Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230681 4.9 警告 TorrentFlux - TorrentFlux の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6328 2012-12-20 18:02 2006-12-6 Show GitHub Exploit DB Packet Storm
230682 5 警告 stefan ritt - elog の show_elog_list 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-6318 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
230683 6.8 警告 woltlab - wBB Lite における任意の SQL コマンドを実行される脆弱性 - CVE-2006-6289 2012-12-20 18:02 2006-12-5 Show GitHub Exploit DB Packet Storm
230684 9 危険 vikingboard - Vikingboard の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6284 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230685 4.3 警告 vikingboard - Vikingboard におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6283 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230686 9.3 危険 vikingboard - Vikingboard の members.php における強制 SQL エラーを誘発される脆弱性 - CVE-2006-6282 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230687 6.8 警告 phpoll - PHPOLL におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6271 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230688 7.8 危険 postnuke software foundation - PostNuke における重要な情報を取得される脆弱性 - CVE-2006-6267 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230689 6.4 警告 phpjunkyard - PHPJunkYard MBoard の mboard.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-6262 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
230690 9.3 危険 quinnware - Quintessential Player におけるバッファオーバーフローの脆弱性 - CVE-2006-6261 2012-12-20 18:02 2006-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198661 8.1 HIGH
Network 		pivotal_software spring_batch When configured to enable default typing, Jackson contained a deserialization vulnerability that could lead to arbitrary code execution. Jackson fixed this vulnerability by blacklisting known "deseri… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-5411 2024-11-21 14:34 2020-06-12 Show GitHub Exploit DB Packet Storm
198662 8.8 HIGH
Network 		zenphoto zenphoto Zenphoto versions prior to 1.5.7 allows an attacker to conduct PHP code injection attacks by leading a user to upload a specially crafted .zip file. CWE-94
Code Injection 		CVE-2020-5593 2024-11-21 14:34 2020-06-11 Show GitHub Exploit DB Packet Storm
198663 6.1 MEDIUM
Network 		zenphoto zenphoto Cross-site scripting vulnerability in Zenphoto versions prior to 1.5.7 allows remote attackers to inject an arbitrary JavaScript via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2020-5592 2024-11-21 14:34 2020-06-11 Show GitHub Exploit DB Packet Storm
198664 6.7 MEDIUM
Local 		dell latitude_5300_firmware
latitude_5300_2-in-1_firmware
latitude_5400_firmware
latitude_5401_firmware
latitude_5500_firmware
latitude_5501_firmware
latitude_7200_2_in_1_firmware
lat… 		Select Dell Client Consumer and Commercial platforms include an issue that allows the BIOS Admin password to be changed through Dell's manageability interface without knowledge of the current BIOS Ad… NVD-CWE-Other
CVE-2020-5363 2024-11-21 14:34 2020-06-11 Show GitHub Exploit DB Packet Storm
198665 8.8 HIGH
Adjacent 		sony wf-1000x_firmware
wf-sp700n_firmware
wh-1000xm2_firmware
wh-1000xm3_firmware
wh-ch700n_firmware
wh-h900n_firmware
wh-xb700_firmware
wh-xb900n_firmware
wi-1000x_firmware
wi-… 		SONY Wireless Headphones WF-1000X, WF-SP700N, WH-1000XM2, WH-1000XM3, WH-CH700N, WH-H900N, WH-XB700, WH-XB900N, WI-1000X, WI-C600N and WI-SP600N with firmware versions prior to 4.5.2 have vulnerabili… CWE-306
Missing Authentication for Critical Function 		CVE-2020-5589 2024-11-21 14:34 2020-06-9 Show GitHub Exploit DB Packet Storm
198666 7.5 HIGH
Network 		xack xack_dns XACK DNS 1.11.0 to 1.11.4, 1.10.0 to 1.10.8, 1.8.0 to 1.8.23, 1.7.0 to 1.7.18, and versions before 1.7.0 allow remote attackers to cause a denial of service condition resulting in degradation of the … CWE-674
 Uncontrolled Recursion 		CVE-2020-5591 2024-11-21 14:34 2020-06-6 Show GitHub Exploit DB Packet Storm
198667 7.5 HIGH
Network 		vmware spring_cloud_config Spring Cloud Config, versions 2.2.x prior to 2.2.3, versions 2.1.x prior to 2.1.9, and older unsupported versions allow applications to serve arbitrary configuration files through the spring-cloud-co… CWE-22
Path Traversal 		CVE-2020-5410 2024-11-21 14:34 2020-06-3 Show GitHub Exploit DB Packet Storm
198668 4.6 MEDIUM
Physics 		cybozu kintone Android App 'kintone mobile for Android' 1.0.0 to 2.5 allows an attacker to obtain credential information registered in the product via unspecified vectors. CWE-200
Information Exposure 		CVE-2020-5573 2024-11-21 14:34 2020-05-29 Show GitHub Exploit DB Packet Storm
198669 4.6 MEDIUM
Physics 		cybozu mailwise Android App 'Mailwise for Android' 1.0.0 to 1.0.1 allows an attacker to obtain credential information registered in the product via unspecified vectors. CWE-200
Information Exposure 		CVE-2020-5572 2024-11-21 14:34 2020-05-29 Show GitHub Exploit DB Packet Storm
198670 9.8 CRITICAL
Network 		cybozu desktop Cybozu Desktop for Windows 2.0.23 to 2.2.40 allows remote code execution via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2020-5537 2024-11-21 14:34 2020-05-25 Show GitHub Exploit DB Packet Storm