Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227761 1.9 注意 VMware - VMware Workstation などの Reconfig.DLL における vmount2.exe がサービス運用妨害 (DoS) 状態となる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5438 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227762 4.3 警告 pro.setun - PRO-search におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5434 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227763 4.3 警告 siteup - Site-Up の index.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5433 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227764 7.5 危険 scottmanktelow - Stride における管理者権限を取得される脆脆弱性 CWE-200
情報漏えい 		CVE-2007-5432 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227765 7.5 危険 scottmanktelow - Stride における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5430 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227766 4.3 警告 Umisoft - UMI CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5428 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227767 7.5 危険 Tiki Software Community Association - TikiWiki の tiki-graph_formula.php における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5423 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227768 6.8 警告 quoc-huy - Joomla! 用の Quoc-Huy mp3_allopass コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5412 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227769 6.8 警告 picoflat cms - PicoFlat CMS の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5390 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
227770 6.8 警告 webdesktop - WebDesktop における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5388 2012-12-20 18:33 2007-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196681 5.4 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality… CWE-79
Cross-site Scripting 		CVE-2020-4997 2024-11-21 14:33 2021-04-6 Show GitHub Exploit DB Packet Storm
196682 5.4 MEDIUM
Network 		ibm edge_application_manager IBM Edge 4.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to cr… CWE-79
Cross-site Scripting 		CVE-2020-4792 2024-11-21 14:33 2021-04-6 Show GitHub Exploit DB Packet Storm
196683 5.5 MEDIUM
Local 		ibm urbancode_deploy IBM UrbanCode Deploy (UCD) 7.0.3.0, 7.0.4.0, 7.0.5.3, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2, stores keystore passwords in plain text after a manual edit, which can be read by a local user. … CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-4944 2024-11-21 14:33 2021-03-31 Show GitHub Exploit DB Packet Storm
196684 5.5 MEDIUM
Local 		ibm urbancode_deploy IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 190908. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-4884 2024-11-21 14:33 2021-03-31 Show GitHub Exploit DB Packet Storm
196685 5.4 MEDIUM
Network 		ibm urbancode_deploy IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to initiate a plugin or compare process resources that they should not have access to. IBM X-Force ID: 19029… NVD-CWE-noinfo
CVE-2020-4848 2024-11-21 14:33 2021-03-31 Show GitHub Exploit DB Packet Storm
196686 7.5 HIGH
Network 		ibm elastic_storage_server
elastic_storage_system 		IBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to cause a denial of service by sending malformed UDP requests. IBM… NVD-CWE-noinfo
CVE-2020-5015 2024-11-21 14:33 2021-03-25 Show GitHub Exploit DB Packet Storm
196687 6.1 MEDIUM
Network 		ibm planning_analytics IBM Planning Analytics 2.0 could be vulnerable to a Server-Side Request Forgery (SSRF) attack by constucting URLs from user-controlled data . This could enable attackers to make arbitrary requests to… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2020-4882 2024-11-21 14:33 2021-03-23 Show GitHub Exploit DB Packet Storm
196688 5.3 MEDIUM
Network 		ibm soar IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames. NVD-CWE-noinfo
CVE-2020-4635 2024-11-21 14:33 2021-03-20 Show GitHub Exploit DB Packet Storm
196689 5.5 MEDIUM
Local 		ibm spectrum_scale IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 uses an inadequate account lockout setting that could allow a local user er to brute force Rest API account credentials. IBM X-Force… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-4891 2024-11-21 14:33 2021-03-16 Show GitHub Exploit DB Packet Storm
196690 4.4 MEDIUM
Local 		ibm spectrum_scale IBM Spectrum Scale 5.0.0 through 5.0.5.5 and 5.1.0 through 5.1.0.2 could allow a local user with a valid role to the REST API to cause a denial of service due to weak or absense of rate limiting. IBM… NVD-CWE-Other
CVE-2020-4890 2024-11-21 14:33 2021-03-16 Show GitHub Exploit DB Packet Storm