Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229711	7.5	危険	phpBB	-	Vitrax Premodded phpBB の includes/functions_portal.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4779	2012-12-20 18:02	2006-09-14	Show	GitHub Exploit DB Packet Storm

229712	5	警告	サン・マイクロシステムズ	-	Sun StorEdge 6130 Array Controllers におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4773	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229713	5	警告	stefan ernst	-	Stefan Ernst Newsscript の add_go.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-4768	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229714	6.4	警告	stefan ernst	-	Stefan Ernst Newsscript におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4767	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229715	5	警告	stefan ernst	-	Stefan Ernst Newsscript の print.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4766	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229716	7.5	危険	wtools	-	Thomas LETE WTools の common.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4764	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229717	4.3	警告	Ykoon B.V.	-	Ykoon RssReader におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4762	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229718	3.6	注意	PunBB	-	PunBB におけるコードを実行される脆弱性	-	CVE-2006-4759	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229719	4.6	警告	phpBB	-	phpBB における任意のファイルをアップロードされる脆弱性	-	CVE-2006-4758	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

229720	7.5	危険	phpmydirectory	-	phpMyDirectory の alpha.php における SQL インジェクションの脆弱性	-	CVE-2006-4756	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198421	5.4	MEDIUM Network	lavalite	lavalite	A stored cross site scripting (XSS) vulnerability in the /admin/roles/role component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload en…	CWE-79 Cross-site Scripting	CVE-2020-36396	2024-11-21 14:29	2021-07-3	Show	GitHub Exploit DB Packet Storm

198422	5.4	MEDIUM Network	lavalite	lavalite	A stored cross site scripting (XSS) vulnerability in the /admin/user/team component of LavaLite 5.8.0 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload ent…	CWE-79 Cross-site Scripting	CVE-2020-36395	2024-11-21 14:29	2021-07-3	Show	GitHub Exploit DB Packet Storm

198423	8.8	HIGH Network	aomedia	libavif	libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid.	CWE-787 Out-of-bounds Write	CVE-2020-36407	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198424	8.8	HIGH Network	uwebsockets_project	uwebsockets	uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). NOTE: the vendor's position is that this is "a minor issue …	CWE-787 Out-of-bounds Write	CVE-2020-36406	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198425	7.8	HIGH Local	keystone-engine	keystone_engine	Keystone Engine 0.9.2 has a use-after-free in llvm_ks::X86Operand::getToken.	CWE-416 Use After Free	CVE-2020-36405	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198426	7.8	HIGH Local	keystone-engine	keystone	Keystone Engine 0.9.2 has an invalid free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl.	CWE-763 Release of Invalid Pointer or Reference	CVE-2020-36404	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198427	8.8	HIGH Network	htslib	htslib	HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read).	CWE-787 Out-of-bounds Write	CVE-2020-36403	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198428	7.8	HIGH Local	soliditylang	solidity	Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a co…	CWE-787 Out-of-bounds Write	CVE-2020-36402	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198429	7.8	HIGH Local	mruby	mruby	mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).	CWE-415 Double Free	CVE-2020-36401	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm

198430	9.8	CRITICAL Network	zeromq	libzmq	ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, a different vulnerability than CVE-2021-20235.	CWE-787 Out-of-bounds Write	CVE-2020-36400	2024-11-21 14:29	2021-07-1	Show	GitHub Exploit DB Packet Storm