Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230531	6.8	警告	PHPNUKE	-	PHP-Nuke 用の MyHeadlines モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4563	2012-12-20 18:02	2006-09-5	Show	GitHub Exploit DB Packet Storm

230532	7.5	危険	retro64	-	Retro64 / Miniclip CR64Loader ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2006-4555	2012-12-20 18:02	2006-09-5	Show	GitHub Exploit DB Packet Storm

230533	7.5	危険	Plume CMS	-	Plume CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4533	2012-12-20 18:02	2006-09-1	Show	GitHub Exploit DB Packet Storm

230534	5	警告	qbik	-	Qbik WinGate におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-4518	2012-12-20 18:02	2006-11-28	Show	GitHub Exploit DB Packet Storm

230535	4	警告	The Tor Project scatterchat	-	Tor および ScatterChatどにおける任意の Tor トラフィックをルーティングされる脆弱性	-	CVE-2006-4508	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230536	4.6	警告	ソニー・コンピュータエンタテインメント	-	PSP の Photo Viewer の libTIFF における任意のコードを実行される脆弱性	-	CVE-2006-4507	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230537	7.5	危険	ztml	-	ezPortal/ztml CMS における認証コントロールを回避される脆弱性	-	CVE-2006-4502	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230538	7.5	危険	ztml	-	ezPortal/ztml CMS の index.php における SQL インジェクションの脆弱性	-	CVE-2006-4501	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230539	4.3	警告	ztml	-	ezPortal/ztml CMS の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4500	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230540	7.5	危険	phpalbum.net	-	PortailPHP 用の PhpAlbum における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4498	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211461	7.5	HIGH Network	avast	antivirus	An issue was discovered in Avast Antivirus before 20. An Arbitrary Memory Address Overwrite vulnerability in the aswAvLog Log Library results in Denial of Service of the Avast Service (AvastSvc.exe).	CWE-787 Out-of-bounds Write	CVE-2020-10860	2024-11-21 13:56	2020-04-2	Show	GitHub Exploit DB Packet Storm

211462	8.8	HIGH Network	fasterxml debian netapp oracle	jackson-databind debian_linux steelstore_cloud_integrated_storage retail_xstore_point_of_service primavera_unifier retail_service_backbone weblogic_server webcenter_portal ret…	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.openjpa.ee.WASRegistryManagedRuntime (aka openjpa).	CWE-502 Deserialization of Untrusted Data	CVE-2020-11113	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211463	8.8	HIGH Network	fasterxml debian netapp oracle	jackson-databind debian_linux steelstore_cloud_integrated_storage retail_xstore_point_of_service primavera_unifier retail_service_backbone weblogic_server retail_merchandising_sy…	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.proxy.provider.remoting.RmiProvider (aka apache/commo…	CWE-502 Deserialization of Untrusted Data	CVE-2020-11112	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211464	8.8	HIGH Network	fasterxml debian netapp oracle	jackson-databind debian_linux steelstore_cloud_integrated_storage retail_xstore_point_of_service primavera_unifier weblogic_server retail_merchandising_system agile_plm bankin…	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to org.apache.activemq.* (aka activemq-jms, activemq-core, activemq-pool, a…	CWE-502 Deserialization of Untrusted Data	CVE-2020-11111	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211465	6.1	MEDIUM Network	tecrail	responsive_filemanager	An issue was discovered in Responsive Filemanager through 9.14.0. In the dialog.php page, the session variable $_SESSION['RF']["view_type"] wasn't sanitized if it was already set. This made stored XS…	CWE-79 Cross-site Scripting	CVE-2020-11106	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211466	9.8	CRITICAL Network	usc	cereal	An issue was discovered in USC iLab cereal through 1.3.0. It employs caching of std::shared_ptr values, using the raw pointer address as a unique identifier. This becomes problematic if an std::share…	CWE-763 Release of Invalid Pointer or Reference	CVE-2020-11105	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211467	5.3	MEDIUM Network	usc	cereal	An issue was discovered in USC iLab cereal through 1.3.0. Serialization of an (initialized) C/C++ long double variable into a BinaryArchive or PortableBinaryArchive leaks several bytes of stack or he…	CWE-908 Use of Uninitialized Resource	CVE-2020-11104	2024-11-21 13:56	2020-03-31	Show	GitHub Exploit DB Packet Storm

211468	7.8	HIGH Local	phoenixcontact	portico_server_4_client portico_server_16_client portico_server_1_client	Local Privilege Escalation can occur in PHOENIX CONTACT PORTICO SERVER through 3.0.7 when installed to run as a service.	CWE-269 Improper Privilege Management	CVE-2020-10940	2024-11-21 13:56	2020-03-28	Show	GitHub Exploit DB Packet Storm

211469	7.8	HIGH Local	phoenixcontact	pc_worx_srt	Insecure, default path permissions in PHOENIX CONTACT PC WORX SRT through 1.14 allow for local privilege escalation.	CWE-276 Incorrect Default Permissions	CVE-2020-10939	2024-11-21 13:56	2020-03-28	Show	GitHub Exploit DB Packet Storm

211470	9.8	CRITICAL Network	gitlab	gitlab	GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a project import note feature.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-10956	2024-11-21 13:56	2020-03-28	Show	GitHub Exploit DB Packet Storm