Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230141 7.5 危険 Powie - Powie pForum の editpoll.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6038 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230142 7.5 危険 sitesoutlet - SitesOutlet E-commerce Kit-1 PayPal Edition における SQL インジェクションの脆弱性 - CVE-2006-6034 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230143 7.5 危険 sphpblog - SPHPBlog におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6033 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230144 6.8 警告 sphpblog - SPHPBlog におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6032 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230145 7.5 危険 property pro - Property Pro の vir_Login.asp における SQL インジェクションの脆弱性 - CVE-2006-6029 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230146 10 危険 リアルネットワークス - Real Networks Helix Server などにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6026 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230147 5 警告 クアルコム - QUALCOMM Eudora WorldMail におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6025 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230148 7.5 危険 クアルコム - Eudora Worldmail および Worldmail におけるバッファオーバーフローの脆弱性 - CVE-2006-6024 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230149 4 警告 WordPress.org - WordPress におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6017 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
230150 4 警告 WordPress.org - WordPress の wp-admin/user-edit.php における任意のユーザのメタデータを読まれる脆弱性 - CVE-2006-6016 2012-12-20 18:02 2006-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198221 6.1 MEDIUM
Network 		requarks wiki.js In Wiki.js before 2.4.107, there is a stored cross-site scripting through template injection. This vulnerability exists due to an insecure validation mechanism intended to insert v-pre tags into rend… - CVE-2020-4052 2024-11-21 14:32 2020-06-17 Show GitHub Exploit DB Packet Storm
198222 6.5 MEDIUM
Network 		ibm mq IBM MQ Appliance and IBM MQ AMQP Channels 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD do not correctly block or allow clients based on the certificate distinguished name SSLPEER setting. IBM X-Force ID: 177403. CWE-295
Improper Certificate Validation  		CVE-2020-4320 2024-11-21 14:32 2020-06-16 Show GitHub Exploit DB Packet Storm
198223 7.5 HIGH
Network 		ibm mq
websphere_mq 		IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an error within the Data Conversion logic. IBM X-Force ID: 177081. NVD-CWE-noinfo
CVE-2020-4310 2024-11-21 14:32 2020-06-16 Show GitHub Exploit DB Packet Storm
198224 5.4 MEDIUM
Network 		openjsf
debian
netapp 		dijit
debian_linux
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than… - CVE-2020-4051 2024-11-21 14:32 2020-06-16 Show GitHub Exploit DB Packet Storm
198225 7.8 HIGH
Local 		vmware horizon_client VMware Horizon Client for Windows (prior to 5.4.3) contains a privilege escalation vulnerability due to folder permission configuration and unsafe loading of libraries. A local user on the system whe… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-3961 2024-11-21 14:32 2020-06-16 Show GitHub Exploit DB Packet Storm
198226 7.5 HIGH
Network 		ibm spectrum_protect_client
spectrum_protect_for_space_management 		IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.… CWE-287
Improper Authentication 		CVE-2020-4494 2024-11-21 14:32 2020-06-15 Show GitHub Exploit DB Packet Storm
198227 6.5 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 discloses highly sensitive information in plain text in the virgo log file which could be used in further attacks against the system. IBM X-Force ID: 1… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-4477 2024-11-21 14:32 2020-06-15 Show GitHub Exploit DB Packet Storm
198228 6.5 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow an unauthenticated attacker to cause a denial of service or hijack DNS sessions by send a specially crafted HTTP command to the remote serv… CWE-306
Missing Authentication for Critical Function 		CVE-2020-4471 2024-11-21 14:32 2020-06-15 Show GitHub Exploit DB Packet Storm
198229 8.0 HIGH
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 Administrative Console could allow an authenticated attacker to upload arbitrary files which could be execute arbitrary code on the vulnerable server. … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-4470 2024-11-21 14:32 2020-06-15 Show GitHub Exploit DB Packet Storm
198230 9.8 CRITICAL
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to execute arbitrary code on the system. By using a specially crafted HTTP command, an attacker could exploit this vulner… CWE-78
OS Command  		CVE-2020-4469 2024-11-21 14:32 2020-06-15 Show GitHub Exploit DB Packet Storm