Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229951	7.5	危険	rediff	-	Rediff Bol Downloader OCX コントロールにおける重要な情報 (ユーザ名およびパス名) を取得される脆弱性	-	CVE-2006-6838	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229952	6.8	警告	sergey oblomov	-	Total Commander 用の ISO プラグインの LoadTree などの関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6837	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

229953	7.5	危険	yrch	-	Yrch! の plugins/metasearch/plug.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6823	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

229954	7.5	危険	vladimir menshakov	-	Vladimir Menshakov buratinable templator の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6809	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

229955	6.8	警告	WordPress.org	-	WordPress の wp-admin/templates.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6808	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

229956	7.5	危険	softwebsnepal	-	Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性	-	CVE-2006-6807	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

229957	6.8	警告	sh-news	-	SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6801	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

229958	7.5	危険	The Cacti Group	-	Cacti における SQL インジェクションの脆弱性	-	CVE-2006-6799	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

229959	7.5	危険	PHP Outburst	-	UPB の chat/login.php における任意の PHP コードを挿入される脆弱性	-	CVE-2006-6790	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

229960	7.5	危険	phpbbxtra	-	Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6789	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197651	7.8	HIGH Local	nvidia	virtual_gpu_manager	NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software does not restrict or incorrectly restricts operations within the boundaries of a resource that is accesse…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2020-5968	2024-11-21 14:34	2020-07-1	Show	GitHub Exploit DB Packet Storm

197652	8.8	HIGH Network	nta	e-tax_reception_system	Chrome Extension for e-Tax Reception System Ver1.0.0.0 allows remote attackers to execute an arbitrary command via unspecified vectors.	CWE-77 Command Injection	CVE-2020-5601	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197653	4.9	MEDIUM Network	cybozu	garoon	Path traversal vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to obtain unintended information via unspecified vectors.	CWE-22 Path Traversal	CVE-2020-5588	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197654	6.5	MEDIUM Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allow remote authenticated attackers to obtain unintended information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5587	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197655	4.8	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 4.10.3 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5586	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197656	4.8	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Cybozu Garoon 5.0.0 to 5.0.1 allows attacker with administrator rights to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5585	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197657	7.5	HIGH Network	mitsubishielectric	cpu_module_logging_configuration_tool cw_configurator em_configurator gt_designer3 gx_logviewer gx_works2 gx_works3 m_commdtm-hart m_commdtm-io-link melfa-works melsec-l…	Uncontrolled resource consumption vulnerability in Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier,…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-5603	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197658	7.5	HIGH Network	mitsubishielectric	cpu_module_logging_configuration_tool cw_configurator em_configurator gt_designer3 gx_logviewer gx_works2 gx_works3 m_commdtm-hart m_commdtm-io-link melfa-works melsec-l…	Mitsubishi Electoric FA Engineering Software (CPU Module Logging Configuration Tool Ver. 1.94Y and earlier, CW Configurator Ver. 1.010L and earlier, EM Software Development Kit (EM Configurator) Ver.…	CWE-611 XXE	CVE-2020-5602	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197659	7.5	HIGH Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allow remote attackers to obtain unintended information via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5584	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm

197660	6.5	MEDIUM Network	cybozu	garoon	Cybozu Garoon 4.0.0 to 5.0.1 allows remote authenticated attackers to bypass access restriction to obtain unauthorized Multi-Report's data via unspecified vectors.	NVD-CWE-noinfo	CVE-2020-5583	2024-11-21 14:34	2020-06-30	Show	GitHub Exploit DB Packet Storm