Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229451 7.5 危険 W-Agora - Web-Agora における任意のコードを実行される脆弱性 - CVE-2007-1604 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229452 7.5 危険 weekly drawing contest - Weekly Drawing Contest の admin/contest.php における新規のコンテスト情報をデータベースに挿入される脆弱性 - CVE-2007-1603 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229453 7.5 危険 weekly drawing contest - Weekly Drawing Contest の check_vote.php における SQL インジェクションの脆弱性 - CVE-2007-1602 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229454 6.5 警告 WordPress.org - WordPress の wp-login.php における認証ユーザを他の Web サイトへリダイレクトされる脆弱性 - CVE-2007-1599 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229455 5 警告 unclassified newsboard - Unclassified NewsBoard における board ログを取得される脆弱性 - CVE-2007-1597 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
229456 5 警告 シマンテック - Symantec Storage Foundation 製品の Symantec VVR および VVR の管理サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-1593 2012-12-20 18:19 2007-06-1 Show GitHub Exploit DB Packet Storm
229457 2.1 注意 TrueCrypt Foundation - TrueCrypt におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1589 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229458 10 危険 tim soderstrom - Tim Soderstrom StatsDawg の templates/config/mail.tpl における任意のプログラムを実行される脆弱性 - CVE-2007-1587 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229459 7.8 危険 ZyXEL - ZynOS におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1586 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229460 4.3 警告 phprojekt - PHProjekt におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1576 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197021 4.3 MEDIUM
Network 		sap netweaver_application_server_abap User enumeration vulnerability can be exploited to get a list of user accounts and personal user information can be exposed in SAP NetWeaver Application Server ABAP (POWL test application) versions -… NVD-CWE-noinfo
CVE-2020-6371 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197022 5.4 MEDIUM
Network 		sap business_planning_and_consolidation SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorizat… CWE-79
Cross-site Scripting 		CVE-2020-6368 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197023 10.0 CRITICAL
Network 		sap introscope_enterprise_manager SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentia… CWE-78
OS Command  		CVE-2020-6364 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197024 4.6 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, exposes several web applications that maintain sessions with a user. These sessions are established after the user has authenticated with userna… CWE-613
 Insufficient Session Expiration 		CVE-2020-6363 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197025 6.1 MEDIUM
Network 		sap netweaver_enterprise_portal SAP NetWeaver Enterprise Portal (Fiori Framework Page) versions - 7.50, 7.31, 7.40, does not sufficiently encode user-controlled inputs and allows an attacker on a valid session to create an XSS that… CWE-79
Cross-site Scripting 		CVE-2020-6323 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197026 6.1 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allows an unauthenticated attacker to include JavaScript blocks in any web page or URL with different sy… CWE-79
Cross-site Scripting 		CVE-2020-6319 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197027 5.4 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud versions - 1808, 1811, 1905, 2005, does not sufficiently encode user inputs, which allows an authenticated and authorized content manager to inject malicious script into several we… CWE-79
Cross-site Scripting 		CVE-2020-6272 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197028 7.5 HIGH
Network 		rockwellautomation allen-bradley_flex_io_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Port Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6083 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm
197029 7.5 HIGH
Network 		rockwellautomation flex_i\/o_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6087 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm
197030 7.5 HIGH
Network 		rockwellautomation flex_i\/o_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6086 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm