Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229101 9.3 危険 zenturi - Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2987 2012-12-20 18:19 2007-06-1 Show GitHub Exploit DB Packet Storm
229102 7.8 危険 techno dreams - Techno Dreams Web Directory / Search Engine におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2979 2012-12-20 18:19 2007-05-31 Show GitHub Exploit DB Packet Storm
229103 7.5 危険 Wanewsletter - WAnewsletter の newsletter.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2969 2012-12-20 18:19 2007-05-31 Show GitHub Exploit DB Packet Storm
229104 7.5 危険 scallywag.org - Scallywag におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2960 2012-12-20 18:19 2007-05-31 Show GitHub Exploit DB Packet Storm
229105 6.8 警告 sylpheed-claws
Sylpheed		 - Sylpheed および Sylpheed-Claws の src/inc.c におけるフォーマットストリングの脆弱性 - CVE-2007-2958 2012-12-20 18:19 2007-08-27 Show GitHub Exploit DB Packet Storm
229106 6.8 警告 シマンテック - Norton AntiVirus などの製品で使用される NavComUI.dll における任意のコードを実行される脆弱性 - CVE-2007-2955 2012-12-20 18:19 2007-08-9 Show GitHub Exploit DB Packet Storm
229107 5 警告 rmforum - RMForum におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2945 2012-12-20 18:19 2007-05-30 Show GitHub Exploit DB Packet Storm
229108 5 警告 wabcms - WabCMS におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2944 2012-12-20 18:19 2007-05-30 Show GitHub Exploit DB Packet Storm
229109 6.8 警告 webavis - Webavis の class/class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2943 2012-12-20 18:19 2007-05-30 Show GitHub Exploit DB Packet Storm
229110 7.5 危険 troforum - TROforum の admin/admin.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2937 2012-12-20 18:19 2007-05-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196751 5.5 MEDIUM
Local 		gonitro nitro_pro An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in… CWE-824
 Access of Uninitialized Pointer 		CVE-2020-6093 2024-11-21 14:35 2020-05-19 Show GitHub Exploit DB Packet Storm
196752 7.8 HIGH
Local 		gonitro nitro_pro An exploitable code execution vulnerability exists in the way Nitro Pro 13.9.1.155 parses Pattern objects. A specially crafted PDF file can trigger an integer overflow that can lead to arbitrary code… CWE-190
 Integer Overflow or Wraparound 		CVE-2020-6092 2024-11-21 14:35 2020-05-19 Show GitHub Exploit DB Packet Storm
196753 8.8 HIGH
Network 		gonitro nitro_pro An exploitable code execution vulnerability exists in the PDF parser of Nitro Pro 13.9.1.155. A specially crafted PDF document can cause a use-after-free which can lead to remote code execution. An a… CWE-416
 Use After Free 		CVE-2020-6074 2024-11-21 14:35 2020-05-19 Show GitHub Exploit DB Packet Storm
196754 8.8 HIGH
Network 		sap application_server Service Data Download in SAP Application Server ABAP (ST-PI, before versions 2008_1_46C, 2008_1_620, 2008_1_640, 2008_1_700, 2008_1_710, 740) allows an attacker to inject code that can be executed by… CWE-94
Code Injection 		CVE-2020-6262 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196755 6.5 MEDIUM
Network 		sap adaptive_server_enterprise Under certain conditions SAP Adaptive Server Enterprise, versions 15.7, 16.0, allows an attacker to access information which would otherwise be restricted leading to Missing Authorization Check. CWE-862
 Missing Authorization 		CVE-2020-6259 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196756 6.5 MEDIUM
Network 		sap identity_management SAP Identity Management, version 8.0, does not perform necessary authorization checks for an authenticated user, allowing the attacker to view certain sensitive information of the victim, leading to … CWE-862
 Missing Authorization 		CVE-2020-6258 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196757 5.4 MEDIUM
Network 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform (CMC and BI Launchpad) 4.2 does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting vulnerability. CWE-79
Cross-site Scripting 		CVE-2020-6257 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196758 4.3 MEDIUM
Network 		sap master_data_governance SAP Master Data Governance, versions - 748, 749, 750, 751, 752, 800, 801, 802, 803, 804, allows users to display change request details without having required authorizations, due to Missing Authoriz… CWE-862
 Missing Authorization 		CVE-2020-6256 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196759 6.1 MEDIUM
Network 		sap enterprise_threat_detection SAP Enterprise Threat Detection, versions 1.0, 2.0, does not sufficiently encode error response pages in case of errors, allowing XSS payload reflecting in the response, leading to reflected Cross Si… CWE-79
Cross-site Scripting 		CVE-2020-6254 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm
196760 7.2 HIGH
Network 		sap adaptive_server_enterprise Under certain conditions, SAP Adaptive Server Enterprise (Web Services), versions 15.7, 16.0, allows an authenticated user to execute crafted database queries to elevate their privileges, modify data… CWE-89
SQL Injection 		CVE-2020-6253 2024-11-21 14:35 2020-05-13 Show GitHub Exploit DB Packet Storm