Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245341	7.5	危険	duware	-	DuWare DuNews の detail.asp における SQL インジェクションの脆弱性	-	CVE-2006-6354	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245342	5	警告	アップル	-	Mac OS X の BOMArchiveHelper におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6353	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245343	5	警告	frisk software	-	FRISK Software F-Prot Antivirus におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-6352	2012-06-26 15:38	2006-12-1	Show	GitHub Exploit DB Packet Storm

245344	6.8	警告	deV!L'z Clanportal	-	DZCP の sites/index.php における SQL インジェクションの脆弱性	-	CVE-2006-6339	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245345	5	警告	deV!L'z Clanportal	-	DZCP の upload/index.php における任意の .php ファイルをアップロードおよび実行される脆弱性	-	CVE-2006-6338	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245346	7.5	危険	ASP indir	-	Aspee Ziyaretci Defteri の giris.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2006-6337	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245347	10	危険	ライブドア	-	Eudora WorldMail の MAILMA.exe におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-6336	2012-06-26 15:38	2006-12-31	Show	GitHub Exploit DB Packet Storm

245348	6.8	警告	シトリックス・システムズ	-	Citrix Presentation Server Client の SendChannelData 関数におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-6334	2012-06-26 15:38	2006-12-4	Show	GitHub Exploit DB Packet Storm

245349	5	警告	Fail2ban	-	fail2ban における /etc/hosts.deny ファイルに任意のホストを追加される脆弱性	CWE-DesignError	CVE-2006-6302	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

245350	5	警告	Phil Schwartz	-	DenyHosts におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2006-6301	2012-06-26 15:38	2006-12-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219461	8.8	HIGH Network	nec	sv8100_firmware sv9100_firmware sl1100_firmware sl2100_firmware	An exploitable privilege escalation vulnerability exists in the WebPro functionality of Aspire-derived NEC PBXes, including all versions of SV8100, SV9100, SL1100 and SL2100 devices. A specially craf…	NVD-CWE-noinfo	CVE-2019-20029	2024-11-21 13:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

219462	7.5	HIGH Network	nec	sv8100_firmware sv9100_firmware sl1100_firmware sl2100_firmware	Aspire-derived NEC PBXes operating InMail software, including all versions of SV8100, SV9100, SL1100 and SL2100 devices allow unauthenticated read-only access to voicemails, greetings, and voice resp…	NVD-CWE-noinfo	CVE-2019-20028	2024-11-21 13:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

219463	9.8	CRITICAL Network	nec	sv8100_firmware sv9100_firmware sl1100_firmware sl2100_firmware	Aspire-derived NEC PBXes, including the SV8100, SV9100, SL1100 and SL2100 with software releases 7.0 or higher contain the possibility if incorrectly configured to allow a blank username and password…	CWE-287 Improper Authentication	CVE-2019-20027	2024-11-21 13:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

219464	7.5	HIGH Network	nec	sv9100_firmware	The WebPro interface in NEC SV9100 software releases 7.0 or higher allows unauthenticated remote attackers to reset all existing usernames and passwords to default values via a crafted request.	NVD-CWE-noinfo	CVE-2019-20026	2024-11-21 13:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

219465	9.8	CRITICAL Network	nec	sv9100_firmware	Certain builds of NEC SV9100 software could allow an unauthenticated, remote attacker to log into a device running an affected release with a hardcoded username and password, aka a Static Credential …	CWE-798 Use of Hard-coded Credentials	CVE-2019-20025	2024-11-21 13:37	2020-07-30	Show	GitHub Exploit DB Packet Storm

219466	7.8	HIGH Local	solarwinds	webhelpdesk	Formula Injection exists in the export feature in SolarWinds WebHelpDesk 12.7.1 via a value (provided by a low-privileged user in the Subject field of a help request form) that is mishandled in a Tic…	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2019-20002	2024-11-21 13:37	2020-04-28	Show	GitHub Exploit DB Packet Storm

219467	3.7	LOW Network	cisco	webex_business_suite_39	Cisco Webex Business Suite before 39.1.0 contains a vulnerability that could allow an unauthenticated, remote attacker to affect the integrity of the application. The vulnerability is due to improper…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-1866	2024-11-21 13:37	2020-04-14	Show	GitHub Exploit DB Packet Storm

219468	7.8	HIGH Local	zsh fedoraproject debian apple	zsh fedora debian_linux mac_os_x iphone_os watchos tvos ipados	In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by …	CWE-273 Improper Check for Dropped Privileges	CVE-2019-20044	2024-11-21 13:37	2020-02-24	Show	GitHub Exploit DB Packet Storm

219469	8.4	HIGH Local	cisco	ios_xe	A vulnerability in Cisco IOS XE SD-WAN Software could allow an unauthenticated, local attacker to gain unauthorized access to an affected device. The vulnerability is due to the existence of default …	CWE-1188 Insecure Default Initialization of Resource	CVE-2019-1950	2024-11-21 13:37	2020-02-20	Show	GitHub Exploit DB Packet Storm

219470	9.8	CRITICAL Network	s3india	husky_rtu_6049-e70_firmware	The Synergy Systems & Solutions PLC & RTU system has a vulnerability in HUSKY RTU 6049-E70 firmware versions 5.0 and prior. The affected product does not require adequate authentication, which may al…	CWE-287 Improper Authentication	CVE-2019-20046	2024-11-21 13:37	2020-02-15	Show	GitHub Exploit DB Packet Storm