Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248271 4.3 警告 CKEditor Team - FCKEditorto の "Basic Toolbar Selection" におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6978 2012-06-26 15:38 2007-02-8 Show GitHub Exploit DB Packet Storm
248272 4.3 警告 freetextbox - FreeTextBox の "Basic Toolbar Selection" におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2006-6977 2012-06-26 15:38 2007-02-8 Show GitHub Exploit DB Packet Storm
248273 7.5 危険 centipaid - CentiPaid の centipaid_class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6976 2012-06-26 15:38 2007-02-8 Show GitHub Exploit DB Packet Storm
248274 7.5 危険 bti-tracker - BtitTracker の torrents.php における SQL インジェクションの脆弱性 - CVE-2006-6972 2012-06-26 15:38 2007-02-7 Show GitHub Exploit DB Packet Storm
248275 4.3 警告 Andreas Gohr - DokuWiki の lib/exe/fetch.php におけるCRLF インジェクションの脆弱性 - CVE-2006-6965 2012-06-26 15:38 2007-01-29 Show GitHub Exploit DB Packet Storm
248276 7.5 危険 Docebo - Docebo LMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6963 2012-06-26 15:38 2007-01-29 Show GitHub Exploit DB Packet Storm
248277 6.8 警告 Docebo - Docebo の addons/mod_media/body.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-6957 2012-06-26 15:38 2007-01-29 Show GitHub Exploit DB Packet Storm
248278 7.5 危険 Bitweaver - bitweaver の newsletters/edition.php における SQL インジェクションの脆弱性 - CVE-2006-6923 2012-06-26 15:38 2007-01-12 Show GitHub Exploit DB Packet Storm
248279 7.5 危険 deadlock user management system - phpdeadlock における SQL インジェクションの脆弱性 - CVE-2006-6922 2012-06-26 15:38 2007-01-12 Show GitHub Exploit DB Packet Storm
248280 10 危険 geobb - GeoBB の Admin ログインにおける詳細不明な脆弱性 - CVE-2006-6918 2012-06-26 15:38 2007-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211351 7.8 HIGH
Local 		irfanview irfanview IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ReadXPM_W+0x0000000000000531. NVD-CWE-noinfo
CVE-2020-23545 2024-11-21 14:13 2021-12-15 Show GitHub Exploit DB Packet Storm
211352 6.1 MEDIUM
Network 		74cms 74cms 74CMS v6.0.4 was discovered to contain a cross-site scripting (XSS) vulnerability via /index.php?m=&c=help&a=help_list&key. CWE-79
Cross-site Scripting 		CVE-2020-22421 2024-11-21 14:13 2021-12-8 Show GitHub Exploit DB Packet Storm
211353 5.4 MEDIUM
Network 		shimo document Shimo Document v2.0.1 contains a cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the table content text fi… CWE-79
Cross-site Scripting 		CVE-2020-22719 2024-11-21 14:13 2021-11-23 Show GitHub Exploit DB Packet Storm
211354 8.8 HIGH
Network 		beescms beescms BEESCMS v4.0 was discovered to contain an arbitrary file upload vulnerability via the component /admin/upload.php. This vulnerability allows attackers to execute arbitrary code via a crafted image fi… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-23572 2024-11-21 14:13 2021-11-9 Show GitHub Exploit DB Packet Storm
211355 9.8 CRITICAL
Network 		phpjabbers fundraising_script Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionSetAmount function. CWE-89
SQL Injection 		CVE-2020-22226 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm
211356 9.8 CRITICAL
Network 		phpjabbers fundraising_script Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoadForm function. CWE-89
SQL Injection 		CVE-2020-22225 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm
211357 6.1 MEDIUM
Network 		phpjabbers fundraising_script Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionPreview function. CWE-79
Cross-site Scripting 		CVE-2020-22224 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm
211358 9.8 CRITICAL
Network 		phpjabbers fundraising_script Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a SQL injection vulnerability via the pjActionLoad function. CWE-89
SQL Injection 		CVE-2020-22223 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm
211359 6.1 MEDIUM
Network 		phpjabbers fundraising_script Stivasoft (Phpjabbers) Fundraising Script v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the pjActionLoadCss function. CWE-79
Cross-site Scripting 		CVE-2020-22222 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm
211360 5.5 MEDIUM
Local 		irfanview irfanview Irfanview v4.53 allows attackers to to cause a denial of service (DoS) via a crafted JPEG 2000 file. Related to "Integer Divide By Zero starting at JPEG2000!ShowPlugInSaveOptions_W+0x00000000000082ea" CWE-369
 Divide By Zero 		CVE-2020-23567 2024-11-21 14:13 2021-11-6 Show GitHub Exploit DB Packet Storm