Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230841 7.5 危険 techno dreams - Techno Dreams Articles & Papers Package の ArticlesTableview.asp における SQL インジェクションの脆弱性 - CVE-2006-4891 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230842 7.5 危険 unak - UNAK-CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4890 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230843 5.1 警告 telekorn - Telekorn SL における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4889 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230844 7.5 危険 shadowed portal - Shadowed Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4885 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230845 5 警告 phpquiz - Walter Beschmout PhpQuiz における重要な情報を取得される脆弱性 - CVE-2006-4865 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230846 4.3 警告 roller weblogger - Roller WebLogger におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4856 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230847 4.9 警告 シマンテック - Symantec Norton Personal Firewall などの \Device\SymEvent ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-4855 2012-12-20 18:02 2006-09-19 Show GitHub Exploit DB Packet Storm
230848 7.5 危険 quadcomm - QuadComm Q-Shop の browse.asp における SQL インジェクションの脆弱性 - CVE-2006-4852 2012-12-20 18:02 2006-09-18 Show GitHub Exploit DB Packet Storm
230849 5 警告 ソフォス - Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4839 2012-12-20 18:02 2006-11-1 Show GitHub Exploit DB Packet Storm
230850 7.5 危険 phpquiz - Jule Slootbeek phpQuiz の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4834 2012-12-20 18:02 2006-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211761 5.5 MEDIUM
Local 		gitlab gitlab GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects. CWE-22
Path Traversal 		CVE-2020-10977 2024-11-21 13:56 2020-04-9 Show GitHub Exploit DB Packet Storm
211762 7.5 HIGH
Network 		gitlab gitlab GitLab EE/CE 8.17 to 12.9 is vulnerable to information leakage when querying a merge request widget. CWE-200
Information Exposure 		CVE-2020-10976 2024-11-21 13:56 2020-04-9 Show GitHub Exploit DB Packet Storm
211763 4.3 MEDIUM
Network 		gitlab gitlab GitLab EE/CE 10.8 to 12.9 is leaking metadata and comments on vulnerabilities to unauthorized users on the vulnerability feedback page. NVD-CWE-noinfo
CVE-2020-10975 2024-11-21 13:56 2020-04-9 Show GitHub Exploit DB Packet Storm
211764 5.5 MEDIUM
Local 		codeblocks code\ A buffer overflow vulnerability in Code::Blocks 17.12 allows an attacker to execute arbitrary code via a crafted project file. CWE-120
Classic Buffer Overflow 		CVE-2020-10814 2024-11-21 13:56 2020-04-9 Show GitHub Exploit DB Packet Storm
211765 6.5 MEDIUM
Network 		greenbrowser_project greenbrowser GreenBrowser before version 1.2 has a vulnerability where apps that rely on URL Parsing to verify that a given URL is pointing to a trust server may be susceptible to many different ways to get URL p… NVD-CWE-Other
CVE-2020-11000 2024-11-21 13:56 2020-04-9 Show GitHub Exploit DB Packet Storm
211766 5.6 MEDIUM
Network 		qemu qemu hw/net/tulip.c in QEMU 4.2.0 has a buffer overflow during the copying of tx/rx buffers because the frame size is not validated against the r/w data length. CWE-787
 Out-of-bounds Write 		CVE-2020-11102 2024-11-21 13:56 2020-04-7 Show GitHub Exploit DB Packet Storm
211767 5.3 MEDIUM
Network 		mediawiki mediawiki In MediaWiki before 1.34.1, users can add various Cascading Style Sheets (CSS) classes (which can affect what content is shown or hidden in the user interface) to arbitrary DOM nodes via HTML content… CWE-74
Injection 		CVE-2020-10960 2024-11-21 13:56 2020-04-4 Show GitHub Exploit DB Packet Storm
211768 8.8 HIGH
Network 		apachefriends xampp An issue was discovered in XAMPP before 7.2.29, 7.3.x before 7.3.16 , and 7.4.x before 7.4.4 on Windows. An unprivileged user can change a .exe configuration in xampp-contol.ini for all users (includ… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-11107 2024-11-21 13:56 2020-04-3 Show GitHub Exploit DB Packet Storm
211769 8.8 HIGH
Network 		haproxy
debian
redhat
fedoraproject
canonical
opensuse 		haproxy
debian_linux
openshift_container_platform
fedora
ubuntu_linux
leap 		In hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a remote attacker can write arbitrary bytes around a certain location on the heap via a crafted HTTP/2… CWE-787
 Out-of-bounds Write 		CVE-2020-11100 2024-11-21 13:56 2020-04-3 Show GitHub Exploit DB Packet Storm
211770 9.8 CRITICAL
Network 		alienform2_project alienform2 Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) 2.0.2 is vulnerable to Remote Command Execution via eval injection, a different issue than CVE-2002-0934. An unauthenticated, re… CWE-94
Code Injection 		CVE-2020-10948 2024-11-21 13:56 2020-04-2 Show GitHub Exploit DB Packet Storm