Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229741 7.5 危険 stefan ernst - Stefan Ernst Newsscript における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-4666 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229742 5.1 警告 premod shadow - Premod Shadow の includes/functions_portal.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4664 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229743 7.5 危険 web-provence - Web Provence SL_Site の admin/editeur/spaw_control.class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4656 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229744 5 警告 threesquared.net - threesquared.net Php download の download/index.php および download.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4651 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229745 7.5 危険 sponge news - Sponge News の news.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4647 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229746 7.5 危険 phpfullannu - phpFullAnnu の modules/home.module.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4644 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229747 7.5 危険 uni-vert - Uni-Vert PhpLeague の consult/joueurs.php における SQL インジェクションの脆弱性 - CVE-2006-4643 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229748 7.5 危険 szewo - SZEWO PhpCommander におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4636 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229749 6.5 警告 Squiz - MySource Classic における任意の PHP コードを挿入される脆弱性 - CVE-2006-4635 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
229750 4.3 警告 vbzoom - VBZooM の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4634 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197891 7.5 HIGH
Network 		cisco ios
ios_xe 		A vulnerability in the implementation of Multiprotocol Border Gateway Protocol (MP-BGP) for the Layer 2 VPN (L2VPN) Ethernet VPN (EVPN) address family in Cisco IOS Software and Cisco IOS XE Software … CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-3479 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197892 5.5 MEDIUM
Local 		cisco ios A vulnerability in the CLI parser of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to access files from the flash: filesystem. The vulnerability is due to … CWE-863
 Incorrect Authorization 		CVE-2020-3477 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197893 6.0 MEDIUM
Local 		cisco ios A vulnerability in the CLI implementation of a specific command of Cisco IOS XE Software could allow an authenticated, local attacker to overwrite arbitrary files in the underlying host file system. … CWE-552
 Files or Directories Accessible to External Parties 		CVE-2020-3476 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197894 6.5 MEDIUM
Adjacent 		cisco ios_xe A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause… CWE-20
 Improper Input Validation  		CVE-2020-3429 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197895 6.5 MEDIUM
Adjacent 		cisco ios_xe A vulnerability in the WLAN Local Profiling feature of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause a denial… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-3428 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197896 9.1 CRITICAL
Network 		cisco ios A vulnerability in the implementation of the Low Power, Wide Area (LPWA) subsystem of Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 S… CWE-20
 Improper Input Validation  		CVE-2020-3426 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197897 6.7 MEDIUM
Local 		cisco ios_xe A vulnerability in the implementation of the Lua interpreter that is integrated in Cisco IOS XE Software could allow an authenticated, local attacker to execute arbitrary code with root privileges on… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2020-3423 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197898 7.5 HIGH
Network 		cisco ios_xe A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing p… NVD-CWE-noinfo
CVE-2020-3422 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197899 7.5 HIGH
Network 		cisco ios_xe Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through t… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-3421 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm
197900 4.7 MEDIUM
Adjacent 		cisco ios_xe A vulnerability in Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9800 Series Routers could allow an unauthenticated, adjacent attacker to send ICMPv6 traffic prior to the client being … NVD-CWE-Other
CVE-2020-3418 2024-11-21 14:31 2020-09-25 Show GitHub Exploit DB Packet Storm