Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245251	6.8	警告	calacode	-	@Mail WebMail におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6700	2012-06-26 15:38	2006-12-22	Show	GitHub Exploit DB Packet Storm

245252	6.8	警告	carsen klock	-	Carsen Klock TextSend の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6695	2012-06-26 15:38	2006-12-21	Show	GitHub Exploit DB Packet Storm

245253	5	警告	chetcpasswd	-	Pedro Lineu Orso chetcpasswd におけるシステム上の有効なユーザ名を決定される脆弱性	-	CVE-2006-6682	2012-06-26 15:38	2006-12-21	Show	GitHub Exploit DB Packet Storm

245254	7.5	危険	chetcpasswd	-	Pedro Lineu Orso chetcpasswd におけるパスワードを特定される脆弱性	-	CVE-2006-6681	2012-06-26 15:38	2006-12-21	Show	GitHub Exploit DB Packet Storm

245255	4.6	警告	chetcpasswd	-	Pedro Lineu Orso chetcpasswd における重要な情報を取得される脆弱性	-	CVE-2006-6680	2012-06-26 15:38	2006-12-21	Show	GitHub Exploit DB Packet Storm

245256	2.6	注意	ESET	-	ESET NOD32 Antivirus におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6677	2012-06-26 15:38	2006-12-20	Show	GitHub Exploit DB Packet Storm

245257	9.3	危険	ESET	-	ESET NOD32 Antivirus の OLE2 パーサーにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2006-6676	2012-06-26 15:38	2006-12-20	Show	GitHub Exploit DB Packet Storm

245258	6.8	警告	astonsoft	-	Astonsoft DeepBurner におけるバッファオーバーフローの脆弱性	-	CVE-2006-6665	2012-06-26 15:38	2006-12-20	Show	GitHub Exploit DB Packet Storm

245259	6.8	警告	Drupal	-	Drupal 用の MySite モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6647	2012-06-26 15:38	2006-12-18	Show	GitHub Exploit DB Packet Storm

245260	6.8	警告	Drupal	-	Drupal Project Issue Tracking および Drupal Project におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6646	2012-06-26 15:38	2006-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219411	6.1	MEDIUM Network	wso2	api_manager identity_server	An issue was discovered in WSO2 API Manager 2.6.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. When a custom claim dialect with an XSS payload is configured in the identity provider…	CWE-79 Cross-site Scripting	CVE-2019-20437	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219412	6.1	MEDIUM Network	wso2	api_manager identity_server	An issue was discovered in WSO2 API Manager 2.6.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. If there is a claim dialect configured with an XSS payload in the dialect URI, and a u…	CWE-79 Cross-site Scripting	CVE-2019-20436	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219413	4.8	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.6.0. A reflected XSS attack could be performed in the inline API documentation editor page of the API Publisher by sending an HTTP GET request with a har…	CWE-79 Cross-site Scripting	CVE-2019-20435	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219414	4.8	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the Datasource creation page of the Management Console.	CWE-79 Cross-site Scripting	CVE-2019-20434	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219415	4.8	MEDIUM Network	wso2	api_manager identity_server enterprise_integrator	An issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulner…	CWE-79 Cross-site Scripting	CVE-2019-20443	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219416	4.8	MEDIUM Network	wso2	api_manager identity_server enterprise_integrator	An issue was discovered in WSO2 API Manager 2.6.0, WSO2 Enterprise Integrator 6.5.0, WSO2 IS as Key Manager 5.7.0, and WSO2 Identity Server 5.8.0. A potential stored Cross-Site Scripting (XSS) vulner…	CWE-79 Cross-site Scripting	CVE-2019-20442	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219417	4.8	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.6.0. A potential Stored Cross-Site Scripting (XSS) vulnerability has been identified in the 'implement phase' of the API Publisher.	CWE-79 Cross-site Scripting	CVE-2019-20441	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219418	4.8	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.6.0. A potential Reflected Cross-Site Scripting (XSS) vulnerability has been identified in the update API documentation feature of the API Publisher.	CWE-79 Cross-site Scripting	CVE-2019-20440	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219419	9.1	CRITICAL Network	gnu	aspell	libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the…	CWE-125 Out-of-bounds Read	CVE-2019-20433	2024-11-21 13:38	2020-01-28	Show	GitHub Exploit DB Packet Storm

219420	7.5	HIGH Network	lustre	lustre	In the Lustre file system before 2.12.3, the mdt module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. mdt_file_secctx_unpack doe…	CWE-787 Out-of-bounds Write	CVE-2019-20432	2024-11-21 13:38	2020-01-27	Show	GitHub Exploit DB Packet Storm