Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230541	2.1	注意	xbiff2	-	xbiff2 におけるログイン資格情報などを重要な情報を取得される脆弱性	-	CVE-2006-4493	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230542	7.5	危険	ultrize	-	MiniBill における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4489	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230543	4.3	警告	visualshapers	-	Visual Shapers ezContents の loginreq2.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4479	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230544	7.5	危険	visualshapers	-	Visual Shapers ezContents の headeruserdata.php における SQL インジェクションの脆弱性	-	CVE-2006-4478	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230545	7.5	危険	visualshapers	-	Visual Shapers ezContents における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4477	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230546	7.5	危険	Simple Machines	-	SMF における任意のローカルファイルを読むディレクトリトラバーサル攻撃を実行される脆弱性	-	CVE-2006-4467	2012-12-20 18:02	2006-08-19	Show	GitHub Exploit DB Packet Storm

230547	6.4	警告	phpgroupware	-	phpGroupWare の calendar/inc/class.holidaycalc.inc.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-4458	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230548	7.5	危険	phpecard	-	phpECard の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4457	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230549	7.5	危険	phpecard	-	phpECard の functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4456	2012-12-20 18:02	2006-08-31	Show	GitHub Exploit DB Packet Storm

230550	4.3	警告	PmWiki	-	PmWiki におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-4453	2012-12-20 18:02	2006-08-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211981	7.8	HIGH Local	zephyrproject	zephyr	Multiple syscalls in the Kscan subsystem perform insufficient argument validation, allowing code executing in userspace to potentially gain elevated privileges. See NCC-ZEP-006 This issue affects: ze…	CWE-20 Improper Input Validation	CVE-2020-10058	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211982	7.8	HIGH Local	zephyrproject	zephyr	Multiple syscalls with insufficient argument validation See NCC-ZEP-006 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and later versions. version 2.1.0 and later versions.	CWE-20 Improper Input Validation	CVE-2020-10028	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211983	7.8	HIGH Local	zephyrproject	zephyr	An attacker who has obtained code execution within a user thread is able to elevate privileges to that of the kernel. See NCC-ZEP-001 This issue affects: zephyrproject-rtos zephyr version 1.14.0 and …	CWE-697 Incorrect Comparison	CVE-2020-10027	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211984	7.8	HIGH Local	zephyrproject	zephyr	The arm platform-specific code uses a signed integer comparison when validating system call numbers. An attacker who has obtained code execution within a user thread is able to elevate privileges to …	CWE-697 Incorrect Comparison	CVE-2020-10024	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211985	6.8	MEDIUM Physics	zephyrproject	zephyr	The shell subsystem contains a buffer overflow, whereby an adversary with physical access to the device is able to cause a memory corruption, resulting in denial of service or possibly code execution…	CWE-120 Classic Buffer Overflow	CVE-2020-10023	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211986	9.8	CRITICAL Network	zephyrproject	zephyr	A malformed JSON payload that is received from an UpdateHub server may trigger memory corruption in the Zephyr OS. This could result in a denial of service in the best case, or code execution in the …	CWE-120 Classic Buffer Overflow	CVE-2020-10022	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211987	7.8	HIGH Local	zephyrproject	zephyr	Out-of-bounds Write in the USB Mass Storage memoryWrite handler with unaligned Sizes See NCC-ZEP-024, NCC-ZEP-025, NCC-ZEP-026 This issue affects: zephyrproject-rtos zephyr version 1.14.1 and later v…	CWE-787 Out-of-bounds Write	CVE-2020-10021	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211988	7.8	HIGH Local	zephyrproject	zephyr	USB DFU has a potential buffer overflow where the requested length (wLength) is not checked against the buffer size. This could be used by a malicious USB host to exploit the buffer overflow. See NCC…	CWE-120 Classic Buffer Overflow	CVE-2020-10019	2024-11-21 13:54	2020-05-12	Show	GitHub Exploit DB Packet Storm

211989	9.8	CRITICAL Network	assaabloy	yale_wipc-301w_firmware	ASSA ABLOY Yale WIPC-301W 2.x.2.29 through 2.x.2.43_p1 devices allow Eval Injection of commands.	CWE-94 Code Injection	CVE-2020-10176	2024-11-21 13:54	2020-05-8	Show	GitHub Exploit DB Packet Storm

211990	7.5	HIGH Network	doorkeeper_project	doorkeeper	Doorkeeper version 5.0.0 and later contains an information disclosure vulnerability that allows an attacker to retrieve the client secret only intended for the OAuth application owner. After authoriz…	CWE-862 Missing Authorization	CVE-2020-10187	2024-11-21 13:54	2020-05-4	Show	GitHub Exploit DB Packet Storm