Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230281	7.5	危険	woltlab	-	WoltLab Burning Book の addentry.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-5509	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230282	7.5	危険	woltlab	-	WoltLab Burning Book の addentry.php における SQL インジェクションの脆弱性	-	CVE-2006-5508	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230283	7.5	危険	wiclear	-	WiClear における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5506	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230284	4.3	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5504	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230285	4.3	警告	Simple Machines	-	SMF の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5503	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230286	5.1	警告	xchangeboard	-	XchangeBoard の inc/DBInterface.php における SQL インジェクションの脆弱性	-	CVE-2006-5500	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230287	6.8	警告	s9y	-	s9y におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5499	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230288	4.3	警告	timothy claason	-	Timothy Claason KnowledgeBank におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5496	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230289	7.5	危険	trawler	-	Trawler Web CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5495	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

230290	7.5	危険	PHPNUKE	-	PHP-Nuke 用の pandaBB モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5494	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210991	7.5	HIGH Network	zoom	meetings	Zoom Client for Meetings through 4.6.9 uses the ECB mode of AES for video and audio encryption. Within a meeting, all participants use a single 128-bit key.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-11500	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210992	6.1	MEDIUM Network	firmware_analysis_and_comparison_tool_project	firmware_analysis_and_comparison_tool	Firmware Analysis and Comparison Tool (FACT) 3 has Stored XSS when updating analysis details via a localhost web request, as demonstrated by mishandling of the tags and version fields in helperFuncti…	CWE-79 Cross-site Scripting	CVE-2020-11499	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210993	8.8	HIGH Network	slack	nebula	Slack Nebula through 1.1.0 contains a relative path vulnerability that allows a low-privileged attacker to execute code in the context of the root user via tun_darwin.go or tun_windows.go. A user can…	CWE-22 Path Traversal	CVE-2020-11498	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210994	4.4	MEDIUM Local	linux opensuse debian canonical	linux_kernel leap debian_linux ubuntu_linux	An issue was discovered in slc_bump in drivers/net/can/slcan.c in the Linux kernel 3.16 through 5.6.2. It allows attackers to read uninitialized can_frame data, potentially containing sensitive infor…	CWE-908 CWE-909 Use of Uninitialized Resource Missing Initialization of Resource	CVE-2020-11494	2024-11-21 13:58	2020-04-3	Show	GitHub Exploit DB Packet Storm

210995	4.9	MEDIUM Network	zevenet	zen_load_balancer	Monitoring::Logs in Zen Load Balancer 3.10.1 allows remote authenticated admins to conduct absolute path traversal attacks, as demonstrated by a filelog=/etc/shadow request to index.cgi.	CWE-22 Path Traversal	CVE-2020-11491	2024-11-21 13:58	2020-04-2	Show	GitHub Exploit DB Packet Storm

210996	7.2	HIGH Network	zevenet	zen_load_balancer	Manage::Certificates in Zen Load Balancer 3.10.1 allows remote authenticated admins to execute arbitrary OS commands via shell metacharacters in the index.cgi cert_issuer, cert_division, cert_organiz…	CWE-78 OS Command	CVE-2020-11490	2024-11-21 13:58	2020-04-2	Show	GitHub Exploit DB Packet Storm

210997	6.1	MEDIUM Network	bell	home_hub_3000_firmware	An issue was discovered on Bell HomeHub 3000 SG48222070 devices. There is XSS related to the email field and the login page.	CWE-79 Cross-site Scripting	CVE-2020-11448	2024-11-21 13:57	2023-11-17	Show	GitHub Exploit DB Packet Storm

210998	4.3	MEDIUM Network	bell	home_hub_3000_firmware	An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is …	NVD-CWE-noinfo	CVE-2020-11447	2024-11-21 13:57	2023-11-17	Show	GitHub Exploit DB Packet Storm

210999	8.2	HIGH Local	qualcomm	ar8035_firmware qca6390_firmware qca6391_firmware qca6426_firmware qca6436_firmware qca8337_firmware qca9984_firmware qcm2290_firmware qcm4290_firmware qcs2290_firmware …	An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S…	CWE-190 Integer Overflow or Wraparound	CVE-2020-11263	2024-11-21 13:57	2022-01-3	Show	GitHub Exploit DB Packet Storm

211000	8.6	HIGH Network	qualcomm	apq8009_firmware apq8053_firmware apq8064au_firmware apq8076_firmware apq8092_firmware apq8094_firmware apq8096au_firmware ar8031_firmware csr6030_firmware csra6620_firmwar…	Accepting AMSDU frames with mismatched destination and source address can lead to information disclosure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Sna…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-11303	2024-11-21 13:57	2021-10-20	Show	GitHub Exploit DB Packet Storm