Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225341	5	警告	NextApp, Inc.	-	Echo の Java XML パーサにおける任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2009-5135	2013-05-8 10:51	2009-02-24	Show	GitHub Exploit DB Packet Storm

225342	4.3	警告	IBM	-	IBM Tivoli Federated Identity Manager および Tivoli Federated Identity Manager Business Gateway におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0582	2013-05-7 21:19	2013-04-23	Show	GitHub Exploit DB Packet Storm

225343	3.5	注意	IBM	-	IBM Sametime の Classic Meeting Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0535	2013-05-7 21:18	2013-04-29	Show	GitHub Exploit DB Packet Storm

225344	4.6	警告	シスコシステムズ	-	Cisco Unified Communications Manager における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2013-1240	2013-05-7 19:51	2013-05-6	Show	GitHub Exploit DB Packet Storm

225345	5	警告	シスコシステムズ	-	Cisco Wireless LAN Controller デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-1235	2013-05-7 19:51	2013-05-6	Show	GitHub Exploit DB Packet Storm

225346	4	警告	シスコシステムズ	-	Cisco IOS XR の SNMP モジュールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-1234	2013-05-7 19:50	2013-05-2	Show	GitHub Exploit DB Packet Storm

225347	5	警告	シスコシステムズ	-	複数の Cisco WebEx 製品の HTTP の実装におけるコンテンツを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2013-1232	2013-05-7 19:50	2013-05-6	Show	GitHub Exploit DB Packet Storm

225348	5	警告	シスコシステムズ	-	Cisco WebEx Node for MCS および WebEx Meetings Server におけるキャッシュファイルを読まれる脆弱性	CWE-20 CWE-200	CVE-2013-1231	2013-05-7 19:49	2013-05-2	Show	GitHub Exploit DB Packet Storm

225349	9.3	危険	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Client における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2013-0945	2013-05-7 18:25	2013-05-3	Show	GitHub Exploit DB Packet Storm

225350	3.5	注意	DELL EMC (旧 EMC Corporation)	-	EMC Avamar Server の Web ベースのファイルリストアインターフェースにおける任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2013-0944	2013-05-7 18:25	2013-05-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199801	6.1	MEDIUM Network	sap	netweaver_as_abap_business_server_pages	SAP NetWeaver AS ABAP (Business Server Pages application CRM_BSP_FRAME), versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not sufficiently encode user con…	CWE-79 Cross-site Scripting	CVE-2020-6229	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199802	7.5	HIGH Network	sap	business_client	SAP Business Client, versions 6.5, 7.0, does not perform necessary integrity checks which could be exploited by an attacker under certain conditions to modify the installer.	CWE-354 Improper Validation of Integrity Check Value	CVE-2020-6228	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199803	7.5	HIGH Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (CMS / Auditing issues), version 4.2, allows attacker to send specially crafted GIOP packets to several services due to Improper Input Validation, …	CWE-20 CWE-116 Improper Input Validation Improper Encoding or Escaping of Output	CVE-2020-6227	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199804	5.4	MEDIUM Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (Web Intelligence HTML interface), version 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulner…	CWE-79 Cross-site Scripting	CVE-2020-6226	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199805	6.2	MEDIUM Network	sap	netweaver_application_server_java	SAP NetWeaver AS Java (HTTP Service), versions 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows an attacker with administrator privileges to access user sensitive data such as passwords in trace file…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2020-6224	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199806	6.1	MEDIUM Network	sap	businessobjects_business_intelligence_platform	The open document of SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to modify certain error pages to include malicious content. This can misdirect a user w…	CWE-601 Open Redirect	CVE-2020-6223	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199807	5.4	MEDIUM Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (Web Intelligence HTML interface), versions 4.1, 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) …	CWE-79 Cross-site Scripting	CVE-2020-6222	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199808	5.4	MEDIUM Network	sap	businessobjects_business_intelligence_platform	Web Intelligence HTML interface in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS)…	CWE-79 Cross-site Scripting	CVE-2020-6221	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199809	8.8	HIGH Network	sap	businessobjects_business_intelligence_platform crystal_reports_for_visual_studio	SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer), versions 4.1, 4.2, and Crystal Reports for VS version 2010, allows an attacker with basic authorization to perform…	CWE-502 Deserialization of Untrusted Data	CVE-2020-6219	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

199810	5.0	MEDIUM Network	sap	businessobjects_business_intelligence_platform	Admin tools and Query Builder in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to access information that should otherwise be restricted, leading to Infor…	NVD-CWE-noinfo	CVE-2020-6218	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm