Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230531	6	警告	php-update	-	PHP-Update の admin/uploads.php における任意のコードをアップロードおよび実行される脆弱性	-	CVE-2006-6879	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230532	7.5	危険	php-update	-	PHP-Update の admin/uploads.php における権限を取得される脆弱性	-	CVE-2006-6878	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230533	6.8	警告	Zen Cart	-	Zen Cart Web Shopping Cart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6868	2012-12-20 18:02	2006-12-30	Show	GitHub Exploit DB Packet Storm

230534	7.5	危険	vladimir meshakov	-	Vladimir Menshakov buratinable templator における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6867	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230535	7.8	危険	stphp	-	STphp EasyNews におけるユーザ名などを取得される脆弱性	-	CVE-2006-6866	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230536	7.8	危険	softartisans	-	SAFileUp の SAFileUpSamples/util/viewsrc.asp におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-6865	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230537	10	危険	website designs for less	-	Website Designs For Less Click N' Print Coupons の coupon_detail.asp における SQL インジェクションの脆弱性	-	CVE-2006-6859	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230538	7.5	危険	webtext	-	WebText CMS における wt/users/ 配下のスクリプトへ任意の PHP コードを挿入される脆弱性	-	CVE-2006-6856	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230539	7.5	危険	shadowed works	-	Shadowed Portal の include.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6850	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230540	5	警告	リアルネットワークス	-	RealNetworks RealPlayer の ierpplug.dll におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6847	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199611	7.5	HIGH Local	vmware	esxi fusion cloud_foundation workstation	VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain a hea…	CWE-787 Out-of-bounds Write	CVE-2020-3967	2024-11-21 14:32	2020-06-26	Show	GitHub Exploit DB Packet Storm

199612	7.5	HIGH Local	vmware	esxi workstation fusion cloud_foundation	VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.2), and Fusion (11.x before 11.5.2) contain a hea…	CWE-362 Race Condition	CVE-2020-3966	2024-11-21 14:32	2020-06-26	Show	GitHub Exploit DB Packet Storm

199613	4.7	MEDIUM Local	vmware	esxi workstation fusion cloud_foundation	VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202006401-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.2), and Fusion (11.x before 11.5.2) contain an in…	CWE-908 Use of Uninitialized Resource	CVE-2020-3964	2024-11-21 14:32	2020-06-26	Show	GitHub Exploit DB Packet Storm

199614	8.2	HIGH Local	vmware	esxi fusion cloud_foundation workstation	VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain a use…	CWE-416 Use After Free	CVE-2020-3962	2024-11-21 14:32	2020-06-25	Show	GitHub Exploit DB Packet Storm

199615	7.8	HIGH Local	vmware	esxi fusion cloud_foundation workstation	VMware ESXi (7.0 before ESXi_7.0.0-1.20.16321839, 6.7 before ESXi670-202004101-SG and 6.5 before ESXi650-202005401-SG), Workstation (15.x before 15.5.5), and Fusion (11.x before 11.5.5) contain an of…	CWE-193 Off-by-one Error	CVE-2020-3969	2024-11-21 14:32	2020-06-25	Show	GitHub Exploit DB Packet Storm

199616	5.9	MEDIUM Network	ibm	security_secret_server	IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this …	CWE-862 Missing Authorization	CVE-2020-4413	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

199617	5.3	MEDIUM Network	ibm	security_secret_server	IBM Security Secret Server 10.7 could disclose sensitive information included in installation files to an unauthorized user. IBM X-Force ID: 178182.	NVD-CWE-noinfo	CVE-2020-4342	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

199618	5.3	MEDIUM Network	ibm	security_secret_server	IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in fur…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4341	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

199619	5.3	MEDIUM Network	ibm	security_secret_server	IBM Security Secret Server 10.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in fur…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4327	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm

199620	6.1	MEDIUM Network	ibm	security_secret_server	IBM Security Secret Server 10.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potent…	CWE-79 Cross-site Scripting	CVE-2020-4323	2024-11-21 14:32	2020-06-24	Show	GitHub Exploit DB Packet Storm