Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230381 2.9 注意 sony ericsson - Sony Ericsson T60 の Bluetooth スタックにおける許可されていない問い合わせ応答へのアクセス権を取得される脆弱性 - CVE-2006-6895 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230382 10 危険 spine - SPINE における脆弱性 - CVE-2006-6894 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230383 5 警告 The Tor Project - Tor における非表示サービスの IP アドレスを特定される脆弱性 - CVE-2006-6893 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230384 5 警告 vz forum - Adp Forum における管理者アカウント名などを取得される脆弱性 - CVE-2006-6891 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230385 7.5 危険 voc-project - Voodoo chat におけるパスワードをダウンロードされる脆弱性 - CVE-2006-6890 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230386 5 警告 p-news - P-News における管理者アカウント名などを取得される脆弱性 - CVE-2006-6888 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230387 5 警告 phpwcms - phpwcms における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2006-6886 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230388 9.3 危険 winzip - WinZip 用の WZFILEVIEW.FileViewCtrl.61 ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6884 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230389 7.5 危険 stavros markou - ATMEL Linux PCI PCMCIA USB Drivers drivers の cofvnet.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-6881 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
230390 7.5 危険 php-update - PHP-Update の code/guestadd.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2006-6880 2012-12-20 18:02 2006-12-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213071 9.8 CRITICAL
Network 		gitlab gitlab GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-10077 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213072 6.1 MEDIUM
Network 		gitlab gitlab GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests. CWE-79
Cross-site Scripting 		CVE-2020-10076 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213073 6.1 MEDIUM
Network 		gitlab gitlab GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input. CWE-79
Cross-site Scripting 		CVE-2020-10075 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213074 9.8 CRITICAL
Network 		gitlab gitlab GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link. NVD-CWE-noinfo
CVE-2020-10074 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213075 7.5 HIGH
Network 		gitlab gitlab GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was internally discovered that a potential denial of service involving permissions checks could impact a project home page. NVD-CWE-noinfo
CVE-2020-10073 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213076 6.5 MEDIUM
Network 		sapplica sentrifugo A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function. CWE-89
SQL Injection 		CVE-2020-10218 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213077 6.1 MEDIUM
Network 		gitlab gitlab GitLab 12.1 through 12.8.1 allows XSS. A cross-site scripting vulnerability was present in a particular view relating to the Grafana integration. CWE-79
Cross-site Scripting 		CVE-2020-10092 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213078 6.1 MEDIUM
Network 		gitlab gitlab GitLab 9.3 through 12.8.1 allows XSS. A cross-site scripting vulnerability was found when viewing particular file types. CWE-79
Cross-site Scripting 		CVE-2020-10091 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213079 5.3 MEDIUM
Network 		gitlab gitlab GitLab 11.7 through 12.8.1 allows Information Disclosure. Under certain group conditions, group epic information was unintentionally being disclosed. CWE-200
Information Exposure 		CVE-2020-10090 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm
213080 7.5 HIGH
Network 		gitlab gitlab GitLab 8.11 through 12.8.1 allows a Denial of Service when using several features to recursively request eachother, CWE-674
 Uncontrolled Recursion 		CVE-2020-10089 2024-11-21 13:54 2020-03-14 Show GitHub Exploit DB Packet Storm