Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229461 7.5 危険 phprojekt - PHProjekt における SQL インジェクションの脆弱性 - CVE-2007-1575 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229462 6.8 警告 加藤和良 - JGBBS の search.asp における SQL インジェクションの脆弱性 - CVE-2007-1572 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229463 6.8 警告 radical designs - Radical Designs AMP の includes/base.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1571 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229464 10 危険 war ftp daemon - War FTP Daemon におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1567 2012-12-20 18:19 2007-03-21 Show GitHub Exploit DB Packet Storm
229465 9.3 危険 ROXIO - Roxio CinePlayer の SonicDVDDashVRNav.dll におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1559 2012-12-20 18:19 2007-04-11 Show GitHub Exploit DB Packet Storm
229466 7.5 危険 thecreativeheads.de - Creative Files の kommentare.php における SQL インジェクションの脆弱性 - CVE-2007-1556 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229467 4.3 警告 phpx - phpx におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1551 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229468 7.5 危険 phpx - phpx における SQL インジェクションの脆弱性 - CVE-2007-1550 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229469 6.8 警告 phpx - phpx の gallery.php における任意の PHP スクリプトをアップロードおよび実行される脆弱性 - CVE-2007-1549 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
229470 7.5 危険 webwizguide - Web Wiz Forums の functions/functions_filters.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1548 2012-12-20 18:19 2007-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197021 4.3 MEDIUM
Network 		sap netweaver_application_server_abap User enumeration vulnerability can be exploited to get a list of user accounts and personal user information can be exposed in SAP NetWeaver Application Server ABAP (POWL test application) versions -… NVD-CWE-noinfo
CVE-2020-6371 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197022 5.4 MEDIUM
Network 		sap business_planning_and_consolidation SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorizat… CWE-79
Cross-site Scripting 		CVE-2020-6368 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197023 10.0 CRITICAL
Network 		sap introscope_enterprise_manager SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentia… CWE-78
OS Command  		CVE-2020-6364 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197024 4.6 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, exposes several web applications that maintain sessions with a user. These sessions are established after the user has authenticated with userna… CWE-613
 Insufficient Session Expiration 		CVE-2020-6363 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197025 6.1 MEDIUM
Network 		sap netweaver_enterprise_portal SAP NetWeaver Enterprise Portal (Fiori Framework Page) versions - 7.50, 7.31, 7.40, does not sufficiently encode user-controlled inputs and allows an attacker on a valid session to create an XSS that… CWE-79
Cross-site Scripting 		CVE-2020-6323 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197026 6.1 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allows an unauthenticated attacker to include JavaScript blocks in any web page or URL with different sy… CWE-79
Cross-site Scripting 		CVE-2020-6319 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197027 5.4 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud versions - 1808, 1811, 1905, 2005, does not sufficiently encode user inputs, which allows an authenticated and authorized content manager to inject malicious script into several we… CWE-79
Cross-site Scripting 		CVE-2020-6272 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197028 7.5 HIGH
Network 		rockwellautomation allen-bradley_flex_io_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Port Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6083 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm
197029 7.5 HIGH
Network 		rockwellautomation flex_i\/o_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6087 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm
197030 7.5 HIGH
Network 		rockwellautomation flex_i\/o_1794-aent\/b_firmware An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen-Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of… CWE-120
Classic Buffer Overflow 		CVE-2020-6086 2024-11-21 14:35 2020-10-14 Show GitHub Exploit DB Packet Storm