Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230391	6	警告	php-update	-	PHP-Update の admin/uploads.php における任意のコードをアップロードおよび実行される脆弱性	-	CVE-2006-6879	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230392	7.5	危険	php-update	-	PHP-Update の admin/uploads.php における権限を取得される脆弱性	-	CVE-2006-6878	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230393	6.8	警告	Zen Cart	-	Zen Cart Web Shopping Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6868	2012-12-20 18:02	2006-12-30	Show	GitHub Exploit DB Packet Storm

230394	7.5	危険	vladimir meshakov	-	Vladimir Menshakov buratinable templator における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6867	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230395	7.8	危険	stphp	-	STphp EasyNews におけるユーザ名などを取得される脆弱性	-	CVE-2006-6866	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230396	7.8	危険	softartisans	-	SAFileUp の SAFileUpSamples/util/viewsrc.asp におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6865	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230397	10	危険	website designs for less	-	Website Designs For Less Click N' Print Coupons の coupon_detail.asp における SQL インジェクションの脆弱性	-	CVE-2006-6859	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230398	7.5	危険	webtext	-	WebText CMS における wt/users/ 配下のスクリプトへ任意の PHP コードを挿入される脆弱性	-	CVE-2006-6856	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230399	7.5	危険	shadowed works	-	Shadowed Portal の include.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6850	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230400	5	警告	リアルネットワークス	-	RealNetworks RealPlayer の ierpplug.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6847	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212951	5.5	MEDIUM Local	google	android	In devicepolicy service, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction …	NVD-CWE-noinfo	CVE-2020-0297	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212952	5.5	MEDIUM Local	google	android	In ADB server and USB server, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interac…	NVD-CWE-noinfo	CVE-2020-0296	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212953	5.5	MEDIUM Local	google	android	In Java network APIs, there is possible access to sensitive network state due to a missing permission check. This could lead to local information disclosure with no additional execution privileges ne…	CWE-862 Missing Authorization	CVE-2020-0293	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212954	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0290	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212955	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across users with no additional execution privileges needed. User interaction is not needed for…	CWE-862 Missing Authorization	CVE-2020-0289	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212956	5.5	MEDIUM Local	google	android	In PackageManager, there is a missing permission check. This could lead to local information disclosure across user boundaries with no additional execution privileges needed. User interaction is not …	CWE-862 Missing Authorization	CVE-2020-0288	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212957	6.5	MEDIUM Network	google	android	In libmkvextractor, there is a possible resource exhaustion due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction…	CWE-20 Improper Input Validation	CVE-2020-0287	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212958	6.5	MEDIUM Network	google	android	In the AAC parser, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interact…	CWE-125 Out-of-bounds Read	CVE-2020-0279	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212959	7.8	HIGH Local	google	android	In NetworkPolicyManagerService, there is a possible permissions bypass due to a missing permission check. This could lead to local escalation of privilege allowing a malicious app to modify the devic…	CWE-862 Missing Authorization	CVE-2020-0277	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm

212960	7.8	HIGH Local	google	android	In MediaProvider, there is a possible way to access ContentResolver and MediaStore entries the app shouldn't have access to due to a permissions bypass. This could lead to local escalation of privile…	CWE-276 Incorrect Default Permissions	CVE-2020-0275	2024-11-21 13:53	2020-09-18	Show	GitHub Exploit DB Packet Storm