Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229431	5.1	警告	postnuke software foundation	-	PostNuke のプレビューにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0384	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

229432	7.5	危険	XOOPS	-	Xoops における SQL インジェクションの脆弱性	-	CVE-2007-0377	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

229433	6.8	警告	VirtueMart	-	Virtuemart におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0376	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

229434	7.5	危険	phpbp	-	phpBP の index.php における upload/banners/ ファイルに任意の PHP コードを挿入される脆弱性	-	CVE-2007-0370	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

229435	7.5	危険	phpbp	-	phpBP における SQL インジェクションの脆弱性	-	CVE-2007-0369	2012-12-20 18:19	2007-01-19	Show	GitHub Exploit DB Packet Storm

229436	7.5	危険	uberghey	-	Uberghey CMS の frontpage.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0359	2012-12-20 18:19	2007-01-18	Show	GitHub Exploit DB Packet Storm

229437	6.2	警告	zonelabs	-	Microsoft Windows XP および Windows Server 2003 における権限を取得される脆弱性	-	CVE-2007-0351	2012-12-20 18:19	2007-01-18	Show	GitHub Exploit DB Packet Storm

229438	7.5	危険	sme	-	SmE FileMailer の index.php および dl.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0350	2012-12-20 18:19	2007-01-18	Show	GitHub Exploit DB Packet Storm

229439	7.5	危険	sme	-	SmE FileMailer の index.php における SQL インジェクションの脆弱性	-	CVE-2007-0346	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229440	6.8	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0341	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197201	3.3	LOW Local	ibm	cloud_pak_for_multicloud_management	IBM Cloud Pak for Multicloud Management prior to 2.3 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 188902.	CWE-922 Insecure Storage of Sensitive Information	CVE-2020-4765	2024-11-21 14:33	2021-05-20	Show	GitHub Exploit DB Packet Storm

197202	4.3	MEDIUM Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.5, 6.0.0.0 through 6.0.3.3, and 6.1.0.0 through 6.1.0.2 could allow an authenticated user to view pages they shoiuld not have access…	NVD-CWE-Other	CVE-2020-4646	2024-11-21 14:33	2021-05-20	Show	GitHub Exploit DB Packet Storm

197203	9.1	CRITICAL Network	ibm	planning_analytics_local planning_analytics_cloud	IBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote host is not protected by password authentication. A remote atta…	CWE-306 Missing Authentication for Critical Function	CVE-2020-4670	2024-11-21 14:33	2021-05-18	Show	GitHub Exploit DB Packet Storm

197204	9.1	CRITICAL Network	ibm	planning_analytics_local planning_analytics_cloud	IBM Planning Analytics Local 2.0 connects to a MongoDB server. MongoDB, a document-oriented database system, is listening on the remote port, and it is configured to allow connections without passwor…	CWE-862 Missing Authorization	CVE-2020-4669	2024-11-21 14:33	2021-05-18	Show	GitHub Exploit DB Packet Storm

197205	7.5	HIGH Network	ibm	planning_analytics_local	IBM Planning Analytics Local 2.0 could allow an attacker to obtain sensitive information due to accepting body parameters in a query. IBM X-Force ID: 192642.	NVD-CWE-noinfo	CVE-2020-4985	2024-11-21 14:33	2021-05-15	Show	GitHub Exploit DB Packet Storm

197206	2.4	LOW Network	ibm	cloud_pak_for_security	IBM Cloud Pak for Security (CP4S) 1.4.0.0, 1.5.0.0, 1.5.0.1, 1.6.0.0, and 1.6.0.1 could allow a privileged user to inject inject malicious data using a specially crafted HTTP request due to improper …	CWE-20 Improper Input Validation	CVE-2020-4811	2024-11-21 14:33	2021-05-15	Show	GitHub Exploit DB Packet Storm

197207	6.5	MEDIUM Network	ibm	robotic_process_automation_with_automation_anywhere	IBM Robotic Process Automation with Automation Anywhere 11.0 could allow an attacker on the network to obtain sensitive information or cause a denial of service through username enumeration. IBM X-Fo…	NVD-CWE-noinfo	CVE-2020-4901	2024-11-21 14:33	2021-05-8	Show	GitHub Exploit DB Packet Storm

197208	8.1	HIGH Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 may vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information…	CWE-611 XXE	CVE-2020-5013	2024-11-21 14:33	2021-05-6	Show	GitHub Exploit DB Packet Storm

197209	4.9	MEDIUM Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way that may be vulnerable to path traversal attacks. IBM X-Force ID: 192905.	CWE-22 Path Traversal	CVE-2020-4993	2024-11-21 14:33	2021-05-6	Show	GitHub Exploit DB Packet Storm

197210	9.8	CRITICAL Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 is vulnerable to insecure inter-deployment communication. An attacker that is able to comprimise or spoof traffic between hosts may be able to execute arbitrary commands. …	NVD-CWE-noinfo	CVE-2020-4979	2024-11-21 14:33	2021-05-6	Show	GitHub Exploit DB Packet Storm