Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245301 6.8 警告 Drupal - Drupal 用の Help Tip モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6531 2012-06-26 15:38 2006-12-11 Show GitHub Exploit DB Packet Storm
245302 7.5 危険 Drupal - Drupal 用の Help Tip モジュールにおける SQL インジェクションの脆弱性 - CVE-2006-6530 2012-06-26 15:38 2006-12-11 Show GitHub Exploit DB Packet Storm
245303 7.5 危険 Drupal - Drupal 用の Chatroom Module における重要な情報を取得される脆弱性 - CVE-2006-6529 2012-06-26 15:38 2006-12-11 Show GitHub Exploit DB Packet Storm
245304 7.5 危険 Drupal - Drupal 用の Chatroom Module におけるセッションをハイジャックされる脆弱性 - CVE-2006-6528 2012-06-26 15:38 2006-12-11 Show GitHub Exploit DB Packet Storm
245305 7.5 危険 gizzar - Gizzar の guest.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6527 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
245306 5.1 警告 dt guestbook - DT Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6487 2012-06-26 15:38 2007-01-16 Show GitHub Exploit DB Packet Storm
245307 7.5 危険 gizzar - Gizzar の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6526 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
245308 7.5 危険 ezhrs - EzHRS HR Assist の vdateUsr.asp における SQL インジェクションの脆弱性 - CVE-2006-6525 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
245309 7.5 危険 ezhrs - EzHRS HR Assist の vdateUsr.asp における SQL インジェクションの脆弱性 - CVE-2006-6524 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
245310 6.8 警告 cPanel - cPanel の BoxTrapper の mail/manage.html におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6523 2012-06-26 15:38 2006-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219361 4.9 MEDIUM
Network 		atlassian application_links The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 … CWE-306
Missing Authentication for Critical Function 		CVE-2019-20105 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
219362 7.8 HIGH
Local 		gnome
linuxmint
debian 		gthumb
pix
debian_linux 		A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers… CWE-787
 Out-of-bounds Write 		CVE-2019-20326 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
219363 7.5 HIGH
Network 		sync oxygen_xml_editor
oxygen_xml_author
oxygen_xml_developer 		Oxygen XML Editor 21.1.1 allows XXE to read any file. CWE-611
XXE 		CVE-2019-20191 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
219364 5.4 MEDIUM
Network 		cpanel cpanel cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508). NVD-CWE-noinfo
CVE-2019-20491 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
219365 9.8 CRITICAL
Network 		quest kace_systems_management service/krashrpt.php in Quest KACE K1000 Systems Management Appliance before 6.4 SP3 (6.4.120822) allows a remote attacker to execute code via shell metacharacters in the kuid parameter. CWE-78
OS Command  		CVE-2019-20504 2024-11-21 13:38 2020-03-9 Show GitHub Exploit DB Packet Storm
219366 6.5 MEDIUM
Network 		usrsctp_project
debian
canonical 		usrsctp
debian_linux
ubuntu_linux 		usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init. CWE-125
Out-of-bounds Read 		CVE-2019-20503 2024-11-21 13:38 2020-03-7 Show GitHub Exploit DB Packet Storm
219367 7.5 HIGH
Network 		echatserver easy_chat_server An issue was discovered in EFS Easy Chat Server 3.1. There is a buffer overflow via a long body2.ghp message parameter. CWE-120
Classic Buffer Overflow 		CVE-2019-20502 2024-11-21 13:38 2020-03-6 Show GitHub Exploit DB Packet Storm
219368 3.5 LOW
Adjacent 		qemu
opensuse
debian
canonical 		qemu
leap
debian_linux
ubuntu_linux 		QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is n… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-20382 2024-11-21 13:38 2020-03-6 Show GitHub Exploit DB Packet Storm
219369 7.8 HIGH
Local 		dlink dwl-2600ap_firmware D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Upgrade Firmware functionality in the Web interface, using shell metacharacters in the admin.… CWE-78
OS Command  		CVE-2019-20501 2024-11-21 13:38 2020-03-6 Show GitHub Exploit DB Packet Storm
219370 7.8 HIGH
Local 		dlink dwl-2600ap_firmware D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admi… CWE-78
OS Command  		CVE-2019-20500 2024-11-21 13:38 2020-03-6 Show GitHub Exploit DB Packet Storm