Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230541 2.1 注意 xbiff2 - xbiff2 におけるログイン資格情報などを重要な情報を取得される脆弱性 - CVE-2006-4493 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230542 7.5 危険 ultrize - MiniBill における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4489 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230543 4.3 警告 visualshapers - Visual Shapers ezContents の loginreq2.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4479 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230544 7.5 危険 visualshapers - Visual Shapers ezContents の headeruserdata.php における SQL インジェクションの脆弱性 - CVE-2006-4478 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230545 7.5 危険 visualshapers - Visual Shapers ezContents における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4477 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230546 7.5 危険 Simple Machines - SMF における任意のローカルファイルを読むディレクトリトラバーサル攻撃を実行される脆弱性 - CVE-2006-4467 2012-12-20 18:02 2006-08-19 Show GitHub Exploit DB Packet Storm
230547 6.4 警告 phpgroupware - phpGroupWare の calendar/inc/class.holidaycalc.inc.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4458 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230548 7.5 危険 phpecard - phpECard の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4457 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230549 7.5 危険 phpecard - phpECard の functions.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4456 2012-12-20 18:02 2006-08-31 Show GitHub Exploit DB Packet Storm
230550 4.3 警告 PmWiki - PmWiki におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4453 2012-12-20 18:02 2006-08-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211891 4.4 MEDIUM
Local 		amino ak45x_firmware
ak5xx_firmware
ak65x_firmware
aria6xx_firmware
aria7xx_firmware
kami7b_firmware 		Use of a Hard-coded Password in VNCserver in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows local attackers to view and interact w… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-10206 2024-11-21 13:54 2020-12-30 Show GitHub Exploit DB Packet Storm
211892 9.8 CRITICAL
Network 		amino ak45x_firmware
ak5xx_firmware
ak65x_firmware
aria6xx_firmware
aria7xx_firmware
kami7b_firmware 		Because of hard-coded SSH keys for the root user in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series, Kami7B, an attacker may remotely log in through … CWE-798
 Use of Hard-coded Credentials 		CVE-2020-10210 2024-11-21 13:54 2020-12-30 Show GitHub Exploit DB Packet Storm
211893 9.8 CRITICAL
Network 		amino ak45x_firmware
ak5xx_firmware
ak65x_firmware
aria6xx_firmware
aria7xx_firmware
kami7b_firmware 		Use of Hard-coded Credentials in EntoneWebEngine in Amino Communications AK45x series, AK5xx series, AK65x series, Aria6xx series, Aria7/AK7Xx series and Kami7B allows remote attackers to retrieve an… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-10207 2024-11-21 13:54 2020-12-30 Show GitHub Exploit DB Packet Storm
211894 9.8 CRITICAL
Network 		solarwinds orion_platform The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote attacker to execute API commands. This vulnerability could allow a remote attacker to bypass authenticatio… CWE-287
Improper Authentication 		CVE-2020-10148 2024-11-21 13:54 2020-12-30 Show GitHub Exploit DB Packet Storm
211895 7.8 HIGH
Local 		macrium reflect Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl\. Macrium Reflect contains a privileged service that uses this OpenSSL component. Because unprivilege… CWE-665
 Improper Initialization 		CVE-2020-10143 2024-11-21 13:54 2020-12-10 Show GitHub Exploit DB Packet Storm
211896 5.4 MEDIUM
Network 		microsoft teams The Microsoft Teams online service contains a stored cross-site scripting vulnerability in the displayName parameter that can be exploited on Teams clients to obtain sensitive information such as aut… CWE-79
Cross-site Scripting 		CVE-2020-10146 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211897 7.8 HIGH
Local 		apple mac_os_x
tvos
iphone_os
watchos
ipados 		An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted au… CWE-787
 Out-of-bounds Write 		CVE-2020-10017 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211898 7.8 HIGH
Local 		apple tvos
iphone_os
watchos
ipados
mac_os_x
macos 		A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. An application may be able to ex… CWE-787
 Out-of-bounds Write 		CVE-2020-10016 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211899 6.3 MEDIUM
Local 		apple macos
mac_os_x 		A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to break out of its sa… CWE-22
Path Traversal 		CVE-2020-10014 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm
211900 7.8 HIGH
Local 		apple iphone_os
tvos
ipados
mac_os_x 		A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.0, iOS 14.0 and iPadOS 14.0. An application may be able to execute arbitrary code with kernel privileges. NVD-CWE-noinfo
CVE-2020-10013 2024-11-21 13:54 2020-12-9 Show GitHub Exploit DB Packet Storm