Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230291	4.4	警告	サン・マイクロシステムズ	-	ChainKey Java Code Protection における Java クラスファイルをデコンパイルされる脆弱性	CWE-310 暗号の問題	CVE-2007-0014	2012-12-20 18:19	2007-01-16	Show	GitHub Exploit DB Packet Storm

230292	7.8	危険	Canonical	-	Ubuntu 上で稼動する Linux Kernel の skge ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2006-7229	2012-12-20 18:19	2007-11-14	Show	GitHub Exploit DB Packet Storm

230293	7.8	危険	SAP	-	SAP SAPLPD におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-7220	2012-12-20 18:19	2007-07-9	Show	GitHub Exploit DB Packet Storm

230294	4.3	警告	ZoneO-soft	-	phpTrafficA におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7209	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

230295	6.8	警告	republique francaise	-	Agora の modules/Mysqlfinder/MysqlfinderAdmin.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-7194	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

230296	4.3	警告	web-app.net	-	web-app.net WebAPP の cgi-bin/user-lib/topics.pl におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7190	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230297	4.3	警告	web-app.net	-	web-app.net WebAPP の cgi-bin/admin/logs.cgi におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7189	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230298	5	警告	web-app.net	-	web-app.net WebAPP の cgi-lib/user-lib/search.pl における内部のフォーラム投稿を読まれる脆弱性	-	CVE-2006-7188	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230299	4.3	警告	web-app.net	-	web-app.net WebAPP の cgi-lib/user-lib/search.pl におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-7187	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

230300	5	警告	web-app.net	-	web-app.net WebAPP の cgi-lib/subs.pl におけるリストファイルをオープンされる脆弱性	-	CVE-2006-7186	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210831	6.1	MEDIUM Network	sourcegraph	sourcegraph	Sourcegraph before 3.15.1 has a vulnerable authentication workflow because of improper validation in the SafeRedirectURL method in cmd/frontend/auth/redirect.go, such as for the //foo//example.com su…	CWE-601 Open Redirect	CVE-2020-12283	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210832	8.8	HIGH Network	teampass	teampass	TeamPass 2.1.27.36 allows any authenticated TeamPass user to trigger a PHP file include vulnerability via a crafted HTTP request with sources/users.queries.php newValue directory traversal.	CWE-22 Path Traversal	CVE-2020-12479	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210833	7.5	HIGH Network	teampass	teampass	TeamPass 2.1.27.36 allows an unauthenticated attacker to retrieve files from the TeamPass web root. This may include backups or LDAP debug files.	CWE-306 Missing Authentication for Critical Function	CVE-2020-12478	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210834	7.5	HIGH Network	teampass	teampass	The REST API functions in TeamPass 2.1.27.36 allow any user with a valid API token to bypass IP address whitelist restrictions via an X-Forwarded-For client HTTP header to the getIp function.	CWE-863 Incorrect Authorization	CVE-2020-12477	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210835	9.8	CRITICAL Network	mono	monox	MonoX through 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGaller…	CWE-502 Deserialization of Untrusted Data	CVE-2020-12471	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210836	7.2	HIGH Network	mono	monox	MonoX through 5.1.40.5152 allows administrators to execute arbitrary code by modifying an ASPX template.	CWE-552 Files or Directories Accessible to External Parties	CVE-2020-12470	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210837	6.5	MEDIUM Network	intelliants	subrion	admin/blocks.php in Subrion CMS through 4.2.1 allows PHP Object Injection (with resultant file deletion) via serialized data in the subpages value within a block to blocks/edit.	CWE-502 Deserialization of Untrusted Data	CVE-2020-12469	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210838	7.8	HIGH Local	intelliants	subrion	Subrion CMS 4.2.1 allows CSV injection via a phrase value within a language. This is related to phrases/add/ and languages/download/.	NVD-CWE-Other	CVE-2020-12468	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210839	6.5	MEDIUM Network	intelliants	subrion	Subrion CMS 4.2.1 allows session fixation via an alphanumeric value in a session cookie.	CWE-384 Session Fixation	CVE-2020-12467	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm

210840	7.2	HIGH Network	mono	monox	MonoX through 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.	NVD-CWE-noinfo	CVE-2020-12473	2024-11-21 13:59	2020-04-30	Show	GitHub Exploit DB Packet Storm