Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230671	7.2	危険	PunBB	-	PunBB における許可されない操作を実行される脆弱性	-	CVE-2006-5737	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230672	5.1	警告	PunBB	-	PunBB の search.php における SQL インジェクションの脆弱性	-	CVE-2006-5736	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230673	7.5	危険	PunBB	-	PunBB の include/common.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5735	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230674	7.5	危険	postnuke software foundation	-	PostNuke の error.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2006-5733	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230675	5	警告	tgs-cms	-	T.G.S. CMS の logout.php における SQL インジェクションの脆弱性	-	CVE-2006-5732	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230676	6.5	警告	yazd	-	Yazd Discussion Forum における任意のフォーラム内へメッセージを返信される脆弱性	-	CVE-2006-5729	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230677	5.1	警告	sazcart	-	sazcart の admin/controls/cart.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5727	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230678	4.9	警告	サン・マイクロシステムズ	-	Solaris の UFS filesystem におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5726	2012-12-20 18:02	2006-11-6	Show	GitHub Exploit DB Packet Storm

230679	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の error.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5718	2012-12-20 18:02	2006-11-1	Show	GitHub Exploit DB Packet Storm

230680	4.3	警告	Zend Technologies Ltd.	-	ZendGData Preview におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5717	2012-12-20 18:02	2006-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212261	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, a special payload can be crafted that can lead to scripts getting executed within the search block of the block editor. This requires an authenticated user with the…	CWE-79 Cross-site Scripting	CVE-2020-11030	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212262	6.1	MEDIUM Network	debian wordpress	debian_linux wordpress	In affected versions of WordPress, a vulnerability in the stats() method of class-wp-object-cache.php can be exploited to execute cross-site scripting (XSS) attacks. This has been patched in version …	CWE-79 Cross-site Scripting	CVE-2020-11029	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212263	7.5	HIGH Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.…	CWE-306 Missing Authentication for Critical Function	CVE-2020-11028	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212264	8.1	HIGH Network	debian wordpress	debian_linux wordpress	In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user by a malicious part…	-	CVE-2020-11027	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212265	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, files with a specially crafted name when uploaded to the Media section can lead to script execution upon accessing the file. This requires an authenticated user wit…	CWE-79 Cross-site Scripting	CVE-2020-11026	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212266	8.8	HIGH Network	intelmq_manager_project	intelmq_manager	IntelMQ Manager from version 1.1.0 and before version 2.1.1 has a vulnerability where the backend incorrectly handled messages given by user-input in the "send" functionality of the Inspect-tool of t…	CWE-78 OS Command	CVE-2020-11016	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212267	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	In affected versions of WordPress, a cross-site scripting (XSS) vulnerability in the navigation section of Customizer allows JavaScript code to be executed. Exploitation requires an authenticated use…	CWE-79 Cross-site Scripting	CVE-2020-11025	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212268	9.1	CRITICAL Network	thinx-device-api_project	thinx-device-api	A vulnerability has been disclosed in thinx-device-api IoT Device Management Server before version 2.5.0. Device MAC address can be spoofed. This means initial registration requests without UDID and …	-	CVE-2020-11015	2024-11-21 13:56	2020-05-1	Show	GitHub Exploit DB Packet Storm

212269	8.2	HIGH Network	moonlight-stream	moonlight	In Moonlight iOS/tvOS before 4.0.1, the pairing process is vulnerable to a man-in-the-middle attack. The bug has been fixed in Moonlight v4.0.1 for iOS and tvOS.	CWE-200 Information Exposure	CVE-2020-11024	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm

212270	9.8	CRITICAL Network	faye_project	faye	Faye (NPM, RubyGem) versions greater than 0.5.0 and before 1.0.4, 1.1.3 and 1.2.5, has the potential for authentication bypass in the extension system. The vulnerability allows any client to bypass c…	CWE-287 Improper Authentication	CVE-2020-11020	2024-11-21 13:56	2020-04-30	Show	GitHub Exploit DB Packet Storm