Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230451	5.1	警告	vmist	-	Vmist Downstat における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4827	2012-12-20 18:02	2006-09-15	Show	GitHub Exploit DB Packet Storm

230452	7.5	危険	shadowed portal	-	Shadowed Portal の bottom.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4826	2012-12-20 18:02	2006-09-15	Show	GitHub Exploit DB Packet Storm

230453	4.3	警告	softcomplex	-	SoftComplex PHP Event Calendar の cl_files/index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4825	2012-12-20 18:02	2006-09-15	Show	GitHub Exploit DB Packet Storm

230454	7.5	危険	quicksilver forums	-	QSF の lib/activeutil.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4824	2012-12-20 18:02	2006-09-15	Show	GitHub Exploit DB Packet Storm

230455	7.5	危険	reamday enterprises	-	Reamday Enterprises Magic News Pro の scripts/news_page.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4823	2012-12-20 18:02	2006-09-15	Show	GitHub Exploit DB Packet Storm

230456	4.6	警告	シマンテック	-	Symantec AntiVirus Corporate Edition などの Real Time Virus Scan サービスにおけるフォーマットストリングの脆弱性	-	CVE-2006-4802	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

230457	6.2	警告	ROXIO	-	Roxio Toast Titanium で使用されている Deja Vu における任意のコードを実行される脆弱性	CWE-362 競合状態	CVE-2006-4801	2012-12-20 18:02	2006-09-14	Show	GitHub Exploit DB Packet Storm

230458	7.5	危険	Xine	-	xine-lib 用の ffmpeg におけるバッファオーバーフローの脆弱性	-	CVE-2006-4799	2012-12-20 18:02	2006-09-13	Show	GitHub Exploit DB Packet Storm

230459	4.3	警告	Snitz	-	Snitz Forums 2000 の forum.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4796	2012-12-20 18:02	2006-09-14	Show	GitHub Exploit DB Packet Storm

230460	7.5	危険	tualblog	-	TualBLOG の icerik.asp における SQL インジェクションの脆弱性	-	CVE-2006-4793	2012-12-20 18:02	2006-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211441	8.8	HIGH Network	codeigniter	codeigniter	CodeIgniter through 4.0.0 allows remote attackers to gain privileges via a modified Email ID to the "Select Role of the User" page. NOTE: A contributor to the CodeIgniter framework argues that the is…	CWE-269 Improper Privilege Management	CVE-2020-10793	2024-11-21 13:56	2020-03-24	Show	GitHub Exploit DB Packet Storm

211442	4.8	MEDIUM Network	nagios	nagios_xi	Nagios XI 5.6.11 allows XSS via the account/main.php theme parameter.	CWE-79 Cross-site Scripting	CVE-2020-10821	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211443	4.8	MEDIUM Network	nagios	nagios_xi	Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ password parameter.	CWE-79 Cross-site Scripting	CVE-2020-10820	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211444	4.8	MEDIUM Network	nagios	nagios_xi	Nagios XI 5.6.11 allows XSS via the includes/components/ldap_ad_integration/ username parameter.	CWE-79 Cross-site Scripting	CVE-2020-10819	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211445	7.2	HIGH Network	articatech	artica_proxy	Artica Proxy 4.26 allows remote command execution for an authenticated user via shell metacharacters in the "Modify the hostname" field.	CWE-78 OS Command	CVE-2020-10818	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211446	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5F_get_nrefs() located in H5Fquery.c. It allows an attacker to cause Denial of Service.	CWE-476 NULL Pointer Dereference	CVE-2020-10812	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211447	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5O__layout_decode() located in H5Olayout.c. It allows an attacker to cause Denial of Service.	CWE-125 Out-of-bounds Read	CVE-2020-10811	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211448	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5AC_unpin_entry() located in H5AC.c. It allows an attacker to cause Denial of Service.	CWE-476 NULL Pointer Dereference	CVE-2020-10810	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211449	5.5	MEDIUM Local	hdfgroup	hdf5	An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 b…	CWE-787 Out-of-bounds Write	CVE-2020-10809	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm

211450	8.8	HIGH Network	vestacp	vesta_control_panel	Vesta Control Panel (VestaCP) through 0.9.8-26 allows Command Injection via the schedule/backup Backup Listing Endpoint. The attacker must be able to create a crafted filename on the server, as demon…	CWE-78 OS Command	CVE-2020-10808	2024-11-21 13:56	2020-03-23	Show	GitHub Exploit DB Packet Storm