Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230101 4.3 警告 pt news - PT News の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4917 2012-12-20 18:02 2006-09-20 Show GitHub Exploit DB Packet Storm
230102 7.5 危険 Qualiteam Software Limited - Qualiteam X-Cart の cmpi.php における任意のプログラム変数を上書きされる脆弱性 - CVE-2006-4904 2012-12-20 18:02 2006-09-20 Show GitHub Exploit DB Packet Storm
230103 10 危険 シマンテック - Symantec Veritas NetBackup の NetBackup bpcd デーモンにおける任意のコマンドを実行される脆弱性 - CVE-2006-4902 2012-12-20 18:02 2006-12-13 Show GitHub Exploit DB Packet Storm
230104 7.5 危険 phpbb xs - phpBB XS の bb_usage_stats/includes/bb_usage_stats.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4893 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230105 7.5 危険 techno dreams - Techno Dreams FAQ Manager Package の faqview.asp における SQL インジェクションの脆弱性 - CVE-2006-4892 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230106 7.5 危険 techno dreams - Techno Dreams Articles & Papers Package の ArticlesTableview.asp における SQL インジェクションの脆弱性 - CVE-2006-4891 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230107 7.5 危険 unak - UNAK-CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4890 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230108 5.1 警告 telekorn - Telekorn SL における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4889 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230109 7.5 危険 shadowed portal - Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4885 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230110 5 警告 phpquiz - Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性 - CVE-2006-4865 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211101 9.8 CRITICAL
Network 		ufactory xarm_5_lite_firmware The authentication implementation on the xArm controller has very low entropy, making it vulnerable to a brute-force attack. There is no mechanism in place to mitigate or lockout automated attempts t… CWE-331
 Insufficient Entropy 		CVE-2020-10285 2024-11-21 13:55 2020-07-16 Show GitHub Exploit DB Packet Storm
211102 9.8 CRITICAL
Network 		abb irb140_firmware
irc5_firmware 		The IRC5 family with UAS service enabled comes by default with credentials that can be found on publicly available manuals. ABB considers this a well documented functionality that helps customer set … CWE-522
 Insufficiently Protected Credentials 		CVE-2020-10287 2024-11-21 13:55 2020-07-16 Show GitHub Exploit DB Packet Storm
211103 9.1 CRITICAL
Network 		ufactory xarm_studio No authentication is required to control the robot inside the network, moreso the latest available user manual shows an option that lets the user to add a password to the robot but as in xarm_studio … NVD-CWE-noinfo
CVE-2020-10284 2024-11-21 13:55 2020-07-16 Show GitHub Exploit DB Packet Storm
211104 7.5 HIGH
Network 		samba
fedoraproject
opensuse
debian 		samba
fedora
leap
debian_linux 		A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba server… CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-10745 2024-11-21 13:55 2020-07-7 Show GitHub Exploit DB Packet Storm
211105 6.5 MEDIUM
Network 		samba
redhat
opensuse
fedoraproject
debian 		samba
storage
leap
fedora
debian_linux 		A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped wit… CWE-476
CWE-416
 NULL Pointer Dereference
 Use After Free 		CVE-2020-10730 2024-11-21 13:55 2020-07-7 Show GitHub Exploit DB Packet Storm
211106 9.8 CRITICAL
Network 		dronecode micro_air_vehicle_link The Micro Air Vehicle Link (MAVLink) protocol presents no authentication mechanism on its version 1.0 (nor authorization) whichs leads to a variety of attacks including identity spoofing, unauthorize… CWE-306
Missing Authentication for Critical Function 		CVE-2020-10282 2024-11-21 13:55 2020-07-4 Show GitHub Exploit DB Packet Storm
211107 7.5 HIGH
Network 		dronecode micro_air_vehicle_link This vulnerability applies to the Micro Air Vehicle Link (MAVLink) protocol and allows a remote attacker to gain access to sensitive information provided it has access to the communication medium. MA… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-10281 2024-11-21 13:55 2020-07-4 Show GitHub Exploit DB Packet Storm
211108 7.5 HIGH
Network 		honeywell controledge_plc_firmware
controledge_rtu_firmware 		ControlEdge PLC (R130.2, R140, R150, and R151) and RTU (R101, R110, R140, R150, and R151) exposes unencrypted passwords on the network. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-10628 2024-11-21 13:55 2020-06-27 Show GitHub Exploit DB Packet Storm
211109 7.5 HIGH
Network 		honeywell controledge_plc_firmware
controledge_rtu_firmware 		ControlEdge PLC (R130.2, R140, R150, and R151) and RTU (R101, R110, R140, R150, and R151) exposes a session token on the network. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-10624 2024-11-21 13:55 2020-06-27 Show GitHub Exploit DB Packet Storm
211110 5.5 MEDIUM
Local 		apache
netapp 		activemq_artemis
oncommand_workflow_automation 		A flaw was found in ActiveMQ Artemis management API from version 2.7.0 up until 2.12.0, where a user inadvertently stores passwords in plaintext in the Artemis shadow file (etc/artemis-users.properti… CWE-312
CWE-522
 Cleartext Storage of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2020-10727 2024-11-21 13:55 2020-06-27 Show GitHub Exploit DB Packet Storm