Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245431 4.3 警告 baalasp - BaalAsp フォーラムの addpost1.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6089 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245432 4.3 警告 blue-collar productions - BlueCollar i-Gallery におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6088 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245433 5.1 警告 e-ark - e-Ark の src/ark_inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6086 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245434 4.3 警告 creascripts - CreaScripts Creadirectory におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6082 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245435 7.5 危険 gazatem technologies - gNews Publisher の categories.asp における SQL インジェクションの脆弱性 - CVE-2006-6080 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245436 7.5 危険 a-conman - a-ConMan の common.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6078 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245437 10 危険 CA Technologies - CA BrightStor ARCserve Backup の Tape Engine におけるバッファオーバーフローの脆弱性 - CVE-2006-6076 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245438 6.8 警告 baalasp - BaalAsp フォーラムの addpost1.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6075 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245439 7.5 危険 enthrallweb - Enthrallweb eShopping Cart における SQL インジェクションの脆弱性 - CVE-2006-6074 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
245440 7.5 危険 enthrallweb - Enthrallweb eShopping Cart における SQL インジェクションの脆弱性 - CVE-2006-6073 2012-06-26 15:37 2006-11-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219531 5.4 MEDIUM
Network 		nagios nagios_xi In Nagios XI 5.6.9, XSS exists via the nocscreenapi.php host, hostgroup, or servicegroup parameter, or the schedulereport.php hour or frequency parameter. Any authenticated user can attack the admin … CWE-79
Cross-site Scripting 		CVE-2019-20139 2024-11-21 13:38 2019-12-31 Show GitHub Exploit DB Packet Storm
219532 7.5 HIGH
Network 		http_authentication_library_project http_authentication_library The HTTP Authentication library before 2019-12-27 for Nim has weak password hashing because the default algorithm for libsodium's crypto_pwhash_str is not used. CWE-327
CWE-916
 Use of a Broken or Risky Cryptographic Algorithm
 Use of Password Hash With Insufficient Computational Effort 		CVE-2019-20138 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219533 5.5 MEDIUM
Local 		linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-20096 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219534 5.5 MEDIUM
Local 		linux
opensuse
netapp 		linux_kernel
leap
cloud_backup
steelstore_cloud_integrated_storage
data_availability_services
solidfire
hci_management_node
active_iq_unified_manager
e-series_santricity_os_co… 		mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-20095 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219535 5.5 MEDIUM
Local 		podofo_project
fedoraproject 		podofo
fedora 		The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file, because of ImageExtrac… CWE-476
 NULL Pointer Dereference 		CVE-2019-20093 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219536 5.5 MEDIUM
Local 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_EsDescriptor::GetDecoderConfigDescriptor in Ap4EsDescriptor.cpp. CWE-476
 NULL Pointer Dereference 		CVE-2019-20092 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219537 5.5 MEDIUM
Local 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap… CWE-476
 NULL Pointer Dereference 		CVE-2019-20091 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219538 7.8 HIGH
Local 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a use-after-free in AP4_Sample::GetOffset in Core/Ap4Sample.h when called from Ap4LinearReader.cpp. CWE-416
 Use After Free 		CVE-2019-20090 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219539 7.8 HIGH
Local 		gopro gpmf-parser GoPro GPMF-parser 1.2.3 has an heap-based buffer over-read in GPMF_SeekToSamples in GPMF_parse.c for the size calculation. CWE-125
Out-of-bounds Read 		CVE-2019-20089 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm
219540 7.8 HIGH
Local 		gopro gpmf-parser GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GetPayload in GPMF_mp4reader.c. CWE-125
Out-of-bounds Read 		CVE-2019-20088 2024-11-21 13:38 2019-12-30 Show GitHub Exploit DB Packet Storm