Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250341 5 警告 airmagnet - AirMagnet Enterprise の AirMagnet Enterprise コンソールおよび Remote Sensor コンソールにおける任意の Web スクリプトまたは HTML を挿入される脆弱性 - CVE-2006-5742 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
250342 4.3 警告 airmagnet - AirMagnet Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5741 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
250343 7.5 危険 ATRC - ATutor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5734 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
250344 4 警告 dxmsoft - XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2006-5728 2012-06-26 15:37 2006-11-6 Show GitHub Exploit DB Packet Storm
250345 5 警告 aep networks - AEP Smartgate の SSL サーバにおけるディレクトリの存在を確認される脆弱性 CWE-200
情報漏えい 		CVE-2006-5725 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
250346 7.5 危険 dataparksearch - DataparkSearch Engine における SQL インジェクションの脆弱性 - CVE-2006-5723 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
250347 4.9 警告 Agnitum - Outpost Firewall PRO の \Device\sandbox ドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5721 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
250348 7.5 危険 francisco burzi - Francisco Burzi PHP-Nuke の Journal モジュールにおける SQL インジェクションの脆弱性 - CVE-2006-5720 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
250349 7.5 危険 bytesfall explorer - bfExplorer の libs/sessions.lib.php における SQL インジェクションの脆弱性 - CVE-2006-5719 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
250350 5 警告 freenews - FreeNews の aff_news.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5716 2012-06-26 15:37 2006-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
208821 8.8 HIGH
Network 		vasyltech advanced_access_manager The Advanced Access Manager plugin before 6.6.2 for WordPress allows privilege escalation on profile updates via the aam_user_roles POST parameter if Multiple Role support is enabled. (The mechanism … NVD-CWE-noinfo
CVE-2020-35935 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208822 4.3 MEDIUM
Network 		vasyltech advanced_access_manager The Advanced Access Manager plugin before 6.6.2 for WordPress displays the unfiltered user object (including all metadata) upon login via the REST API (aam/v1/authenticate or aam/v2/authenticate). Th… CWE-200
Information Exposure 		CVE-2020-35934 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208823 6.5 MEDIUM
Network 		thenewsletterplugin newsletter A Reflected Authenticated Cross-Site Scripting (XSS) vulnerability in the Newsletter plugin before 6.8.2 for WordPress allows remote attackers to trick a victim into submitting a tnpc_render AJAX req… CWE-79
Cross-site Scripting 		CVE-2020-35933 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208824 8.8 HIGH
Network 		tribulant newsletter Insecure Deserialization in the Newsletter plugin before 6.8.2 for WordPress allows authenticated remote attackers with minimal privileges (such as subscribers) to use the tpnc_render AJAX action to … CWE-502
 Deserialization of Untrusted Data 		CVE-2020-35932 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208825 7.8 HIGH
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader before 10.1.1 (and before 4.1.1 on macOS) and PhantomPDF before 9.7.5 and 10.x before 10.1.1 (and before 4.1.1 on macOS). An attacker can spoof a certified PDF… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2020-35931 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208826 5.4 MEDIUM
Network 		seopanel seo_panel Seo Panel 4.8.0 allows stored XSS by an Authenticated User via the url parameter, as demonstrated by the seo/seopanel/websites.php URI. CWE-79
Cross-site Scripting 		CVE-2020-35930 2024-11-21 14:28 2021-01-1 Show GitHub Exploit DB Packet Storm
208827 4.7 MEDIUM
Local 		atom_project atom An issue was discovered in the atom crate before 0.3.6 for Rust. An unsafe Send implementation allows a cross-thread data race. CWE-362
Race Condition 		CVE-2020-35897 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
208828 7.5 HIGH
Network 		ws-rs_project ws-rs An issue was discovered in the ws crate through 2020-09-25 for Rust. The outgoing buffer is not properly limited, leading to a remote memory-consumption attack. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2020-35896 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
208829 9.8 CRITICAL
Network 		stack_project stack An issue was discovered in the stack crate before 0.3.1 for Rust. ArrayVec has an out-of-bounds write via element insertion. CWE-787
 Out-of-bounds Write 		CVE-2020-35895 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
208830 7.5 HIGH
Network 		obstack_project obstack An issue was discovered in the obstack crate before 0.1.4 for Rust. Unaligned references can occur. CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2020-35894 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm