Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230101	4.3	警告	pt news	-	PT News の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4917	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

230102	7.5	危険	Qualiteam Software Limited	-	Qualiteam X-Cart の cmpi.php における任意のプログラム変数を上書きされる脆弱性	-	CVE-2006-4904	2012-12-20 18:02	2006-09-20	Show	GitHub Exploit DB Packet Storm

230103	10	危険	シマンテック	-	Symantec Veritas NetBackup の NetBackup bpcd デーモンにおける任意のコマンドを実行される脆弱性	-	CVE-2006-4902	2012-12-20 18:02	2006-12-13	Show	GitHub Exploit DB Packet Storm

230104	7.5	危険	phpbb xs	-	phpBB XS の bb_usage_stats/includes/bb_usage_stats.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4893	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230105	7.5	危険	techno dreams	-	Techno Dreams FAQ Manager Package の faqview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4892	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230106	7.5	危険	techno dreams	-	Techno Dreams Articles & Papers Package の ArticlesTableview.asp における SQL インジェクションの脆弱性	-	CVE-2006-4891	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230107	7.5	危険	unak	-	UNAK-CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4890	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230108	5.1	警告	telekorn	-	Telekorn SL における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4889	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230109	7.5	危険	shadowed portal	-	Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4885	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

230110	5	警告	phpquiz	-	Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性	-	CVE-2006-4865	2012-12-20 18:02	2006-09-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198201	2.4	LOW Physics	django-basic-auth-ip-whitelist_project	django-basic-auth-ip-whitelist	In django-basic-auth-ip-whitelist before 0.3.4, a potential timing attack exists on websites where the basic authentication is used or configured, i.e. BASIC_AUTH_LOGIN and BASIC_AUTH_PASSWORD is set…	-	CVE-2020-4071	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

198202	5.3	MEDIUM Network	ibm	security_guardium	IBM Security Guardium 10.6 and 11.1 may use insufficiently random numbers or values in a security context that depends on unpredictable numbers. IBM X-Force ID: 174807.	CWE-330 Use of Insufficiently Random Values	CVE-2020-4188	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

198203	5.3	MEDIUM Network	atlassian	jira jira_software_data_center	Versions before 8.9.1, Various resources in Jira responded with a 404 instead of redirecting unauthenticated users to the login page, in some situations this may have allowed unauthorised attackers t…	CWE-203 Information Exposure Through Discrepancy	CVE-2020-4028	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198204	6.5	MEDIUM Network	freerdp fedoraproject opensuse canonical debian	freerdp fedora leap ubuntu_linux debian_linux	In FreeRDP before version 2.1.2, there is an out of bounds read in RLEDECOMPRESS. All FreeRDP based clients with sessions with color depth < 32 are affected. This is fixed in version 2.1.2.	-	CVE-2020-4033	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198205	4.3	MEDIUM Network	freerdp opensuse fedoraproject canonical debian	freerdp leap fedora ubuntu_linux debian_linux	In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph-cache /relax-order-checks are affected. This is fixed in version 2.1…	-	CVE-2020-4032	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198206	7.5	HIGH Network	freerdp fedoraproject opensuse canonical debian	freerdp fedora leap ubuntu_linux debian_linux	In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with /relax-order-checks are affected. This is fixed in version 2.1.2.	-	CVE-2020-4031	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198207	6.5	MEDIUM Network	freerdp fedoraproject opensuse canonical debian	freerdp fedora leap ubuntu_linux debian_linux	In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.	-	CVE-2020-4030	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198208	5.4	MEDIUM Network	w3c	css_validator	In CSS Validator less than or equal to commit 54d68a1, there is a cross-site scripting vulnerability in handling URIs. A user would have to click on a specifically crafted validator link to trigger i…	-	CVE-2020-4070	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198209	9.8	CRITICAL Network	apnswift_project	apnswift	In APNSwift 1.0.0, calling APNSwiftSigner.sign(digest:) is likely to result in a heap buffer overflow. This has been fixed in 1.0.1.	-	CVE-2020-4068	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm

198210	7.2	HIGH Network	limdu_project	limdu	In Limdu before 0.95, the trainBatch function has a command injection vulnerability. Clients of the Limdu library are unlikely to be aware of this, so they might unwittingly write code that contains …	-	CVE-2020-4066	2024-11-21 14:32	2020-06-23	Show	GitHub Exploit DB Packet Storm