Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227171	4.7	警告	wefi	-	WeFi における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3147	2012-12-20 18:52	2008-07-11	Show	GitHub Exploit DB Packet Storm

227172	7.8	危険	secretwars	-	Soldner Secret Wars におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2008-3135	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227173	6.8	警告	Powie	-	pSys の chatbox.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3131	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227174	4.3	警告	Simple Machines	-	OpenCart の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3130	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227175	5	警告	pivot	-	Pivot の search.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3128	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227176	6.5	警告	Xerox	-	Xerox CWW における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3122	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

227177	4.3	警告	Xerox	-	Xerox CWW におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3121	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

227178	7.5	危険	phpmotion	-	PHPmotion の play.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3118	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227179	6.5	警告	phpmotion	-	PHPmotion の update_profile.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-3117	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

227180	4.3	警告	v-webmail	-	V-webmail の redirect.php におけるオープンリダイレクトの脆弱性	CWE-Other その他	CVE-2008-3061	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196621	4.8	MEDIUM Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (Central Management Console), versions- 4.2, 4.3, allows an attacker with administrator rights can use the web application to send malicious code t…	CWE-79 Cross-site Scripting	CVE-2020-6300	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196622	4.3	MEDIUM Network	sap	abap_platform netweaver_application_server_abap	SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Inform…	NVD-CWE-noinfo	CVE-2020-6299	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196623	8.1	HIGH Network	sap	generic_market_data	SAP Banking Services (Generic Market Data), versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data (GMD) and change related GMD key figure val…	CWE-862 Missing Authorization	CVE-2020-6298	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196624	4.4	MEDIUM Local	sap	data_intelligence	Under certain conditions the upgrade of SAP Data Hub 2.7 to SAP Data Intelligence, version - 3.0, allows an attacker to access confidential system configuration information, that should otherwise be …	NVD-CWE-noinfo	CVE-2020-6297	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196625	8.8	HIGH Network	sap	abap_platform netweaver_application_server_abap	SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an attacker to inject code that can be executed by the application, leadin…	NVD-CWE-noinfo	CVE-2020-6296	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196626	7.8	HIGH Local	sap	adaptive_server_enterprise	Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and confidential information through publicly readable installation log fil…	CWE-532 CWE-732 Inclusion of Sensitive Information in Log Files Incorrect Permission Assignment for Critical Resource	CVE-2020-6295	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196627	9.1	CRITICAL Network	sap	businessobjects_business_intelligence_platform	Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not perform any authentication checks for functionalities that require user identity.	CWE-306 Missing Authentication for Critical Function	CVE-2020-6294	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196628	6.5	MEDIUM Network	sap	netweaver_knowledge_management	SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to upload a malicious file and also to access, modify or make unavailable existing files bu…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-6293	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196629	9.0	CRITICAL Network	sap	netweaver_knowledge_management	SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows the automatic execution of script content in a stored file due to inadequate filtering with the accessing user's privil…	CWE-79 Cross-site Scripting	CVE-2020-6284	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

196630	4.3	MEDIUM Network	sap	s\/4_hana_fiori_ui_for_general_ledger_accounting	SAP S/4 HANA (Fiori UI for General Ledger Accounting), versions 103, 104, does not perform necessary authorization checks for an authenticated user working with attachment service, allowing the attac…	CWE-862 Missing Authorization	CVE-2020-6273	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm