Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227861	5	警告	Gilles Vollant	-	WinImage におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-4964	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227862	9.3	危険	Gilles Vollant	-	WinImage におけるコピー先のファイル名を偽造される脆弱性	CWE-Other その他	CVE-2007-4963	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227863	9.3	危険	Gilles Vollant	-	WinImage におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4962	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227864	4.3	警告	TinyWebGallery	-	TWG におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4958	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227865	7.5	危険	simpcms	-	SimpCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4953	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227866	5.1	警告	webmedia explorer	-	webmex における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4948	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227867	6.8	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4935	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227868	4.6	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4934	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227869	7.5	危険	shop-script	-	Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2007-4933	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227870	7.5	危険	shop-script	-	Shop-Script の admin.php における admin パネルへアクセスされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-4932	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196951	4.3	MEDIUM Network	ibm	urbancode_deploy	IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. Thi…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4483	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

196952	6.5	MEDIUM Network	ibm	urbancode_deploy	IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow an authenticated user to bypass security. A user with access to a snapshot could apply unauthorized additional statuses v…	NVD-CWE-noinfo	CVE-2020-4482	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

196953	6.8	MEDIUM Physics	hcltech	notes	In HCL Notes version 9 previous to release 9.0.1 FixPack 10 Interim Fix 8, version 10 previous to release 10.0.1 FixPack 6 and version 11 previous to 11.0.1 FixPack 1, a vulnerability in the input pa…	CWE-120 Classic Buffer Overflow	CVE-2020-4097	2024-11-21 14:32	2020-11-6	Show	GitHub Exploit DB Packet Storm

196954	7.8	HIGH Local	ibm	i2_ibase	IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-4588	2024-11-21 14:32	2020-10-30	Show	GitHub Exploit DB Packet Storm

196955	7.5	HIGH Network	ibm	i2_ibase	IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4584	2024-11-21 14:32	2020-10-30	Show	GitHub Exploit DB Packet Storm

196956	6.5	MEDIUM Network	vmware	horizon_client	VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. A malicious attacker with local privileges on the machine where Horizon Client for Windows is …	NVD-CWE-noinfo	CVE-2020-3998	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

196957	5.4	MEDIUM Network	vmware	horizon	VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which…	CWE-79 Cross-site Scripting	CVE-2020-3997	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

196958	5.5	MEDIUM Local	vmware	velero	Velero (prior to 1.4.3 and 1.5.2) in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users.	NVD-CWE-noinfo	CVE-2020-3996	2024-11-21 14:32	2020-10-23	Show	GitHub Exploit DB Packet Storm

196959	5.3	MEDIUM Network	vmware	esxi workstation cloud_foundation fusion	In VMware ESXi (6.7 before ESXi670-201908101-SG, 6.5 before ESXi650-202007101-SG), Workstation (15.x before 15.1.0), Fusion (11.x before 11.1.0), the VMCI host drivers used by VMware hypervisors cont…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2020-3995	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm

196960	7.4	HIGH Network	vmware	vcenter_server cloud_foundation	VMware vCenter Server (6.7 before 6.7u3, 6.6 before 6.5u3k) contains a session hijack vulnerability in the vCenter Server Appliance Management Interface update function due to a lack of certificate v…	CWE-295 Improper Certificate Validation	CVE-2020-3994	2024-11-21 14:32	2020-10-21	Show	GitHub Exploit DB Packet Storm