Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249031 4.3 警告 dieselscripts - Diesel Job Site の jobseekers/forgot.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4361 2012-06-26 15:37 2006-08-26 Show GitHub Exploit DB Packet Storm
249032 3.5 注意 Drupal - Drupal 用の E-commerce におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4360 2012-06-26 15:37 2006-08-22 Show GitHub Exploit DB Packet Storm
249033 4.3 警告 dieselscripts - Diesel Pay の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4358 2012-06-26 15:37 2006-08-26 Show GitHub Exploit DB Packet Storm
249034 7.5 危険 dieselscripts - Diesel Smart Traffic の clients/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4357 2012-06-26 15:37 2006-08-26 Show GitHub Exploit DB Packet Storm
249035 7.5 危険 Drupal - Drupal Easylinks Module における SQL インジェクションの脆弱性 - CVE-2006-4356 2012-06-26 15:37 2006-08-22 Show GitHub Exploit DB Packet Storm
249036 2.6 注意 Drupal - Drupal Easylinks Module におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4355 2012-06-26 15:37 2006-08-22 Show GitHub Exploit DB Packet Storm
249037 5 警告 シスコシステムズ - Cisco 11000 シリーズ Content Service Switches の ArrowPoint クッキー機能における重要な情報を取得される脆弱性 - CVE-2006-4352 2012-06-26 15:37 2006-08-25 Show GitHub Exploit DB Packet Storm
249038 7.5 危険 Digium - Asterisk におけるファイルを上書きされる脆弱性 - CVE-2006-4346 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
249039 7.5 危険 Digium - Asterisk の MGCP の channels/chan_mgcp.c におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-4345 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
249040 5.1 警告 cloudnine interactive - CloudNine Interactive Links Manager の admin.php における SQL インジェクションの脆弱性 - CVE-2006-4328 2012-06-26 15:37 2006-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
210011 9.8 CRITICAL
Network 		nexusphp nexusphp SQL injection vulnerability in modrules.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2020-24770 2024-11-21 14:16 2022-03-30 Show GitHub Exploit DB Packet Storm
210012 9.8 CRITICAL
Network 		nexusphp nexusphp SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the classes parameter. CWE-89
SQL Injection 		CVE-2020-24769 2024-11-21 14:16 2022-03-30 Show GitHub Exploit DB Packet Storm
210013 8.8 HIGH
Network 		clash_project clash In Dreamacro Clash for Windows v0.11.4, an attacker could embed a malicious iframe in a website with a crafted URL that would launch the Clash Windows client and force it to open a remote SMB share. … CWE-346
 Origin Validation Error 		CVE-2020-24772 2024-11-21 14:16 2022-03-22 Show GitHub Exploit DB Packet Storm
210014 9.8 CRITICAL
Network 		zohocorp manageengine_applications_manager An issue was found in /showReports.do Zoho ManageEngine Applications Manager up to 14550, allows attackers to gain escalated privileges via the resourceid parameter. NVD-CWE-noinfo
CVE-2020-24743 2024-11-21 14:16 2021-11-4 Show GitHub Exploit DB Packet Storm
210015 9.8 CRITICAL
Network 		sourcecodester complaint_management_system An SQL Injection vulnerability exists in Sourcecodester Complaint Management System 1.0 via the cid parameter in complaint-details.php. CWE-89
SQL Injection 		CVE-2020-24932 2024-11-21 14:16 2021-10-27 Show GitHub Exploit DB Packet Storm
210016 8.1 HIGH
Network 		wuzhicms wuzhicms Beijing Wuzhi Internet Technology Co., Ltd. Wuzhi CMS 4.0.1 is an open source content management system. The five fingers CMS backend in***.php file has arbitrary file deletion vulnerability. Attacke… NVD-CWE-noinfo
CVE-2020-24930 2024-11-21 14:16 2021-09-28 Show GitHub Exploit DB Packet Storm
210017 7.8 HIGH
Local 		qt qt An issue has been fixed in Qt versions 5.14.0 where QPluginLoader attempts to load plugins relative to the working directory, allowing attackers to execute arbitrary code via crafted files. NVD-CWE-noinfo
CVE-2020-24742 2024-11-21 14:16 2021-08-10 Show GitHub Exploit DB Packet Storm
210018 5.5 MEDIUM
Local 		libelfin_project libelfin A vulnerability in the dwarf::cursor::skip_form function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file. NVD-CWE-noinfo
CVE-2020-24827 2024-11-21 14:16 2021-08-5 Show GitHub Exploit DB Packet Storm
210019 5.5 MEDIUM
Local 		libelfin_project libelfin A vulnerability in the elf::section::as_strtab function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file. CWE-74
Injection 		CVE-2020-24826 2024-11-21 14:16 2021-08-5 Show GitHub Exploit DB Packet Storm
210020 5.5 MEDIUM
Local 		libelfin_project libelfin A vulnerability in the line_table::line_table function of Libelfin v0.3 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted ELF file. CWE-74
Injection 		CVE-2020-24825 2024-11-21 14:16 2021-08-5 Show GitHub Exploit DB Packet Storm