Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251841 7.5 危険 fusionphp - Fusion News における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4240 2012-06-26 15:37 2006-08-21 Show GitHub Exploit DB Packet Storm
251842 7.5 危険 dotProject - dotProject の classes/query.class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4234 2012-06-26 15:37 2006-08-18 Show GitHub Exploit DB Packet Storm
251843 7.5 危険 david kent norman - David Kent Norman Thatware の config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4213 2012-06-26 15:37 2006-08-17 Show GitHub Exploit DB Packet Storm
251844 2.6 注意 andreas kansok - Andreas Kansok phPay の nu_mail.inc.php におけるサーバをオープンメール中継に使用される脆弱性 - CVE-2006-4210 2012-06-26 15:37 2006-08-17 Show GitHub Exploit DB Packet Storm
251845 7.5 危険 bob jewell - Bob Jewell Discloser における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4207 2012-06-26 15:37 2006-08-17 Show GitHub Exploit DB Packet Storm
251846 4.3 警告 aspplayground.net - ASPPlayground.NET Forum Advanced Edition Unicode の calendar.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4206 2012-06-26 15:37 2006-08-17 Show GitHub Exploit DB Packet Storm
251847 5.1 警告 BoonEx - Dolphin における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4189 2012-06-26 15:37 2006-08-16 Show GitHub Exploit DB Packet Storm
251848 7.5 危険 ClamAV - ClamAV における整数オーバーフローの脆弱性 - CVE-2006-4182 2012-06-26 15:37 2006-10-16 Show GitHub Exploit DB Packet Storm
251849 10 危険 GNU Project - GNU Radius の radiusd におけるフォーマットストリングの脆弱性 - CVE-2006-4181 2012-06-26 15:37 2006-11-27 Show GitHub Exploit DB Packet Storm
251850 4.9 警告 FreeBSD - FreeBSD の i386_set_ldt 呼び出しにおける整数符号化エラーの脆弱性 - CVE-2006-4178 2012-06-26 15:37 2006-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220131 4.9 MEDIUM
Network 		intel bmc_firmware NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contains a vulnerability in the AMI BMC firmware in which an attacker with administrative privileges can obtain the hash of … NVD-CWE-noinfo
CVE-2020-11484 2024-11-21 13:57 2020-10-29 Show GitHub Exploit DB Packet Storm
220132 9.8 CRITICAL
Network 		intel bmc_firmware NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firm… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-11483 2024-11-21 13:57 2020-10-29 Show GitHub Exploit DB Packet Storm
220133 7.2 HIGH
Network 		concretecms concrete_cms Concrete5 before 8.5.3 allows Unrestricted Upload of File with Dangerous Type such as a .phar file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2020-11476 2024-11-21 13:57 2020-07-29 Show GitHub Exploit DB Packet Storm
220134 7.8 HIGH
Local 		ncp-e secure_enterprise_client NCP Secure Enterprise Client before 10.15 r47589 allows a symbolic link attack on enumusb.reg via Support Assistant. CWE-59
Link Following 		CVE-2020-11474 2024-11-21 13:57 2020-07-29 Show GitHub Exploit DB Packet Storm
220135 7.5 HIGH
Network 		windriver vxworks httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root. NVD-CWE-noinfo
CVE-2020-11440 2024-11-21 13:57 2020-07-23 Show GitHub Exploit DB Packet Storm
220136 8.8 HIGH
Network 		librehealth librehealth_ehr LibreHealth EMR v2.0.0 is affected by a Local File Inclusion issue allowing arbitrary PHP to be included and executed within the EMR application. CWE-22
Path Traversal 		CVE-2020-11439 2024-11-21 13:57 2020-07-16 Show GitHub Exploit DB Packet Storm
220137 8.8 HIGH
Network 		librehealth librehealth_ehr LibreHealth EMR v2.0.0 is affected by systemic CSRF. CWE-352
 Origin Validation Error 		CVE-2020-11438 2024-11-21 13:57 2020-07-16 Show GitHub Exploit DB Packet Storm
220138 4.3 MEDIUM
Network 		librehealth librehealth_ehr LibreHealth EMR v2.0.0 is affected by SQL injection allowing low-privilege authenticated users to enumerate the database. CWE-89
SQL Injection 		CVE-2020-11437 2024-11-21 13:57 2020-07-16 Show GitHub Exploit DB Packet Storm
220139 9.0 CRITICAL
Network 		librehealth librehealth_ehr LibreHealth EMR v2.0.0 is vulnerable to XSS that results in the ability to force arbitrary actions on behalf of other users including administrators. CWE-79
Cross-site Scripting 		CVE-2020-11436 2024-11-21 13:57 2020-07-16 Show GitHub Exploit DB Packet Storm
220140 9.1 CRITICAL
Network 		inetsoftware pdfc
helpdesk
clear_reports 		The documentation component in i-net Clear Reports 16.0 to 19.2, HelpDesk 8.0 to 8.3, and PDFC 4.3 to 6.2 allows a remote unauthenticated attacker to read arbitrary system files and directories on th… CWE-22
Path Traversal 		CVE-2020-11431 2024-11-21 13:57 2020-05-8 Show GitHub Exploit DB Packet Storm