Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230251	7.5	危険	unisor cms	-	UNISOR CMS の login.asp における SQL インジェクションの脆弱性	-	CVE-2006-5628	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

230252	7.5	危険	qnecms	-	QnECMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5627	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

230253	4.3	警告	phpfaber	-	phpFaber CMS の cms_images/js/htmlarea/htmlarea.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5626	2012-12-20 18:02	2006-10-31	Show	GitHub Exploit DB Packet Storm

230254	7.5	危険	thepeak	-	Thepeak File Upload Manager の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5617	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230255	7.5	危険	Textpattern	-	Textpattern の publish.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5615	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230256	10	危険	東芝	-	Toshiba Bluetooth スタックにおける脆弱性	CWE-noinfo 情報不足	CVE-2006-5611	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230257	5	警告	TorrentFlux	-	TorrentFlux の dir.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5609	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230258	6.8	警告	phpcards	-	phpCards の phpcards.footer.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5605	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230259	7.5	危険	phpcards	-	phpCards の phpcards.header.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5604	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

230260	7.5	危険	Snitz	-	Snitz Forums 2000 の pop_mail.asp における SQL インジェクションの脆弱性	-	CVE-2006-5603	2012-12-20 18:02	2006-10-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198111	8.2	HIGH Network	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information to an unauthorized user using a specially crafted HTTP request. IBM X-Force ID: 189446.	NVD-CWE-noinfo	CVE-2020-4795	2024-11-21 14:33	2021-02-10	Show	GitHub Exploit DB Packet Storm

198112	5.3	MEDIUM Adjacent	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 could allow an attacker to obtain sensitive information using main in the middle attacks due to improper certificate validation. IBM X-Force ID…	CWE-295 Improper Certificate Validation	CVE-2020-4791	2024-11-21 14:33	2021-02-10	Show	GitHub Exploit DB Packet Storm

198113	6.5	MEDIUM Adjacent	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 could allow a user to cause a denial of service due to improperly validating a supplied URL, rendering the application unusuable. IBM X-Force I…	CWE-20 Improper Input Validation	CVE-2020-4790	2024-11-21 14:33	2021-02-10	Show	GitHub Exploit DB Packet Storm

198114	5.5	MEDIUM Local	ibm	powerha	IBM PowerHA 7.2 could allow a local attacker to obtain sensitive information from temporary directories after a discovery failure occurs. IBM X-Force ID: 189969.	NVD-CWE-noinfo	CVE-2020-4832	2024-11-21 14:33	2021-02-6	Show	GitHub Exploit DB Packet Storm

198115	4.3	MEDIUM Adjacent	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 in some configurations may be vulnerable to a temporary denial of service attack when sent particular payloads. IBM X-Force ID: 194178.	NVD-CWE-noinfo	CVE-2020-5032	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm

198116	6.5	MEDIUM Network	ibm	api_connect	IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to web cache poisoning, caused by improper input validation by modifying HTTP request headers. IBM X-Force I…	CWE-20 Improper Input Validation	CVE-2020-4828	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm

198117	4.3	MEDIUM Network	ibm	api_connect	IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions tr…	CWE-352 Origin Validation Error	CVE-2020-4827	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm

198118	4.3	MEDIUM Network	ibm	api_connect	IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions tr…	CWE-352 Origin Validation Error	CVE-2020-4826	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm

198119	5.4	MEDIUM Network	ibm	api_connect	IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI th…	CWE-79 Cross-site Scripting	CVE-2020-4825	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm

198120	4.1	MEDIUM Adjacent	ibm	api_connect	Certain IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 configurations can result in sensitive information in the URL fragment identifiers. This information can be cached…	CWE-200 Information Exposure	CVE-2020-4640	2024-11-21 14:33	2021-02-5	Show	GitHub Exploit DB Packet Storm