Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230051	5	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Scan-to-mailbox 機能における特定のファイルをダウンロードされる脆弱性	-	CVE-2006-6432	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230052	6.8	警告	phpnews	-	PHPNews の templates/cat_temp.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6357	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

230053	6.8	警告	phpnews	-	PHPNews の templates/link_temp.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6356	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

230054	7.5	危険	pwp technologies	-	PWP Technologies The Classified Ad System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-6349	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

230055	6.5	警告	tftgallery	-	TFT-Gallery における admin/index.php を使用する任意の .php ファイルをアップロードされる脆弱性	-	CVE-2006-6347	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

230056	10	危険	SAP	-	SAP IGS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6346	2012-12-20 18:02	2006-12-6	Show	GitHub Exploit DB Packet Storm

230057	5	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro における電子メールメッセージの署名を変更される脆弱性	-	CVE-2006-6431	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230058	7.8	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Web services における重要な情報を取得される脆弱性	-	CVE-2006-6430	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230059	5	警告	Xerox	-	Xerox WorkCentre などにおける特定の設定内容を変更される脆弱性	-	CVE-2006-6429	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230060	7.5	危険	Xerox	-	Xerox WorkCentre などにおけるアクセス権を取得される脆弱性	-	CVE-2006-6428	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199571	8.8	HIGH Network	flycms_project	flycms	Cross Site Request Forgery (CSRF) vulnerability in FlyCms 1.0 allows attackers to add arbitrary administrator accounts via system/admin/admin_save.	CWE-352 Origin Validation Error	CVE-2020-36065	2024-11-21 14:28	2023-05-8	Show	GitHub Exploit DB Packet Storm

199572	9.8	CRITICAL Network	thecontrolgroup	voyager	Insecure Permission vulnerability found in Yoyager v.1.4 and before allows a remote attacker to execute arbitrary code via a crafted .php file to the media component.	CWE-281 Improper Preservation of Permissions	CVE-2020-36070	2024-11-21 14:28	2023-04-27	Show	GitHub Exploit DB Packet Storm

199573	8.8	HIGH Network	tailor_mangement_system_project	tailor_mangement_system	SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to execute arbitrary code via the customer parameter of the orderadd.php file	CWE-89 SQL Injection	CVE-2020-36077	2024-11-21 14:28	2023-04-10	Show	GitHub Exploit DB Packet Storm

199574	8.8	HIGH Network	tailor_mangement_system_project	tailor_mangement_system	SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to execute arbitrary code via the title parameter.	CWE-89 SQL Injection	CVE-2020-36074	2024-11-21 14:28	2023-04-7	Show	GitHub Exploit DB Packet Storm

199575	8.8	HIGH Network	tailor_management_system_project	tailor_management_system	SQL injection vulnerability found in Tailor Management System v.1 allows a remote attacker to execute arbitrary code via the detail parameter of the document.php page.	CWE-89 SQL Injection	CVE-2020-36073	2024-11-21 14:28	2023-04-7	Show	GitHub Exploit DB Packet Storm

199576	8.8	HIGH Network	tailor_management_system_project	tailor_management_system	SQL injection vulnerability found in Tailor Management System v.1 allows a remote attacker to execute arbitrary code via the id parameter.	CWE-89 SQL Injection	CVE-2020-36072	2024-11-21 14:28	2023-04-7	Show	GitHub Exploit DB Packet Storm

199577	8.8	HIGH Network	tailor_management_system_project	tailor_management_system	SQL injection vulnerability found in Tailor Management System v.1 allows a remote authenticated attacker to execute arbitrary code via the customer parameter of the email.php page.	CWE-89 SQL Injection	CVE-2020-36071	2024-11-21 14:28	2023-04-7	Show	GitHub Exploit DB Packet Storm

199578	6.5	MEDIUM Network	fiserv	prologue	Fiserv Prologue through 2020-12-16 does not properly protect the database password. If an attacker were to gain access to the configuration file (specifically, the LogPassword attribute within appcon…	CWE-522 Insufficiently Protected Credentials	CVE-2020-35992	2024-11-21 14:28	2022-08-23	Show	GitHub Exploit DB Packet Storm

199579	9.8	CRITICAL Network	phpgurukul	dairy_farm_shop_management_system	Dairy Farm Shop Management System v1.0 was discovered to contain hardcoded credentials in the source code which allows attackers access to the control panel if compromised.	CWE-798 Use of Hard-coded Credentials	CVE-2020-36062	2024-11-21 14:28	2022-02-12	Show	GitHub Exploit DB Packet Storm

199580	9.8	CRITICAL Network	online_course_registration_project	online_course_registration	Online Course Registration v1.0 was discovered to contain hardcoded credentials in the source code which allows attackers access to the control panel if compromised.	CWE-798 Use of Hard-coded Credentials	CVE-2020-36064	2024-11-21 14:28	2022-01-31	Show	GitHub Exploit DB Packet Storm