Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230971	4.3	警告	the war forge	-	warforge.NEWS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6996	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230972	6	警告	v3chat	-	V3 Chat の mycontacts.php における他のユーザとして権限を取得される脆弱性	-	CVE-2006-6995	2012-12-20 18:18	2007-02-12	Show	GitHub Exploit DB Packet Storm

230973	7.8	危険	softinform	-	FineBrowser Freeware における他のドメインから制限された情報をアクセスされる脆弱性	-	CVE-2006-6987	2012-12-20 18:18	2007-02-8	Show	GitHub Exploit DB Packet Storm

230974	7.5	危険	phpgraphy	-	phpGraphy における任意の PHP コードを実行される脆弱性	-	CVE-2006-6966	2012-12-20 18:18	2007-02-3	Show	GitHub Exploit DB Packet Storm

230975	6.8	警告	ウェブルート株式会社	-	WebRoot Spy Sweeper におけるマルウェアを回避される脆弱性	-	CVE-2006-6961	2012-12-20 18:18	2007-01-29	Show	GitHub Exploit DB Packet Storm

230976	6.8	警告	ウェブルート株式会社	-	WebRoot Spy Sweeper の Compression Sweep 機能におけるマルウェアの検出を回避される脆弱性	-	CVE-2006-6960	2012-12-20 18:18	2007-01-29	Show	GitHub Exploit DB Packet Storm

230977	4.6	警告	ウェブルート株式会社	-	WebRoot Spy Sweeper における "スタートアップシールド" セキュリティ制限を回避される脆弱性	-	CVE-2006-6959	2012-12-20 18:18	2007-01-29	Show	GitHub Exploit DB Packet Storm

230978	7.5	危険	php blue dragon	-	phpBlueDragon における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-6958	2012-12-20 18:18	2007-01-29	Show	GitHub Exploit DB Packet Storm

230979	7.5	危険	VirtueMart	-	Virtuemart における SQL インジェクションの脆弱性	-	CVE-2006-6945	2012-12-20 18:18	2007-01-19	Show	GitHub Exploit DB Packet Storm

230980	7.5	危険	The phpMyAdmin Project	-	phpMyAdmin におけるアクセスルールを回避される脆弱性	-	CVE-2006-6944	2012-12-20 18:18	2007-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211381	5.5	MEDIUM Local	amd	radeon_software	Kernel Pool Address disclosure in AMD Graphics Driver for Windows 10 may lead to KASLR bypass.	NVD-CWE-noinfo	CVE-2020-12897	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

211382	7.8	HIGH Local	amd	radeon_software	Pool/Heap Overflow in AMD Graphics Driver for Windows 10 in Escape 0x110037 may lead to escalation of privilege, information disclosure or denial of service.	CWE-787 Out-of-bounds Write	CVE-2020-12895	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

211383	7.8	HIGH Local	amd	radeon_software	A potential privilege escalation/denial of service issue exists in the AMD Radeon Kernel Mode driver Escape 0x2000c00 Call handler. An attacker with low privilege could potentially induce a Windows B…	NVD-CWE-noinfo	CVE-2020-12964	2024-11-21 14:00	2021-11-16	Show	GitHub Exploit DB Packet Storm

211384	5.4	MEDIUM Network	fortinet	fortianalyzer	A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiAnalyzer version 6.0.6 and below, version 6.4.4 allows attacker to execute unauthorized code or…	CWE-79 Cross-site Scripting	CVE-2020-12814	2024-11-21 14:00	2021-11-3	Show	GitHub Exploit DB Packet Storm

211385	7.5	HIGH Network	3xlogic	infinias_eidc32_firmware	Missing TLS certificate validation on 3xLogic Infinias eIDC32 devices through 3.4.125 allows an attacker to intercept/control the channel by which door lock policies are applied.	CWE-295 Improper Certificate Validation	CVE-2020-12681	2024-11-21 14:00	2021-07-26	Show	GitHub Exploit DB Packet Storm

211386	8.1	HIGH Adjacent	depstech	wifi_digital_microscope_3_firmware	DEPSTECH WiFi Digital Microscope 3 allows remote attackers to change the SSID and password, and demand a ransom payment from the rightful device owner, because there is no way to reset to Factory Def…	CWE-862 Missing Authorization	CVE-2020-12734	2024-11-21 14:00	2021-07-16	Show	GitHub Exploit DB Packet Storm

211387	7.5	HIGH Network	depstech	wifi_digital_microscope_3_firmware	Certain Shenzhen PENGLIXIN components on DEPSTECH WiFi Digital Microscope 3, as used by Shekar Endoscope, allow a TELNET connection with the molinkadmin password for the molink account.	CWE-863 Incorrect Authorization	CVE-2020-12733	2024-11-21 14:00	2021-07-16	Show	GitHub Exploit DB Packet Storm

211388	6.5	MEDIUM Adjacent	depstech	wifi_digital_microscope_3_firmware	DEPSTECH WiFi Digital Microscope 3 has a default SSID of Jetion_xxxxxxxx with a password of 12345678.	CWE-1188 Insecure Default Initialization of Resource	CVE-2020-12732	2024-11-21 14:00	2021-07-16	Show	GitHub Exploit DB Packet Storm

211389	7.5	HIGH Network	magicsmotion	flamingo_2_firmware	The MagicMotion Flamingo 2 application for Android stores data on an sdcard under com.vt.magicmotion/files/Pictures, whence it can be read by other applications.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-12731	2024-11-21 14:00	2021-07-16	Show	GitHub Exploit DB Packet Storm

211390	5.3	MEDIUM Adjacent	magicsmotion	flamingo_2_firmware	MagicMotion Flamingo 2 lacks BLE encryption, enabling data sniffing and packet forgery.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-12730	2024-11-21 14:00	2021-07-16	Show	GitHub Exploit DB Packet Storm