Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248951	5.1	警告	acgv news	-	ACGV News の article.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4638	2012-06-26 15:37	2006-09-8	Show	GitHub Exploit DB Packet Storm

248952	5.1	警告	acgv news	-	ACGV News における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-4637	2012-06-26 15:37	2006-09-8	Show	GitHub Exploit DB Packet Storm

248953	7.5	危険	c-news.fr	-	C-News.fr C-News の affichage/commentaires.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4629	2012-06-26 15:37	2006-09-8	Show	GitHub Exploit DB Packet Storm

248954	7.5	危険	AVAST Software s.r.o.	-	alwil avast! Anti-virus Engine におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-4626	2012-06-26 15:37	2006-09-7	Show	GitHub Exploit DB Packet Storm

248955	7.5	危険	comscripts	-	AnnonceV の annonce.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4622	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248956	7.5	危険	bare concept media	-	Pheap の settings.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-4621	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248957	4.6	警告	Alt-N	-	MDaemon が稼動している Alt-N WebAdmin の useredit_account.wdm モジュールにおけるシステムのメールキューへのアクセス権を取得される脆弱性	-	CVE-2006-4620	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248958	4.6	警告	Avira	-	Avira AntiVir PersonalEdition Classic の更新スタートウィンドウにおける権限を取得される脆弱性	-	CVE-2006-4619	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248959	7.5	危険	dsocks	-	dsocks の dsocks.c の _tor_resolve 関数におけるバッファオーバーフローの脆弱性	-	CVE-2006-4611	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

248960	5.1	警告	graphiks	-	GrapAgenda の index.php における PHP リモートファイルインクルーションの脆弱性	-	CVE-2006-4610	2012-06-26 15:37	2006-09-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210031	7.2	HIGH Network	samba debian fedoraproject canonical redhat	samba debian_linux fedora ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_for_po…	A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents …	CWE-362 Race Condition	CVE-2020-25719	2024-11-21 14:18	2022-02-19	Show	GitHub Exploit DB Packet Storm

210032	8.1	HIGH Network	samba debian fedoraproject redhat canonical	samba debian_linux fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterprise_l…	A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.	CWE-20 Improper Input Validation	CVE-2020-25717	2024-11-21 14:18	2022-02-19	Show	GitHub Exploit DB Packet Storm

210033	9.8	CRITICAL Network	mobile_shop_system_project	mobile_shop_system	An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in (1) login.php or (2) LoginAsAdmin.php.	CWE-89 SQL Injection	CVE-2020-25905	2024-11-21 14:18	2022-01-29	Show	GitHub Exploit DB Packet Storm

210034	9.1	CRITICAL Network	getsymphony	symphony	A XML External Entity (XXE) vulnerability was discovered in symphony\lib\toolkit\class.xmlelement.php in Symphony 2.7.10 which can lead to an information disclosure or denial of service (DOS).	CWE-611 XXE	CVE-2020-25912	2024-11-21 14:18	2021-11-1	Show	GitHub Exploit DB Packet Storm

210035	9.1	CRITICAL Network	modx	modx_revolution	A XML External Entity (XXE) vulnerability was discovered in the modRestServiceRequest component in MODX CMS 2.7.3 which can lead to an information disclosure or denial of service (DOS).	CWE-611 XXE	CVE-2020-25911	2024-11-21 14:18	2021-11-1	Show	GitHub Exploit DB Packet Storm

210036	5.5	MEDIUM Local	ranko	rkcms	A vulnerability was discovered in the filename parameter in pathindex.php?r=cms-backend/attachment/delete&sub=&filename=../../../../111.txt&filetype=image/jpeg of the master version of RKCMS. This vu…	CWE-22 Path Traversal	CVE-2020-25881	2024-11-21 14:18	2021-10-30	Show	GitHub Exploit DB Packet Storm

210037	6.5	MEDIUM Network	baijiacms_project	baijiacms	A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "i…	CWE-22 Path Traversal	CVE-2020-25873	2024-11-21 14:18	2021-10-30	Show	GitHub Exploit DB Packet Storm

210038	4.9	MEDIUM Network	frogcms_project	frogcms	A vulnerability exists within the FileManagerController.php function in FrogCMS 0.9.5 which allows an attacker to perform a directory traversal attack via a GET request urlencode parameter.	CWE-22 Path Traversal	CVE-2020-25872	2024-11-21 14:18	2021-10-30	Show	GitHub Exploit DB Packet Storm

210039	7.5	HIGH Network	hcc-embedded	nichestack_ipv4	An issue was discovered in HCC Embedded NicheStack IPv4 4.1. The dnc_copy_in routine for parsing DNS domain names does not check whether a domain name compression pointer is pointing within the bound…	CWE-125 Out-of-bounds Read	CVE-2020-25767	2024-11-21 14:18	2021-08-19	Show	GitHub Exploit DB Packet Storm

210040	9.8	CRITICAL Network	sapphireims	sapphireims	In SapphireIMS 5.0, it is possible to take over an account by sending a request to the Save_Password form as shown in POC. Notice that we do not require a JSESSIONID in this request and can reset any…	CWE-306 Missing Authentication for Critical Function	CVE-2020-25566	2024-11-21 14:18	2021-08-12	Show	GitHub Exploit DB Packet Storm