Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229951 7.5 危険 rediff - Rediff Bol Downloader OCX コントロールにおける重要な情報 (ユーザ名およびパス名) を取得される脆弱性 - CVE-2006-6838 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229952 6.8 警告 sergey oblomov - Total Commander 用の ISO プラグインの LoadTree などの関数におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-6837 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
229953 7.5 危険 yrch - Yrch! の plugins/metasearch/plug.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6823 2012-12-20 18:02 2006-12-29 Show GitHub Exploit DB Packet Storm
229954 7.5 危険 vladimir menshakov - Vladimir Menshakov buratinable templator の process.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6809 2012-12-20 18:02 2006-12-29 Show GitHub Exploit DB Packet Storm
229955 6.8 警告 WordPress.org - WordPress の wp-admin/templates.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6808 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
229956 7.5 危険 softwebsnepal - Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性 - CVE-2006-6807 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
229957 6.8 警告 sh-news - SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6801 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
229958 7.5 危険 The Cacti Group - Cacti における SQL インジェクションの脆弱性 - CVE-2006-6799 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
229959 7.5 危険 PHP Outburst - UPB の chat/login.php における任意の PHP コードを挿入される脆弱性 - CVE-2006-6790 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
229960 7.5 危険 phpbbxtra - Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6789 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197501 7.5 HIGH
Network 		rockwellautomation factorytalk_diagnostics An unauthenticated remote attacker can send data to RsvcHost.exe listening on TCP port 5241 to add entries in the FactoryTalk Diagnostics event log. The attacker can specify long fields in the log en… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-5807 2024-11-21 14:34 2020-12-30 Show GitHub Exploit DB Packet Storm
197502 5.5 MEDIUM
Local 		rockwellautomation factorytalk_linx An attacker-controlled memory allocation size can be passed to the C++ new operator in the CServerManager::HandleBrowseLoadIconStreamRequest in messaging.dll. This can be done by sending a specially … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-5806 2024-11-21 14:34 2020-12-30 Show GitHub Exploit DB Packet Storm
197503 7.5 HIGH
Network 		rockwellautomation factorytalk_linx An attacker-controlled memory allocation size can be passed to the C++ new operator in RnaDaSvr.dll by sending a specially crafted ConfigureItems message to TCP port 4241. This will cause an unhandle… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-5802 2024-11-21 14:34 2020-12-30 Show GitHub Exploit DB Packet Storm
197504 7.5 HIGH
Network 		rockwellautomation factorytalk_linx An attacker can craft and send an OpenNamespace message to port 4241 with valid session-id that triggers an unhandled exception in CFTLDManager::HandleRequest function in RnaDaSvr.dll, resulting in p… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2020-5801 2024-11-21 14:34 2020-12-30 Show GitHub Exploit DB Packet Storm
197505 4.8 MEDIUM
Network 		nec ism_server iSM client versions from V5.1 prior to V12.1 running on NEC Storage Manager or NEC Storage Manager Express does not verify a server certificate properly, which allows a man-in-the-middle attacker to … CWE-295
Improper Certificate Validation  		CVE-2020-5684 2024-11-21 14:34 2020-12-24 Show GitHub Exploit DB Packet Storm
197506 7.8 HIGH
Local 		epson offirio_synergyware_printdirector
epsonnet_setupmanager 		Untrusted search path vulnerability in self-extracting files created by EpsonNet SetupManager versions 2.2.14 and earlier, and Offirio SynergyWare PrintDirector versions 1.6x/1.6y and earlier allows … CWE-427
 Uncontrolled Search Path Element 		CVE-2020-5681 2024-11-21 14:34 2020-12-24 Show GitHub Exploit DB Packet Storm
197507 7.5 HIGH
Network 		tenable tenable.sc In certain scenarios in Tenable.sc prior to 5.17.0, a scanner could potentially be used outside the user's defined scan zone without a particular zone being specified within the Automatic Distributio… NVD-CWE-noinfo
CVE-2020-5808 2024-11-21 14:34 2020-12-22 Show GitHub Exploit DB Packet Storm
197508 8.1 HIGH
Network 		marvell qconvergeconsole Relative Path Traversal in Marvell QConvergeConsole GUI 5.5.0.74 allows a remote, authenticated attacker to delete arbitrary files on disk as SYSTEM or root. CWE-22
Path Traversal 		CVE-2020-5803 2024-11-21 14:34 2020-12-19 Show GitHub Exploit DB Packet Storm
197509 7.5 HIGH
Network 		weseek growi Directory traversal vulnerability in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 … CWE-22
Path Traversal 		CVE-2020-5683 2024-11-21 14:34 2020-12-16 Show GitHub Exploit DB Packet Storm
197510 7.5 HIGH
Network 		weseek growi Improper input validation in GROWI versions prior to v4.2.3 (v4.2 Series), GROWI versions prior to v4.1.12 (v4.1 Series), and GROWI v3 series and earlier GROWI versions prior to v4.2.3 (v4.2 Series),… CWE-20
CWE-400
 Improper Input Validation 
 Uncontrolled Resource Consumption 		CVE-2020-5682 2024-11-21 14:34 2020-12-16 Show GitHub Exploit DB Packet Storm