Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228581 4.3 警告 phpscriptsnow - PHP Scripts Now World's Tallest Buildings の bios.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2884 2012-12-20 19:10 2009-08-20 Show GitHub Exploit DB Packet Storm
228582 3.5 注意 サン・マイクロシステムズ - Sun VDI における VDI 設定データを平文で読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2856 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
228583 6.4 警告 WordPress.org - Wordpress における許可されていない編集などをされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2854 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
228584 10 危険 WordPress.org - Wordpress における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2853 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
228585 6.8 警告 ryan.mcgeary - Wordpress 用の WP-Syntax プラグインにおける任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2852 2012-12-20 19:10 2009-08-18 Show GitHub Exploit DB Packet Storm
228586 4.3 警告 WordPress.org - WordPress の管理者インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2851 2012-12-20 19:10 2009-07-20 Show GitHub Exploit DB Packet Storm
228587 7.5 危険 webdynamite - WebDynamite ProjectButler の pda_projects.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2791 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
228588 7.5 危険 softbiz - SoftBiz Dating Script の cat_products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2790 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
228589 6.8 警告 reputation - PunBB 用の Reputation プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2787 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
228590 7.5 危険 reputation - PunBB 用の Reputation プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2786 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202551 6.7 MEDIUM
Local 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform, version 4.2, allows an attacker with access to local instance, to inject file or code that can be executed by the application due to Improper Cont… CWE-74
Injection 		CVE-2020-6245 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202552 7.8 HIGH
Local 		sap business_client SAP Business Client, version 7.0, allows an attacker after a successful social engineering attack to inject malicious code as a DLL file in untrusted directories that can be executed by the applicati… CWE-427
 Uncontrolled Search Path Element 		CVE-2020-6244 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202553 8.8 HIGH
Network 		sap adaptive_server_enterprise Under certain conditions, SAP Adaptive Server Enterprise (XP Server on Windows Platform), versions 15.7, 16.0, does not perform the necessary checks for an authenticated user while executing the exte… CWE-94
Code Injection 		CVE-2020-6243 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202554 9.8 CRITICAL
Network 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform (Live Data Connect), versions 1.0, 2.0, 2.1, 2.2, 2.3, allows an attacker to logon on the Central Management Console without password in case of th… CWE-306
Missing Authentication for Critical Function 		CVE-2020-6242 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202555 8.8 HIGH
Network 		sap adaptive_server_enterprise SAP Adaptive Server Enterprise, version 16.0, allows an authenticated user to execute crafted database queries to elevate privileges of users in the system, leading to SQL Injection. CWE-89
SQL Injection 		CVE-2020-6241 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202556 7.5 HIGH
Network 		sap netweaver_application_server_abap SAP NetWeaver AS ABAP (Web Dynpro ABAP), versions (SAP_UI 750, 752, 753, 754 and SAP_BASIS 700, 710, 730, 731, 804) allows an unauthenticated attacker to prevent legitimate users from accessing a ser… NVD-CWE-noinfo
CVE-2020-6240 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
202557 8.8 HIGH
Network 		codesys runtime An exploitable code execution vulnerability exists in the PLC_Task functionality of 3S-Smart Software Solutions GmbH CODESYS Runtime 3.5.14.30. A specially crafted network request can cause remote co… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-6081 2024-11-21 14:35 2020-05-7 Show GitHub Exploit DB Packet Storm
202558 8.8 HIGH
Network 		accusoft imagegear An exploitable code execution vulnerability exists in the TIFF fillinraster function of the igcore19d.dll library of Accusoft ImageGear 19.4, 19.5 and 19.6. A specially crafted TIFF file can cause an… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2020-6094 2024-11-21 14:35 2020-05-6 Show GitHub Exploit DB Packet Storm
202559 8.8 HIGH
Network 		accusoft imagegear An exploitable out-of-bounds write vulnerability exists in the ico_read function of the igcore19d.dll library of Accusoft ImageGear 19.6.0. A specially crafted ICO file can cause an out-of-bounds wri… CWE-787
 Out-of-bounds Write 		CVE-2020-6082 2024-11-21 14:35 2020-05-6 Show GitHub Exploit DB Packet Storm
202560 8.8 HIGH
Network 		accusoft imagegear An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll ICO icoread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted ICO file can cause an out-of-bounds write… CWE-787
 Out-of-bounds Write 		CVE-2020-6076 2024-11-21 14:35 2020-05-6 Show GitHub Exploit DB Packet Storm