Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 12:06 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230541	7.5	危険	rediff	-	Rediff Bol Downloader OCX コントロールにおける重要な情報 (ユーザ名およびパス名) を取得される脆弱性	-	CVE-2006-6838	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230542	6.8	警告	sergey oblomov	-	Total Commander 用の ISO プラグインの LoadTree などの関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2006-6837	2012-12-20 18:02	2006-12-31	Show	GitHub Exploit DB Packet Storm

230543	7.5	危険	yrch	-	Yrch! の plugins/metasearch/plug.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6823	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

230544	7.5	危険	vladimir menshakov	-	Vladimir Menshakov buratinable templator の process.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6809	2012-12-20 18:02	2006-12-29	Show	GitHub Exploit DB Packet Storm

230545	6.8	警告	WordPress.org	-	WordPress の wp-admin/templates.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6808	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

230546	7.5	危険	softwebsnepal	-	Softwebs Nepal Ananda Real Estate の list.asp における SQL インジェクションの脆弱性	-	CVE-2006-6807	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

230547	6.8	警告	sh-news	-	SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6801	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

230548	7.5	危険	The Cacti Group	-	Cacti における SQL インジェクションの脆弱性	-	CVE-2006-6799	2012-12-20 18:02	2006-12-28	Show	GitHub Exploit DB Packet Storm

230549	7.5	危険	PHP Outburst	-	UPB の chat/login.php における任意の PHP コードを挿入される脆弱性	-	CVE-2006-6790	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

230550	7.5	危険	phpbbxtra	-	Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6789	2012-12-20 18:02	2006-12-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211131	7.5	HIGH Network	phoenixcontact	btp_2043w_firmware btp_2070w_firmware btp_2102w_firmware	Uncontrolled Resource Consumption can be exploited to cause the Phoenix Contact HMIs BTP 2043W, BTP 2070W and BTP 2102W in all versions to become unresponsive and not accurately update the display co…	CWE-400 Uncontrolled Resource Consumption	CVE-2020-12524	2024-11-21 13:59	2020-12-3	Show	GitHub Exploit DB Packet Storm

211132	3.3	LOW Local	apache	cordova	We have resolved a security issue in the camera plugin that could have affected certain Cordova (Android) applications. An attacker who could install (or lead the victim to install) a specially craft…	NVD-CWE-noinfo	CVE-2020-11990	2024-11-21 13:59	2020-12-2	Show	GitHub Exploit DB Packet Storm

211133	5.4	MEDIUM Network	intelbras	tip200_firmware tip200lite_firmware tip300_firmware	Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS.	CWE-79 Cross-site Scripting	CVE-2020-12262	2024-11-21 13:59	2020-11-27	Show	GitHub Exploit DB Packet Storm

211134	6.5	MEDIUM Adjacent	linux	linux_kernel	Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.	CWE-909 Missing Initialization of Resource	CVE-2020-12352	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

211135	8.8	HIGH Adjacent	linux	linux_kernel	Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.	CWE-20 Improper Input Validation	CVE-2020-12351	2024-11-21 13:59	2020-11-24	Show	GitHub Exploit DB Packet Storm

211136	7.3	HIGH Local	beckhoff	twincat_extended_automation_runtime	The default installation path of the TwinCAT XAR 3.1 software in all versions is underneath C:\TwinCAT. If the directory does not exist it and further subdirectories are created with permissions whic…	CWE-276 Incorrect Default Permissions	CVE-2020-12510	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211137	6.5	MEDIUM Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) and Memograph M (Neutral/Private Label) (RSG45, ORSG45) with Firmware version V2.0.0 and above is prone to exposure of sensitive info…	CWE-200 Information Exposure	CVE-2020-12496	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211138	8.8	HIGH Network	endress	rsg35_firmware rsg45_firmware orsg35_firmware orsg45_firmware	Endress+Hauser Ecograph T (Neutral/Private Label) (RSG35, ORSG35) with Firmware version prior to V2.0.0 is prone to improper privilege management. The affected device has a web-based user interface w…	CWE-269 Improper Privilege Management	CVE-2020-12495	2024-11-21 13:59	2020-11-20	Show	GitHub Exploit DB Packet Storm

211139	7.5	HIGH Network	symantec	endpoint_detection_and_response	Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.	NVD-CWE-noinfo	CVE-2020-12593	2024-11-21 13:59	2020-11-19	Show	GitHub Exploit DB Packet Storm

211140	9.8	CRITICAL Network	intel	open_webrtc_toolkit	Insufficient control flow management in the Open WebRTC Toolkit before version 4.3.1 may allow an unauthenticated user to potentially enable escalation of privilege via network access.	NVD-CWE-Other	CVE-2020-12338	2024-11-21 13:59	2020-11-14	Show	GitHub Exploit DB Packet Storm