Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230311 7.8 危険 softinform - FineBrowser Freeware における他のドメインから制限された情報をアクセスされる脆弱性 - CVE-2006-6987 2012-12-20 18:18 2007-02-8 Show GitHub Exploit DB Packet Storm
230312 7.5 危険 phpgraphy - phpGraphy における任意の PHP コードを実行される脆弱性 - CVE-2006-6966 2012-12-20 18:18 2007-02-3 Show GitHub Exploit DB Packet Storm
230313 6.8 警告 ウェブルート株式会社 - WebRoot Spy Sweeper におけるマルウェアを回避される脆弱性 - CVE-2006-6961 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
230314 6.8 警告 ウェブルート株式会社 - WebRoot Spy Sweeper の Compression Sweep 機能におけるマルウェアの検出を回避される脆弱性 - CVE-2006-6960 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
230315 4.6 警告 ウェブルート株式会社 - WebRoot Spy Sweeper における "スタートアップシールド" セキュリティ制限を回避される脆弱性 - CVE-2006-6959 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
230316 7.5 危険 php blue dragon - phpBlueDragon における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6958 2012-12-20 18:18 2007-01-29 Show GitHub Exploit DB Packet Storm
230317 7.5 危険 VirtueMart - Virtuemart における SQL インジェクションの脆弱性 - CVE-2006-6945 2012-12-20 18:18 2007-01-19 Show GitHub Exploit DB Packet Storm
230318 7.5 危険 The phpMyAdmin Project - phpMyAdmin におけるアクセスルールを回避される脆弱性 - CVE-2006-6944 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
230319 5 警告 The phpMyAdmin Project - PhpMyAdmin におけるサーバのフルパスを取得される脆弱性 - CVE-2006-6943 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
230320 6.8 警告 The phpMyAdmin Project - PhpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6942 2012-12-20 18:18 2007-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197801 6.1 MEDIUM
Network 		mediawiki mediawiki The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.must… CWE-79
Cross-site Scripting 		CVE-2020-6163 2024-11-21 14:35 2020-01-8 Show GitHub Exploit DB Packet Storm
197802 7.5 HIGH
Local 		insyde
siemens 		insydeh2o
ruggedcom_ape1808_firmware
simatic_field_pg_m6_firmware
simatic_ipc127e_firmware
simatic_ipc227g_firmware
simatic_ipc277g_firmware
simatic_itp1000_firmware
simatic_ipc4… 		A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariab… NVD-CWE-noinfo
CVE-2020-5953 2024-11-21 14:34 2022-02-3 Show GitHub Exploit DB Packet Storm
197803 7.5 HIGH
Network 		insyde insydeh2o An issue was discovered in SdLegacySmm in Insyde InsydeH2O with kernel 5.1 before 05.15.11, 5.2 before 05.25.11, 5.3 before 05.34.11, and 5.4 before 05.42.11. The software SMI handler allows untruste… CWE-20
 Improper Input Validation  		CVE-2020-5956 2024-11-21 14:34 2022-01-6 Show GitHub Exploit DB Packet Storm
197804 9.8 CRITICAL
Network 		insyde insydeh2o_uefi_bios An issue was discovered in Int15MicrocodeSmm in Insyde InsydeH2O before 2021-10-14 on Intel client chipsets. A caller may be able to escalate privileges. NVD-CWE-noinfo
CVE-2020-5955 2024-11-21 14:34 2021-11-3 Show GitHub Exploit DB Packet Storm
197805 5.4 MEDIUM
Network 		sixapart movable_type Cross-site scripting vulnerability in Movable Type Movable Type Premium 1.37 and earlier and Movable Type Premium Advanced 1.37 and earlier allows a remote authenticated attacker to inject an arbitra… CWE-79
Cross-site Scripting 		CVE-2020-5669 2024-11-21 14:34 2021-10-26 Show GitHub Exploit DB Packet Storm
197806 6.8 MEDIUM
Network 		dell emc_openmanage_enterprise Dell EMC OpenManage Enterprise (OME) versions prior to 3.4 contain an arbitrary file overwrite vulnerability. A remote authenticated malicious user with high privileges could potentially exploit this… CWE-22
Path Traversal 		CVE-2020-5370 2024-11-21 14:34 2021-07-23 Show GitHub Exploit DB Packet Storm
197807 5.9 MEDIUM
Network 		tenable nessus_amazon_machine_image Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (… CWE-295
Improper Certificate Validation  		CVE-2020-5812 2024-11-21 14:34 2021-02-6 Show GitHub Exploit DB Packet Storm
197808 8.8 HIGH
Network 		infoscience elc_analytics
logstorage 		Logstorage version 8.0.0 and earlier, and ELC Analytics version 3.0.0 and earlier allow remote attackers to execute arbitrary OS commands via a specially crafted log file. CWE-78
OS Command  		CVE-2020-5626 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm
197809 6.0 MEDIUM
Network 		vmware spring_cloud_task In applications using Spring Cloud Task 2.2.4.RELEASE and below, may be vulnerable to SQL injection when exercising certain lookup queries in the TaskExplorer. CWE-89
SQL Injection 		CVE-2020-5428 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm
197810 7.2 HIGH
Network 		vmware spring_cloud_data_flow In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution. CWE-89
SQL Injection 		CVE-2020-5427 2024-11-21 14:34 2021-01-28 Show GitHub Exploit DB Packet Storm