Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 13, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230551 | 6.8 | 警告 | timberwolf | - | TimberWolf の shownews.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-6778 | 2012-12-20 18:02 | 2006-12-27 | Show | GitHub Exploit DB Packet Storm |
| 230552 | 9.3 | 危険 | w3m project | - | w3m の file.c におけるフォーマットストリングの脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2006-6772 | 2012-12-20 18:02 | 2006-12-27 | Show | GitHub Exploit DB Packet Storm |
| 230553 | 6.8 | 警告 | pwp technologies | - | PWP Technologies The Classified Ad System の default.asp におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-6768 | 2012-12-20 18:02 | 2006-12-27 | Show | GitHub Exploit DB Packet Storm |
| 230554 | 7.5 | 危険 | phpmymanga | - | Phpmymanga の template.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-6760 | 2012-12-20 18:02 | 2006-12-26 | Show | GitHub Exploit DB Packet Storm |
| 230555 | 2.1 | 注意 | phpprofiles | - | phpProfiles におけるディレクトリコンテンツをリスト化される脆弱性 | - | CVE-2006-6744 | 2012-12-20 18:02 | 2006-12-26 | Show | GitHub Exploit DB Packet Storm |
| 230556 | 4.6 | 警告 | phpprofiles | - | phpProfiles におけるファイルを削除される脆弱性 | - | CVE-2006-6743 | 2012-12-20 18:02 | 2006-12-26 | Show | GitHub Exploit DB Packet Storm |
| 230557 | 7.5 | 危険 | phpprofiles | - | phpProfiles における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2006-6740 | 2012-12-20 18:02 | 2006-12-26 | Show | GitHub Exploit DB Packet Storm |
| 230558 | 5 | 警告 | phpbuilder | - | PHPBuilder におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2006-6725 | 2012-12-20 18:02 | 2006-12-26 | Show | GitHub Exploit DB Packet Storm |
| 230559 | 5.1 | 警告 | powerscripts | - | PowerClan の footer.inc.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2006-6715 | 2012-12-20 18:02 | 2006-12-22 | Show | GitHub Exploit DB Packet Storm |
| 230560 | 6.5 | 警告 | 日立 | - | Groupmax 用の Soumu Workflow などにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2006-6706 | 2012-12-20 18:02 | 2006-12-22 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 198781 | 8.1 |
HIGH
Network |
f5 |
big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager… |
On BIG-IP 15.0.0-15.1.0.2, 14.1.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5.1, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, in a High Availability (HA) network failover in Devic… |
CWE-287 CWE-319 Improper Authentication Cleartext Transmission of Sensitive Information |
CVE-2020-5860 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 198782 | 7.8 |
HIGH
Local |
f5 |
big-iq_centralized_management big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager… |
On BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and BIG-IQ 7.0.0, 6.0.0-6.1.0, and 5.2.0-5.4.0, users with non-administrator roles (for example, Guest … |
NVD-CWE-noinfo
|
CVE-2020-5858 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 198783 | 7.5 |
HIGH
Network |
f5 |
big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system … |
On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undisclosed HTTP behavior may lead to a denial of service. |
NVD-CWE-noinfo
|
CVE-2020-5857 | 2024-11-21 14:34 | 2020-03-28 | Show | GitHub Exploit DB Packet Storm |
| 198784 | 9.8 |
CRITICAL
Network |
keijiban_tsumiki_project | keijiban_tsumiki | Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors. |
CWE-78
OS Command |
CVE-2020-5561 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198785 | 9.8 |
CRITICAL
Network |
wl-enq_project | wl-enq | WL-Enq 1.11 and 1.12 allows remote attackers to execute arbitrary OS commands with the administrative privilege via unspecified vectors. |
CWE-78
OS Command |
CVE-2020-5560 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198786 | 6.1 |
MEDIUM
Network |
wl-enq_project | wl-enq | Cross-site scripting vulnerability in WL-Enq 1.11 and 1.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
CWE-79
Cross-site Scripting |
CVE-2020-5559 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198787 | 8.8 |
HIGH
Network |
cutephp | cutenews | CuteNews 2.0.1 allows remote authenticated attackers to execute arbitrary PHP code via unspecified vectors. |
CWE-94
Code Injection |
CVE-2020-5558 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198788 | 6.1 |
MEDIUM
Network |
cutephp | cutenews | Cross-site scripting vulnerability in CuteNews 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
CWE-79
Cross-site Scripting |
CVE-2020-5557 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198789 | 9.8 |
CRITICAL
Network |
shihonkanri_plus_goout_project | shihonkanri_plus_goout | Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to execute arbitrary OS commands via unspecified vectors. |
CWE-78
OS Command |
CVE-2020-5556 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |
| 198790 | 9.1 |
CRITICAL
Network |
shihonkanri_plus_goout_project | shihonkanri_plus_goout | Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper in… |
CWE-20
Improper Input Validation |
CVE-2020-5555 | 2024-11-21 14:34 | 2020-03-25 | Show | GitHub Exploit DB Packet Storm |