Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229421 6.8 警告 SAMEDIA O.E. - SAMEDIA LandShop の ls.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5915 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229422 7.5 危険 SAMEDIA O.E. - SAMEDIA LandShop の ls.php における SQL インジェクションの脆弱性 - CVE-2006-5914 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229423 6.4 警告 web directory pro - Web Directory Pro におけるコンフィギュレーションを変更される脆弱性 - CVE-2006-5905 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229424 7.5 危険 rahul jonna - Rahul Jonna GSpace における仮想ファイルシステム操作を実行される脆弱性 - CVE-2006-5903 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229425 7.5 危険 viksoe - viksoe GMail Drive シェルエクステンションにおける仮想ファイルシステムのアクションを実行される脆弱性 - CVE-2006-5902 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229426 6.8 警告 Zend Technologies Ltd. - Zend Framework Preview の incubator/tests/Zend/Http/_files/testRedirections.php サンプルコードにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5900 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229427 5 警告 php heaven - PhpMyChat の localization/languages.lib.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5898 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229428 5 警告 php heaven - PhpMyChat Plus におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2006-5897 2012-12-20 18:02 2006-11-15 Show GitHub Exploit DB Packet Storm
229429 5 警告 remlab - REMLAB Web Mech Designer におけるスクリプトのフルパスを取得される脆弱性 - CVE-2006-5896 2012-12-20 18:02 2006-11-27 Show GitHub Exploit DB Packet Storm
229430 6.8 警告 rama cms - Rama CMS の lang.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5894 2012-12-20 18:02 2006-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197721 2.4 LOW
Physics 		apple iphone_os
watchos
ipad_os 		A logic issue was addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, watchOS 6.2. A person with physical access to a locked iOS device may be able to respond t… NVD-CWE-noinfo
CVE-2020-3891 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197722 5.3 MEDIUM
Network 		apple iphone_os
ipad_os 		The issue was addressed with improved deletion. This issue is fixed in iOS 13.4 and iPadOS 13.4. Deleted messages groups may still be suggested as an autocompletion. NVD-CWE-noinfo
CVE-2020-3890 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197723 5.5 MEDIUM
Local 		apple mac_os_x A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to read arbitrary files. NVD-CWE-noinfo
CVE-2020-3889 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197724 4.3 MEDIUM
Network 		apple iphone_os
ipad_os 		A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4. A maliciously crafted page may interfere with other web contexts. NVD-CWE-noinfo
CVE-2020-3888 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197725 4.3 MEDIUM
Network 		apple itunes
iphone_os
tvos
safari
ipad_os
icloud 		A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Wind… NVD-CWE-Other
CVE-2020-3887 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197726 4.3 MEDIUM
Network 		apple itunes
iphone_os
tvos
safari
ipad_os
icloud 		A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Wind… CWE-670
 Always-Incorrect Control Flow Implementation 		CVE-2020-3885 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197727 6.1 MEDIUM
Network 		apple mac_os_x An injection issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. A remote attacker may be able to cause arbitrary javascript code execution. CWE-20
CWE-74
 Improper Input Validation 
Injection 		CVE-2020-3884 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197728 8.8 HIGH
Network 		apple iphone_os
tvos
watchos
ipad_os
mac_os_x 		This issue was addressed with improved checks. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to use arbitrary entitlement… NVD-CWE-noinfo
CVE-2020-3883 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197729 5.5 MEDIUM
Local 		apple mac_os_x A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to view sensitive user information. NVD-CWE-noinfo
CVE-2020-3881 2024-11-21 14:31 2020-04-2 Show GitHub Exploit DB Packet Storm
197730 9.8 CRITICAL
Network 		unisoon ultralog_express_firmware UltraLog Express device management interface does not properly filter user inputted string in some specific parameters, attackers can inject arbitrary SQL command. CWE-89
SQL Injection 		CVE-2020-3936 2024-11-21 14:31 2020-03-27 Show GitHub Exploit DB Packet Storm