Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231101	5	警告	Tiki Software Community Association	-	Tikiwiki の tiki-wiki_rss.php における重要な情報 (MySQL ユーザ名およびパスワード) を取得される脆弱性	CWE-200 情報漏えい	CVE-2006-6457	2012-12-20 18:02	2006-12-11	Show	GitHub Exploit DB Packet Storm

231102	6.8	警告	swsoft	-	SWsoft Plesk におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6451	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

231103	6.4	警告	vt-forum	-	Vt-Forum Lite におけるデータベースをダウンロードされる脆弱性	-	CVE-2006-6449	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

231104	7.5	危険	vt-forum	-	Vt-Forum Lite における SQL インジェクションの脆弱性	-	CVE-2006-6448	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

231105	6.8	警告	vt-forum	-	Vt-Forum Lite におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6447	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

231106	4.6	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro におけるセキュリティ制御を回避される脆弱性	-	CVE-2006-6441	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

231107	7.5	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro などにおける脆弱性	-	CVE-2006-6440	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

231108	7.8	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro における監査ログをダウンロードされる脆弱性	-	CVE-2006-6439	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

231109	4.9	警告	Xerox	-	Xerox WorkCentre および WorkCentre Pro におけるデータを取得される脆弱性	-	CVE-2006-6438	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

231110	7.8	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の ops3-dmn におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6437	2012-12-20 18:02	2006-11-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211641	5.3	MEDIUM Local	linux fedoraproject opensuse debian canonical netapp	linux_kernel fedora leap debian_linux ubuntu_linux cloud_backup element_software steelstore_cloud_integrated_storage solidfire hci_management_node active_iq_unified_mana…	The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2020-12888	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

211642	7.8	HIGH Local	sun-denshi	universal_forensic_extraction_device_firmware	Cellebrite UFED 5.0 to 7.5.0.845 implements local operating system policies that can be circumvented to obtain a command prompt via the Windows file dialog that is reachable via the Certificate-Based…	CWE-269 Improper Privilege Management	CVE-2020-12798	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

211643	9.8	CRITICAL Network	eq-3	homematic_ccu2_firmware ccu3_firmware	eQ-3 Homematic Central Control Unit (CCU)2 through 2.51.6 and CCU3 through 3.51.6 allow Remote Code Execution in the JSON API Method ReGa.runScript, by unauthenticated attackers with access to the we…	CWE-276 Incorrect Default Permissions	CVE-2020-12834	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

211644	6.1	MEDIUM Network	redhat	interchange	XSS in the admin help system admin/help.html and admin/quicklinks.html in Interchange 4.7.0 through 5.11.x allows remote attackers to steal credentials or data via browser JavaScript.	CWE-79 Cross-site Scripting	CVE-2020-12685	2024-11-21 14:00	2020-05-16	Show	GitHub Exploit DB Packet Storm

211645	5.4	MEDIUM Network	rcos	submitty	Submitty through 20.04.01 allows XSS via upload of an SVG document, as demonstrated by an attack by a Student against a Teaching Fellow.	CWE-79 Cross-site Scripting	CVE-2020-12882	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

211646	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed sensitive information to be accessible without authentication.	CWE-306 Missing Authentication for Critical Function	CVE-2020-12877	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

211647	7.5	HIGH Network	veritas	aptare	Veritas APTARE versions prior to 10.4 allowed remote users to access several unintended files on the server. This vulnerability only impacts Windows server deployments.	CWE-863 Incorrect Authorization	CVE-2020-12876	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

211648	6.3	MEDIUM Network	veritas	aptare	Veritas APTARE versions prior to 10.4 did not perform adequate authorization checks. An authenticated user could gain unauthorized access to sensitive information or functionality by manipulating spe…	CWE-863 Incorrect Authorization	CVE-2020-12875	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

211649	9.8	CRITICAL Network	veritas	aptare	Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.	CWE-287 Improper Authentication	CVE-2020-12874	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm

211650	6.1	MEDIUM Network	progress	moveit_automation	An issue was discovered in Progress MOVEit Automation Web Admin. A Web Admin application endpoint failed to adequately sanitize malicious input, which could allow an unauthenticated attacker to execu…	CWE-79 Cross-site Scripting	CVE-2020-12677	2024-11-21 14:00	2020-05-15	Show	GitHub Exploit DB Packet Storm