Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231021 6.8 警告 sh-news - SH-News の misc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6801 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231022 7.5 危険 The Cacti Group - Cacti における SQL インジェクションの脆弱性 - CVE-2006-6799 2012-12-20 18:02 2006-12-28 Show GitHub Exploit DB Packet Storm
231023 7.5 危険 PHP Outburst - UPB の chat/login.php における任意の PHP コードを挿入される脆弱性 - CVE-2006-6790 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231024 7.5 危険 phpbbxtra - Phpbbxtra の includes/archive/archive_topic.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6789 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231025 6.8 警告 timberwolf - TimberWolf の shownews.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6778 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231026 9.3 危険 w3m project - w3m の file.c におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2006-6772 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231027 6.8 警告 pwp technologies - PWP Technologies The Classified Ad System の default.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6768 2012-12-20 18:02 2006-12-27 Show GitHub Exploit DB Packet Storm
231028 7.5 危険 phpmymanga - Phpmymanga の template.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6760 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
231029 2.1 注意 phpprofiles - phpProfiles におけるディレクトリコンテンツをリスト化される脆弱性 - CVE-2006-6744 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
231030 4.6 警告 phpprofiles - phpProfiles におけるファイルを削除される脆弱性 - CVE-2006-6743 2012-12-20 18:02 2006-12-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212021 6.5 MEDIUM
Network 		codesys development_system
control_for_beaglebone
control_for_empc-a\/imx6
control_for_iot2000
control_for_pfc100
control_for_pfc200
control_for_plcnext
control_for_raspberry_pi
contr… 		An issue was discovered in CODESYS Development System before 3.5.16.0. CODESYS WebVisu and CODESYS Remote TargetVisu are susceptible to privilege escalation. NVD-CWE-noinfo
CVE-2020-12068 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212022 5.7 MEDIUM
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. SoftPAC’s firmware files’ signatures are not verified upon firmware update. This allows an attacker to replace legitimate firmware files with malicious … CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-12046 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212023 6.5 MEDIUM
Network 		opto22 softpac_project Opto 22 SoftPAC Project Version 9.6 and prior. Paths specified within the zip files used to update the SoftPAC firmware are not sanitized. As a result, an attacker with user privileges can gain arbit… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-12042 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212024 9.8 CRITICAL
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router 		Apache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrade t… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-11973 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212025 9.8 CRITICAL
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router 		Apache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.0, 3.0.0 up to 3.1.0 are affected. 2.x users should upgrade to 2.25.1, 3.x users should upgrad… CWE-502
 Deserialization of Untrusted Data 		CVE-2020-11972 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212026 7.5 HIGH
Network 		apache
oracle 		camel
flexcube_private_banking
enterprise_manager_base_platform
communications_diameter_signaling_router
communications_diameter_intelligence_hub 		Apache Camel's JMX is vulnerable to Rebind Flaw. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.25.x, 3.0.0 up to 3.1.0 is affected. Users should upgrade to 3.2.0. NVD-CWE-noinfo
CVE-2020-11971 2024-11-21 13:59 2020-05-15 Show GitHub Exploit DB Packet Storm
212027 8.8 HIGH
Network 		westerndigital wd_discovery The Western Digital WD Discovery application before 3.8.229 for MyCloud Home on Windows and macOS is vulnerable to CSRF, with impacts such as stealing data, modifying disk contents, or exhausting dis… CWE-352
 Origin Validation Error 		CVE-2020-12427 2024-11-21 13:59 2020-05-14 Show GitHub Exploit DB Packet Storm
212028 9.8 CRITICAL
Network 		zulipchat zulip_desktop Zulip Desktop before 5.2.0 has Missing SSL Certificate Validation because all validation was inadvertently disabled during an attempt to recognize the ignoreCerts option. CWE-295
Improper Certificate Validation  		CVE-2020-12637 2024-11-21 13:59 2020-05-10 Show GitHub Exploit DB Packet Storm
212029 8.8 HIGH
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple relative path traversal vulnerabilities exist that may allow a low privilege user to overwrite files outside the application… CWE-22
Path Traversal 		CVE-2020-12026 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm
212030 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. An improper validation vulnerability exists that could allow an attacker to inject specially crafted input into memory where it can b… CWE-129
 Improper Validation of Array Index 		CVE-2020-12022 2024-11-21 13:59 2020-05-8 Show GitHub Exploit DB Packet Storm