Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228671	10	危険	シマンテック	-	Norton Personal Firewall および Internet Security 用の ISAlertDataCOM ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-1689	2012-12-20 18:19	2007-05-16	Show	GitHub Exploit DB Packet Storm

228672	9.3	危険	solidworks	-	sldimdownload.dll の SolidWorks sldimdownload ActiveX コントロールにおける任意のコマンドを実行される脆弱性	-	CVE-2007-1684	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

228673	9.3	危険	Yahoo!	-	Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1680	2012-12-20 18:19	2007-04-5	Show	GitHub Exploit DB Packet Storm

228674	7.5	危険	Python Software Foundation	-	Python の Modules/zlib におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-1657	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228675	10	危険	tinymux	-	TinyMUX の funmath.cpp におけるバッファオーバーフローの脆弱性	-	CVE-2007-1655	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228676	4.3	警告	subhub	-	SubHub におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1646	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228677	7.5	危険	portailphp	-	PortailPHP の index.php における SQL インジェクションの脆弱性	-	CVE-2007-1641	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228678	4.6	警告	phpprojekt	-	PHProjekt における任意のコードを実行される脆弱性	-	CVE-2007-1639	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228679	6.8	警告	phpprojekt	-	PHProjekt の lib/lib.inc.php におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-1638	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

228680	7.5	危険	roseonlinecms	-	RoseOnlineCMS の index.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1636	2012-12-20 18:19	2007-03-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196831	7.5	HIGH Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.0.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-For…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-4937	2024-11-21 14:33	2020-11-20	Show	GitHub Exploit DB Packet Storm

196832	7.8	HIGH Local	ibm	db2	IBM DB2 Accessories Suite for Linux, UNIX, and Windows, DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local authenticated attacker to exe…	CWE-426 Untrusted Search Path	CVE-2020-4739	2024-11-21 14:33	2020-11-20	Show	GitHub Exploit DB Packet Storm

196833	4.7	MEDIUM Local	ibm fedoraproject oracle	vios aix fedora communications_cloud_native_core_binding_support_function communications_cloud_native_core_policy communications_cloud_native_core_network_exposure_function	IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296.	NVD-CWE-noinfo	CVE-2020-4788	2024-11-21 14:33	2020-11-20	Show	GitHub Exploit DB Packet Storm

196834	5.4	MEDIUM Network	ibm	jazz_reporting_service	IBM Jazz Reporting Service 6.0.6, 6.0.6.1, 7.0, and 7.0.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering …	CWE-79 Cross-site Scripting	CVE-2020-4718	2024-11-21 14:33	2020-11-20	Show	GitHub Exploit DB Packet Storm

196835	7.8	HIGH Local	ibm	db2	IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to exe…	CWE-120 Classic Buffer Overflow	CVE-2020-4701	2024-11-21 14:33	2020-11-20	Show	GitHub Exploit DB Packet Storm

196836	4.3	MEDIUM Network	ibm	sterling_file_gateway	IBM Sterling File Gateway 6.0.0.0 through 6.0.3.2 and 2.2.0.0 through 2.2.6.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie val…	NVD-CWE-noinfo	CVE-2020-4763	2024-11-21 14:33	2020-11-17	Show	GitHub Exploit DB Packet Storm

196837	4.8	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 and 5.2.0.0 through 5.2.6.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript c…	CWE-79 Cross-site Scripting	CVE-2020-4705	2024-11-21 14:33	2020-11-17	Show	GitHub Exploit DB Packet Storm

196838	8.8	HIGH Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 and 5.2.0.0 through 5.2.6.5 could allow an authenticated user belonging to a specific user group to create a user or group with ad…	NVD-CWE-noinfo	CVE-2020-4700	2024-11-21 14:33	2020-11-17	Show	GitHub Exploit DB Packet Storm

196839	6.5	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.2 and 5.2.0.0 through 5.2.6.5 could allow an authenticated user to obtain sensitive information from the Dashboard UI. IBM X-Force I…	NVD-CWE-noinfo	CVE-2020-4692	2024-11-21 14:33	2020-11-17	Show	GitHub Exploit DB Packet Storm

196840	5.4	MEDIUM Network	ibm	business_automation_workflow	IBM Business Automation Workflow 20.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional…	CWE-79 Cross-site Scripting	CVE-2020-4672	2024-11-21 14:33	2020-11-17	Show	GitHub Exploit DB Packet Storm