Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230571	6.8	警告	textsend	-	Carsen Klock TextSend の sender.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6686	2012-12-20 18:02	2006-12-21	Show	GitHub Exploit DB Packet Storm

230572	5	警告	winftp server	-	WinFtp Server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6673	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230573	6.8	警告	webcalendar	-	WebCalendar の export_handler.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6669	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230574	6.8	警告	verliadmin	-	VerliAdmin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6668	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230575	7.5	危険	verliadmin	-	VerliAdmin における SQL インジェクションの脆弱性	-	CVE-2006-6667	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230576	7.5	危険	verliadmin	-	VerliAdmin の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6666	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230577	4.1	警告	SUSE	-	SUSE Linux 上で稼動する Linux novell-lum におけるパスワードなしでコンソールへログインされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2006-6662	2012-12-20 18:02	2006-12-19	Show	GitHub Exploit DB Packet Storm

230578	7.5	危険	php-update	-	PHP-Update の blog.php における任意の PHP コードを実行される脆弱性	-	CVE-2006-6661	2012-12-20 18:02	2006-12-20	Show	GitHub Exploit DB Packet Storm

230579	7.5	危険	planetluc.com	-	planetluc.com RateMe の main.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6648	2012-12-20 18:02	2006-12-19	Show	GitHub Exploit DB Packet Storm

230580	7.5	危険	yapbb	-	YapBB の include/yapbb_session.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6633	2012-12-20 18:02	2006-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199571	7.2	HIGH Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 could allow a remote privileged user to execute commands.	CWE-78 OS Command	CVE-2020-4512	2024-11-21 14:32	2020-07-14	Show	GitHub Exploit DB Packet Storm

199572	6.5	MEDIUM Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 could allow an authenticated user to cause a denial of service of the qflow process by sending a malformed sflow command. IBM X-Force ID: 182366.	NVD-CWE-noinfo	CVE-2020-4511	2024-11-21 14:32	2020-07-14	Show	GitHub Exploit DB Packet Storm

199573	5.5	MEDIUM Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information…	CWE-611 XXE	CVE-2020-4510	2024-11-21 14:32	2020-07-14	Show	GitHub Exploit DB Packet Storm

199574	5.4	MEDIUM Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall…	CWE-79 Cross-site Scripting	CVE-2020-4364	2024-11-21 14:32	2020-07-14	Show	GitHub Exploit DB Packet Storm

199575	6.8	MEDIUM Network	bareos	bareos	Bareos before version 19.2.8 and earlier allows a malicious client to communicate with the director without knowledge of the shared secret if the director allows client initiated connection and conne…	CWE-294 Authentication Bypass by Capture-replay	CVE-2020-4042	2024-11-21 14:32	2020-07-11	Show	GitHub Exploit DB Packet Storm

199576	7.8	HIGH Local	vmware	fusion horizon_client remote_console	VMware Fusion (11.x before 11.5.5), VMware Remote Console for Mac (11.x and prior before 11.2.0 ) and Horizon Client for Mac (5.x and prior before 5.4.3) contain a privilege escalation vulnerability …	NVD-CWE-noinfo	CVE-2020-3974	2024-11-21 14:32	2020-07-10	Show	GitHub Exploit DB Packet Storm

199577	8.8	HIGH Network	ibm	infosphere_information_server_on_cloud infosphere_information_server	IBM InfoSphere Information Server 11.3, 11.5, and 11.7 could allow a remote attacker to execute arbitrary code on the system, caused by the deserialization of untrusted data. By persuading a victim t…	CWE-502 Deserialization of Untrusted Data	CVE-2020-4305	2024-11-21 14:32	2020-07-10	Show	GitHub Exploit DB Packet Storm

199578	4.3	MEDIUM Network	ibm	security_guardium_insights infosphere_guardium_activity_monitor	IBM Guardium Activity Insights 10.6 and 11.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to …	NVD-CWE-Other	CVE-2020-4173	2024-11-21 14:32	2020-07-10	Show	GitHub Exploit DB Packet Storm

199579	8.8	HIGH Network	vmware	velocloud_orchestrator	The VeloCloud Orchestrator does not apply correct input validation which allows for blind SQL-injection. A malicious actor with tenant access to Velocloud Orchestrator could enter specially crafted S…	CWE-89 SQL Injection	CVE-2020-3973	2024-11-21 14:32	2020-07-8	Show	GitHub Exploit DB Packet Storm

199580	9.9	CRITICAL Network	electronjs	electron	In Electron before versions 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass. Code running in the main world context in the renderer can reach into the isolated Electron context an…	NVD-CWE-Other	CVE-2020-4077	2024-11-21 14:32	2020-07-7	Show	GitHub Exploit DB Packet Storm