Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229361 7.5 危険 webwiz - Site News の centre.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6212 2012-12-20 18:02 2006-11-30 Show GitHub Exploit DB Packet Storm
229362 7.5 危険 warhound - WarHound General Shopping Cart の item.asp における SQL インジェクションの脆弱性 - CVE-2006-6206 2012-12-20 18:02 2006-11-30 Show GitHub Exploit DB Packet Storm
229363 5 警告 wabbit - Wabbit PHP Gallery の script.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6185 2012-12-20 18:02 2006-11-30 Show GitHub Exploit DB Packet Storm
229364 7.5 危険 トレンドマイクロ - Trend Micro OfficeScan 用の PCCSRV\Web_console\RemoteInstallCGI\CgiRemoteInstall.exe におけるバッファオーバーフローの脆弱性 - CVE-2006-6179 2012-12-20 18:02 2006-06-6 Show GitHub Exploit DB Packet Storm
229365 7.5 危険 トレンドマイクロ - Trend Micro OfficeScan 用の PCCSRV\Web_console\RemoteInstallCGI\Wizard.exe におけるバッファオーバーフローの脆弱性 - CVE-2006-6178 2012-12-20 18:02 2006-05-26 Show GitHub Exploit DB Packet Storm
229366 7.5 危険 Tiki Software Community Association - TikiWiki の tiki-register.php における "スパム通知" を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2006-6168 2012-12-20 18:02 2006-11-6 Show GitHub Exploit DB Packet Storm
229367 6.8 警告 Widget Factory Limited - Joomla! 用の Ryan Demmer JCE におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6166 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
229368 4.3 警告 Tiki Software Community Association - TikiWiki の tiki-setup_base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6163 2012-12-20 18:02 2006-11-6 Show GitHub Exploit DB Packet Storm
229369 4.3 警告 Tiki Software Community Association - Tikiwiki の featured_link.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6162 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
229370 4.3 警告 vspin.net - vSpin.net Classified System におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6153 2012-12-20 18:02 2006-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197321 8.8 HIGH
Network 		vmware sd-wan_orchestrator The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3, 3.4.x prior to 3.4.4, and 4.0.x prior to 4.0.1 allows for executing files through directory traversal. An authenticated SD-WAN Orchestrator user is ab… CWE-22
Path Traversal 		CVE-2020-4000 2024-11-21 14:32 2020-11-25 Show GitHub Exploit DB Packet Storm
197322 8.8 HIGH
Network 		vmware sd-wan_orchestrator The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3 and 3.4.x prior to 3.4.4 allows an access to set arbitrary authorization levels leading to a privilege escalation issue. An authenticated SD-WAN Orches… NVD-CWE-noinfo
CVE-2020-3985 2024-11-21 14:32 2020-11-25 Show GitHub Exploit DB Packet Storm
197323 6.5 MEDIUM
Network 		vmware sd-wan_orchestrator The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3 and 3.4.x prior to 3.4.4 does not apply correct input validation which allows for SQL-injection. An authenticated SD-WAN Orchestrator user may exploit … CWE-89
SQL Injection 		CVE-2020-3984 2024-11-21 14:32 2020-11-25 Show GitHub Exploit DB Packet Storm
197324 9.1 CRITICAL
Network 		vmware identity_manager
identity_manager_connector
one_access
vrealize_suite_lifecycle_manager
cloud_foundation 		VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a command injection vulnerability. CWE-78
OS Command  		CVE-2020-4006 2024-11-21 14:32 2020-11-24 Show GitHub Exploit DB Packet Storm
197325 7.8 HIGH
Local 		vmware cloud_foundation
esxi 		VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG) contains a privilege-escalation vulnerability that exists in the way certain system calls… NVD-CWE-noinfo
CVE-2020-4005 2024-11-21 14:32 2020-11-21 Show GitHub Exploit DB Packet Storm
197326 8.2 HIGH
Local 		vmware fusion
workstation
cloud_foundation
esxi 		VMware ESXi (7.0 before ESXi70U1b-17168206, 6.7 before ESXi670-202011101-SG, 6.5 before ESXi650-202011301-SG), Workstation (15.x before 15.5.7), Fusion (11.x before 11.5.7) contain a use-after-free v… CWE-416
 Use After Free 		CVE-2020-4004 2024-11-21 14:32 2020-11-21 Show GitHub Exploit DB Packet Storm
197327 6.5 MEDIUM
Network 		ibm mq_appliance IBM MQ Appliance 9.1.CD and LTS could allow an authenticated user, under nondefault configuration to cause a data corruption attack due to an error when using segmented messages. NVD-CWE-noinfo
CVE-2020-4592 2024-11-21 14:32 2020-11-19 Show GitHub Exploit DB Packet Storm
197328 6.5 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition 5.2.6.0 through 5.2.6.5 and 6.0.0.0 through 6.0.3.2 stores potentially highly sensitive information in log files that could be read by an authenticated us… NVD-CWE-noinfo
CVE-2020-4566 2024-11-21 14:32 2020-11-17 Show GitHub Exploit DB Packet Storm
197329 7.5 HIGH
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 2.2.6.5 and 6.0.0.0 through 6.0.3.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the … NVD-CWE-noinfo
CVE-2020-4476 2024-11-21 14:32 2020-11-17 Show GitHub Exploit DB Packet Storm
197330 6.5 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5 and 6.0.0.0 through 6.0.3.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message … NVD-CWE-noinfo
CVE-2020-4475 2024-11-21 14:32 2020-11-17 Show GitHub Exploit DB Packet Storm