Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230661 7.5 危険 phpcards - phpCards の phpcards.header.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5604 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
230662 7.5 危険 Snitz - Snitz Forums 2000 の pop_mail.asp における SQL インジェクションの脆弱性 - CVE-2006-5603 2012-12-20 18:02 2006-10-30 Show GitHub Exploit DB Packet Storm
230663 4 警告 xsupplicant - xsupplicant におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5602 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230664 9 危険 xsupplicant - xsupplicant の eap.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-5601 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230665 4.3 警告 webgeneius - GOOP Gallery の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5598 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230666 7.5 危険 university of british columbia - University of British Columbia iPeer における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5594 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230667 5 警告 webasyst llc - Shop-Script の premium/index.php における CRLF インジェクションの脆弱性 - CVE-2006-5566 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230668 5 警告 Yahoo! - Yahoo! Messenger におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5563 2012-12-20 18:02 2006-10-27 Show GitHub Exploit DB Packet Storm
230669 7.5 危険 revilloc solutions - RevilloC MailServer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2006-5552 2012-12-20 18:02 2006-10-26 Show GitHub Exploit DB Packet Storm
230670 7.5 危険 qksoft - QK SMTP におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-5551 2012-12-20 18:02 2006-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211461 5.4 MEDIUM
Network 		glpi-project glpi In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in Dropdown endpoints due to an invalid Content-Type. This has been fixed in version 9.4.6. CWE-79
Cross-site Scripting 		CVE-2020-11062 2024-11-21 13:56 2020-05-13 Show GitHub Exploit DB Packet Storm
211462 8.8 HIGH
Network 		glpi-project glpi In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. Theoretically, this vulnerability can be exploited by an attacker without a valid account by using a… CWE-352
 Origin Validation Error 		CVE-2020-11060 2024-11-21 13:56 2020-05-13 Show GitHub Exploit DB Packet Storm
211463 8.6 HIGH
Network 		simpleledger slp-validate In SLP Validate (npm package slp-validate) before version 1.2.1, users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet could allow… CWE-697
 Incorrect Comparison 		CVE-2020-11072 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211464 8.6 HIGH
Network 		simpleledger slpjs SLPJS (npm package slpjs) before version 0.27.2, has a vulnerability where users could experience false-negative validation outcomes for MINT transaction operations. A poorly implemented SLP wallet c… CWE-697
 Incorrect Comparison 		CVE-2020-11071 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211465 8.8 HIGH
Network 		pi-hole pi-hole The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Al… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11108 2024-11-21 13:56 2020-05-12 Show GitHub Exploit DB Packet Storm
211466 5.4 MEDIUM
Network 		shopizer shopizer In Shopizer before version 2.11.0, a script can be injected in various forms and saved in the database, then executed when information is fetched from backend. This has been patched in version 2.11.0. CWE-79
Cross-site Scripting 		CVE-2020-11006 2024-11-21 13:56 2020-05-9 Show GitHub Exploit DB Packet Storm
211467 8.0 HIGH
Adjacent 		tp-link tl-wa855re_firmware This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of TP-Link TL-WA855RE Firmware Ver: 855rev4-up-ver1-0-1-P1[20191213-rel60361] Wi-Fi extenders. Al… CWE-287
Improper Authentication 		CVE-2020-10916 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211468 6.3 MEDIUM
Network 		barrelstrengthdesign sprout_forms In Sprout Forms before 3.9.0, there is a potential Server-Side Template Injection vulnerability when using custom fields in Notification Emails which could lead to the execution of Twig code. This ha… CWE-74
Injection 		CVE-2020-11056 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211469 8.1 HIGH
Network 		java-websocket_project java-websocket In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched … CWE-295
Improper Certificate Validation  		CVE-2020-11050 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm
211470 7.2 HIGH
Network 		gira tks-ip-gateway_firmware Gira TKS-IP-Gateway 4.0.7.7 is vulnerable to authenticated remote code execution via the backup functionality of the web frontend. This can be combined with CVE-2020-10794 for remote root access. CWE-78
OS Command  		CVE-2020-10795 2024-11-21 13:56 2020-05-8 Show GitHub Exploit DB Packet Storm