	circeOS SaveWeb Portal における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4012	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

229020	7.5	危険	VWar	-	Vwar の war.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-4010	2012-12-20 18:02	2006-08-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198331	9.8	CRITICAL Network	limitloginattempts	limit_login_attempts_reloaded	LimitLoginAttempts.php in the limit-login-attempts-reloaded plugin before 2.17.4 for WordPress allows a bypass of (per IP address) rate limits because the X-Forwarded-For header can be forged. When t…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2020-35590	2024-11-21 14:27	2020-12-21	Show	GitHub Exploit DB Packet Storm

198332	5.4	MEDIUM Network	limitloginattempts	limit_login_attempts_reloaded	The limit-login-attempts-reloaded plugin before 2.17.4 for WordPress allows wp-admin/options-general.php?page=limit-login-attempts&tab= XSS. A malicious user can cause an administrator user to supply…	CWE-79 Cross-site Scripting	CVE-2020-35589	2024-11-21 14:27	2020-12-21	Show	GitHub Exploit DB Packet Storm

198333	7.5	HIGH Network	subconverter_project	subconverter	tindy2013 subconverter 0.6.4 has a /sub?target=%TARGET%&url=%URL%&config=%CONFIG% API endpoint that accepts an arbitrary %URL% value and launches a GET request for it, but does not consider that the …	NVD-CWE-Other	CVE-2020-35579	2024-11-21 14:27	2020-12-20	Show	GitHub Exploit DB Packet Storm

198334	7.5	HIGH Network	postsrsd_project debian	postsrsd debian_linux	srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU consumption) via a long timestamp tag in an SRS address.	CWE-834 Excessive Iteration	CVE-2020-35573	2024-11-21 14:27	2020-12-20	Show	GitHub Exploit DB Packet Storm

198335	7.8	HIGH Local	google	android	An issue was discovered on LG mobile devices with Android OS 10 software. When a dual-screen configuration is supported, the device does not lock upon disconnection of a call with the cover closed. T…	NVD-CWE-noinfo	CVE-2020-35555	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm

198336	7.8	HIGH Local	google	android	An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. There is a WebView SSL error-handler vulnerability. The LG ID is LVE-SMP-200026 (December 2020).	NVD-CWE-Other	CVE-2020-35554	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm

198337	7.5	HIGH Network	google	android	An issue was discovered on Samsung mobile devices with Q(10.0) and R(11.0) (Qualcomm SM8250 chipsets) software. They allows attackers to cause a denial of service (unlock failure) by triggering a pow…	CWE-920 Improper Restriction of Power Consumption	CVE-2020-35553	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm

198338	5.3	MEDIUM Network	google	android	An issue was discovered in the GPS daemon on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (non-Qualcomm chipsets) software. Attackers can obtain sensitive location information because the …	NVD-CWE-noinfo	CVE-2020-35552	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm

198339	9.8	CRITICAL Network	google	android	An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) (Exynos chipsets) software. They allow attackers to conduct RPMB state-change attacks because an unauthorized RPMB w…	CWE-294 Authentication Bypass by Capture-replay	CVE-2020-35551	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm

198340	9.8	CRITICAL Network	google	android	An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), Q(10.0), and R(11.0) software. Attackers can bypass Factory Reset Protection (FRP) via StatusBar. The Samsung ID is SVE-2020-178…	NVD-CWE-noinfo	CVE-2020-35550	2024-11-21 14:27	2020-12-18	Show	GitHub Exploit DB Packet Storm