Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230111 5.8 警告 chamberland technology - Chamberland Technology ezWaiter Online におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3613 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230112 2.6 注意 Phorum - Phorum におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3612 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230113 5.5 警告 Phorum - Phorum の pm.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3611 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
230114 5 警告 orbitcoders - Orbitcoders OrbitMATRIX の index.php における重要な情報を取得される脆弱性 - CVE-2006-3610 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230115 4.3 警告 orbitcoders - Orbitcoders OrbitMATRIX の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3609 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230116 4.6 警告 flatnuke - Simone Vellei Flatnuke の Gallery モジュールにおける任意の PHP コードを実行される脆弱性 - CVE-2006-3608 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230117 4.3 警告 softbiz - Softbiz Banner Exchange Script におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3607 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230118 5 警告 マイクロソフト - Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3605 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230119 7.5 危険 seyeon - FlexWATCH Network Camera におけるディレクトリトラバーサルの脆弱性 - CVE-2006-3604 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
230120 5.8 警告 seyeon - FlexWATCH Network Camera の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3603 2012-12-20 18:02 2006-07-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198591 9.1 CRITICAL
Network 		tar-utils_project tar-utils Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. CWE-22
Path Traversal 		CVE-2020-36566 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198592 7.5 HIGH
Network 		nosurf_project nosurf Due to improper validation of caller input, validation is silently disabled if the provided expected token is malformed, causing any user supplied token to be considered valid. CWE-20
 Improper Input Validation  		CVE-2020-36564 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198593 9.1 CRITICAL
Network 		go-unzip_project go-unzip Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. CWE-22
Path Traversal 		CVE-2020-36560 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198594 7.5 HIGH
Network 		aahframework aah Due to improper sanitization of user input, HTTPEngine.Handle allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read. CWE-22
Path Traversal 		CVE-2020-36559 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198595 7.5 HIGH
Network 		gin-gonic gin Unsanitized input in the default logger in github.com/gin-gonic/gin before v1.6.0 allows remote attackers to inject arbitrary log lines. CWE-116
 Improper Encoding or Escaping of Output 		CVE-2020-36567 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198596 6.1 MEDIUM
Network 		tri panel_builder A vulnerability classified as critical has been found in Modern Tribe Panel Builder Plugin. Affected is the function add_post_content_filtered_to_search_sql of the file ModularContent/SearchFilter.ph… CWE-79
Cross-site Scripting 		CVE-2020-36626 2024-11-21 14:29 2022-12-28 Show GitHub Exploit DB Packet Storm
198597 6.5 MEDIUM
Network 		moodle-block_sitenews_project moodle-block_sitenews A vulnerability was found in moodle-block_sitenews 1.0. It has been classified as problematic. This affects the function get_content of the file block_sitenews.php. The manipulation leads to cross-si… - CVE-2020-36633 2024-11-21 14:29 2022-12-27 Show GitHub Exploit DB Packet Storm
198598 9.8 CRITICAL
Network 		flat_project flat A vulnerability, which was classified as critical, was found in hughsk flat up to 5.0.0. This affects the function unflatten of the file index.js. The manipulation leads to improperly controlled modi… - CVE-2020-36632 2024-11-21 14:29 2022-12-26 Show GitHub Exploit DB Packet Storm
198599 9.8 CRITICAL
Network 		dwc_network_server_emulator_project dwc_network_server_emulator A vulnerability was found in barronwaffles dwc_network_server_emulator. It has been declared as critical. This vulnerability affects the function update_profile of the file gamespy/gs_database.py. Th… - CVE-2020-36631 2024-11-21 14:29 2022-12-26 Show GitHub Exploit DB Packet Storm
198600 9.8 CRITICAL
Network 		sangoma freepbx A vulnerability was found in FreePBX cdr 14.0. It has been classified as critical. This affects the function ajaxHandler of the file ucp/Cdr.class.php. The manipulation of the argument limit/offset l… - CVE-2020-36630 2024-11-21 14:29 2022-12-26 Show GitHub Exploit DB Packet Storm