Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228881	6.8	警告	webtester	-	WebTester におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0969	2012-12-20 18:19	2007-02-15	Show	GitHub Exploit DB Packet Storm

228882	6.8	警告	scriptsez.net	-	Scriptsez.net Virtual Calendar におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0952	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228883	5	警告	virtual calendar	-	Virtual Calendar におけるエンコードされたパスワードをダウンロードされる脆弱性	-	CVE-2007-0928	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228884	7.5	危険	BitTorrent, Inc.	-	uTorrent におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-0927	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228885	7.5	危険	till gerken	-	Till Gerken phpPolls における認証を回避される脆弱性	-	CVE-2007-0924	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228886	7.8	危険	radical technologies	-	Portal Search の buscador/buscador.htm における重要な情報を取得される脆弱性	-	CVE-2007-0923	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228887	4.3	警告	radical technologies	-	Portal Search の buscador/buscador.htm におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0922	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228888	9.4	危険	radical technologies	-	Portal Search における任意の Web サイトへの URL をリダイレクトされる脆弱性	-	CVE-2007-0921	2012-12-20 18:19	2007-02-14	Show	GitHub Exploit DB Packet Storm

228889	10	危険	ProcessOne	-	ejabberd の mod_roster_odbc モジュールにおける脆弱性	-	CVE-2007-0903	2012-12-20 18:19	2007-02-2	Show	GitHub Exploit DB Packet Storm

228890	7.5	危険	tagit	-	TagIt! Tagboard における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0900	2012-12-20 18:19	2007-02-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196931	5.9	MEDIUM Network	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An atta…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-4969	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196932	6.5	MEDIUM Adjacent	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 192427.	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2020-4968	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196933	4.3	MEDIUM Network	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:…	CWE-59 Link Following	CVE-2020-4966	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196934	9.8	CRITICAL Network	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM…	CWE-306 Missing Authentication for Critical Function	CVE-2020-4958	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196935	7.8	HIGH Local	ibm	spectrum_lsf spectrum_lsf_suite	IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who has privileges to submit LSF jobs to execute arbitrary commands. IBM X-Force ID: 192586.	CWE-287 CWE-798 Improper Authentication Use of Hard-coded Credentials	CVE-2020-4983	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196936	8.8	HIGH Network	ibm	security_guardium	IBM Security Guardium 10.6 and 11.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete inform…	CWE-89 SQL Injection	CVE-2020-4921	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196937	5.5	MEDIUM Local	ibm	aix vios	IBM AIX 7.1, 7.2 and AIX VIOS 3.1 could allow a local user to exploit a vulnerability in the gencore user command to create arbitrary files in any directory. IBM X-Force ID: 190911.	NVD-CWE-noinfo	CVE-2020-4887	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196938	7.8	HIGH Local	ibm	security_guardium	IBM Security Guardium 10.6 and 11.2 could allow a local attacker to execute arbitrary commands on the system as an unprivileged user, caused by command injection vulnerability. IBM X-Force ID: 186700.	CWE-77 Command Injection	CVE-2020-4688	2024-11-21 14:33	2021-01-21	Show	GitHub Exploit DB Packet Storm

196939	7.5	HIGH Network	ibm	planning_analytics	IBM Planning Analytics 2.0 could allow a remote attacker to obtain sensitive information, caused by the lack of server hostname verification for SSL/TLS communication. By sending a specially-crafted …	CWE-346 Origin Validation Error	CVE-2020-4881	2024-11-21 14:33	2021-01-20	Show	GitHub Exploit DB Packet Storm

196940	5.3	MEDIUM Network	ibm	planning_analytics	IBM Planning Analytics 2.0 could allow an attacker to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 190836.	CWE-863 Incorrect Authorization	CVE-2020-4873	2024-11-21 14:33	2021-01-20	Show	GitHub Exploit DB Packet Storm