Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230391	7.5	危険	yuuki yoshizawa	-	Yuuki Yoshizawa Exporia の common.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5113	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

230392	6.8	警告	VirtueMart	-	VirtueMart Joomla! eCommerce Edition CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5096	2012-12-20 18:02	2006-09-29	Show	GitHub Exploit DB Packet Storm

230393	5.1	警告	phpbb xs	-	phpBB XS の includes/functions_kb.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5094	2012-12-20 18:02	2006-09-29	Show	GitHub Exploit DB Packet Storm

230394	7.5	危険	php heaven	-	phpHeaven phpMyChat の connected_users.lib.php3 における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5088	2012-12-20 18:02	2006-09-29	Show	GitHub Exploit DB Packet Storm

230395	6.4	警告	pixel motion	-	Blog Pixel Motion における管理ユーザに対するユーザ名およびパスワードを変更される脆弱性	-	CVE-2006-5086	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

230396	7.5	危険	pixel motion	-	Blog Pixel Motion の config.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-5085	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

230397	7.5	危険	Skype Technologies S.A.	-	Mac 用の eBay Skype におけるフォーマットストリングの脆弱性	CWE-20 不適切な入力確認	CVE-2006-5084	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

230398	7.5	危険	phpbb security	-	IM Portal の includes/functions_portal.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5083	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

230399	7.5	危険	SugarCRM	-	SugarCRM における脆弱性	CWE-noinfo 情報不足	CVE-2006-5082	2012-12-20 18:02	2006-09-17	Show	GitHub Exploit DB Packet Storm

230400	7.5	危険	polaring	-	Kristian Niemi Polaring の view/general.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5078	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211321	8.8	HIGH Network	foxitsoftware	phantompdf reader	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the …	CWE-352 Origin Validation Error	CVE-2020-10892	2024-11-21 13:56	2020-04-23	Show	GitHub Exploit DB Packet Storm

211322	7.8	HIGH Local	foxitsoftware	phantompdf reader	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the …	CWE-843 Type Confusion	CVE-2020-10891	2024-11-21 13:56	2020-04-23	Show	GitHub Exploit DB Packet Storm

211323	8.8	HIGH Network	foxitsoftware	phantompdf reader	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the …	CWE-352 Origin Validation Error	CVE-2020-10890	2024-11-21 13:56	2020-04-23	Show	GitHub Exploit DB Packet Storm

211324	7.8	HIGH Local	foxitsoftware	phantompdf reader	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the …	CWE-843 Type Confusion	CVE-2020-10889	2024-11-21 13:56	2020-04-23	Show	GitHub Exploit DB Packet Storm

211325	7.5	HIGH Network	git-scm debian canonical fedoraproject	git debian_linux ubuntu_linux fedora	Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260(GHSA-qm7j-c969-7j4q…	CWE-522 Insufficiently Protected Credentials	CVE-2020-11008	2024-11-21 13:56	2020-04-22	Show	GitHub Exploit DB Packet Storm

211326	8.8	HIGH Network	vestacp	vesta_control_panel	An elevation of privilege in Vesta Control Panel through 0.9.8-26 allows an attacker to gain root system access from the admin account via v-change-user-password (aka the user password change script).	NVD-CWE-noinfo	CVE-2020-10787	2024-11-21 13:56	2020-04-22	Show	GitHub Exploit DB Packet Storm

211327	8.8	HIGH Network	vestacp	vesta_control_panel	A remote command execution in Vesta Control Panel through 0.9.8-26 allows any authenticated user to execute arbitrary commands on the system via cron jobs.	CWE-863 Incorrect Authorization	CVE-2020-10786	2024-11-21 13:56	2020-04-22	Show	GitHub Exploit DB Packet Storm

211328	8.8	HIGH Network	tortoise_orm_project	tortoise_orm	In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only…	CWE-89 SQL Injection	CVE-2020-11010	2024-11-21 13:56	2020-04-21	Show	GitHub Exploit DB Packet Storm

211329	5.4	MEDIUM Network	zulip	zulip_server	Zulip Server before 2.1.3 allows XSS via a Markdown link, with resultant account takeover.	CWE-79 Cross-site Scripting	CVE-2020-10935	2024-11-21 13:56	2020-04-21	Show	GitHub Exploit DB Packet Storm

211330	8.8	HIGH Network	sophos	anti-virus_for_sophos_central anti-virus_for_sophos_home	Mac Endpoint for Sophos Central before 9.9.6 and Mac Endpoint for Sophos Home before 2.2.6 allow Privilege Escalation.	CWE-59 Link Following	CVE-2020-10947	2024-11-21 13:56	2020-04-17	Show	GitHub Exploit DB Packet Storm