Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230021	6	警告	phpBB	-	phpBB におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2006-6508	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

230022	6.8	警告	shopsite	-	ShopSite におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6485	2012-12-20 18:02	2006-12-12	Show	GitHub Exploit DB Packet Storm

230023	5	警告	scriptphp	-	AnnonceScriptHP の admin/admin_membre/fiche_membre.php における重要な情報を取得される脆弱性	-	CVE-2006-6480	2012-12-20 18:02	2006-12-11	Show	GitHub Exploit DB Packet Storm

230024	6.8	警告	scriptphp	-	AnnonceScriptHP におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6479	2012-12-20 18:02	2006-12-11	Show	GitHub Exploit DB Packet Storm

230025	7.5	危険	scriptphp	-	AnnonceScriptHP における SQL インジェクションの脆弱性	-	CVE-2006-6478	2012-12-20 18:02	2006-12-11	Show	GitHub Exploit DB Packet Storm

230026	10	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro における脆弱性	-	CVE-2006-6473	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

230027	10	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の httpd.conf ファイルにおける脆弱性	-	CVE-2006-6472	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

230028	10	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro における不特定のファイルアクセス権を許可される脆弱性	-	CVE-2006-6471	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

230029	10	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の SNMP Agent における脆弱性	-	CVE-2006-6470	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

230030	5.8	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro における脆弱性	-	CVE-2006-6469	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197671	5.4	MEDIUM Network	exceedone	exment	Cross-site scripting vulnerability in Exment prior to v3.6.0 allows remote authenticated attackers to inject arbitrary script or HTML via a specially crafted file.	CWE-79 Cross-site Scripting	CVE-2020-5620	2024-11-21 14:34	2020-08-25	Show	GitHub Exploit DB Packet Storm

197672	5.4	MEDIUM Network	exceedone	exment	Cross-site scripting vulnerability in Exment prior to v3.6.0 allows remote authenticated attackers to inject arbitrary script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2020-5619	2024-11-21 14:34	2020-08-25	Show	GitHub Exploit DB Packet Storm

197673	6.1	MEDIUM Network	cybersolutions	cybermail	Open redirect vulnerability in CyberMail Ver.6.x and Ver.7.x allows remote attackers to redirect users to arbitrary sites and conduct phishing attacks via a specially crafted URL.	CWE-601 Open Redirect	CVE-2020-5541	2024-11-21 14:34	2020-08-25	Show	GitHub Exploit DB Packet Storm

197674	6.1	MEDIUM Network	cybersolutions	cybermail	Cross-site scripting vulnerability in CyberMail Ver.6.x and Ver.7.x allows remote attackers to inject arbitrary script or HTML via a specially crafted URL.	CWE-79 Cross-site Scripting	CVE-2020-5540	2024-11-21 14:34	2020-08-25	Show	GitHub Exploit DB Packet Storm

197675	8.8	HIGH Network	cloudfoundry	cf-deployment capi-release	Cloud Foundry CAPI (Cloud Controller), versions prior to 1.97.0, when used in a deployment where an app domain is also the system domain (which is true in the default CF Deployment manifest), were vu…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-5417	2024-11-21 14:34	2020-08-22	Show	GitHub Exploit DB Packet Storm

197676	6.5	MEDIUM Network	cloudfoundry	cf-deployment routing-release	Cloud Foundry Routing (Gorouter), versions prior to 0.204.0, when used in a deployment with NGINX reverse proxies in front of the Gorouters, is potentially vulnerable to denial-of-service attacks in …	CWE-404 Improper Resource Shutdown or Release	CVE-2020-5416	2024-11-21 14:34	2020-08-22	Show	GitHub Exploit DB Packet Storm

197677	5.8	MEDIUM Network	instructure	canvas_learning_management_service	Server-Side Request Forgery in Canvas LMS 2020-07-29 allows a remote, unauthenticated attacker to cause the Canvas application to perform HTTP GET requests to arbitrary domains.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-5775	2024-11-21 14:34	2020-08-22	Show	GitHub Exploit DB Packet Storm

197678	7.1	HIGH Local	tenable	nessus	Nessus versions 8.11.0 and earlier were found to maintain sessions longer than the permitted period in certain scenarios. The lack of proper session expiration could allow attackers with local access…	CWE-613 Insufficient Session Expiration	CVE-2020-5774	2024-11-21 14:34	2020-08-21	Show	GitHub Exploit DB Packet Storm

197679	7.8	HIGH Local	dell	endpoint_security_suite_enterprise encryption	Dell Encryption versions prior to 10.8 and Dell Endpoint Security Suite versions prior to 2.8 contain a privilege escalation vulnerability because of an incomplete fix for CVE-2020-5358. A local mali…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2020-5385	2024-11-21 14:34	2020-08-19	Show	GitHub Exploit DB Packet Storm

197680	10.0	CRITICAL Network	pivotal_software	concourse	Concourse, versions prior to 6.3.1 and 6.4.1, in installations which use the GitLab auth connector, is vulnerable to identity spoofing by way of configuring a GitLab account with the same full name a…	CWE-290 Authentication Bypass by Spoofing	CVE-2020-5415	2024-11-21 14:34	2020-08-13	Show	GitHub Exploit DB Packet Storm