Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229561 7.5 危険 simplog - Simplog の comments.php における SQL インジェクションの脆弱性 - CVE-2006-5398 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229562 2.1 注意 X.Org Foundation - X.Org libX11 の Xinput モジュールにおける XCOMPOSEFILE 環境変数によって使用されるファイルが読み込まれる脆弱性 - CVE-2006-5397 2012-12-20 18:02 2006-11-2 Show GitHub Exploit DB Packet Storm
229563 5 警告 xfire - Xfire におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-5391 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229564 6.8 警告 phpBB - phpBB 用の MMW モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-5390 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229565 5 警告 wyana - PHP-Wyana の tools/tellhim.php における重要な情報を取得される脆弱性 - CVE-2006-5389 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229566 7.5 危険 webSPELL - WebSPELL の index.php における SQL インジェクションの脆弱性 - CVE-2006-5388 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229567 7.5 危険 phpbb plusxl - PlusXL および phpBB モジュールの mods/iai/includes/constants.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5387 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229568 7.5 危険 spamoborona - SpamOborona の admin/admin_spam.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5385 2012-12-20 18:02 2006-10-18 Show GitHub Exploit DB Packet Storm
229569 7.5 危険 phpbb prillian - phpBB 用の Prillian French モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5326 2012-12-20 18:02 2006-10-17 Show GitHub Exploit DB Packet Storm
229570 7.5 危険 Tincan - phplist における SQL インジェクションの脆弱性 - CVE-2006-5322 2012-12-20 18:02 2006-10-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197441 8.8 HIGH
Local 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper handling of UNC paths. By scheduling a… NVD-CWE-noinfo
CVE-2020-4534 2024-11-21 14:32 2020-08-3 Show GitHub Exploit DB Packet Storm
197442 9.1 CRITICAL
Network 		ibm cognos_analytics IBM Cognos Anaytics 11.0 and 11.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive infor… CWE-611
XXE 		CVE-2020-4377 2024-11-21 14:32 2020-08-3 Show GitHub Exploit DB Packet Storm
197443 6.3 MEDIUM
Network 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager 3.2.4 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete in… CWE-89
SQL Injection 		CVE-2020-4328 2024-11-21 14:32 2020-08-3 Show GitHub Exploit DB Packet Storm
197444 5.3 MEDIUM
Network 		ibm security_guardium IBM Security Guardium 10.5, 10.6, and 11.1 could disclose sensitive information on the login page that could aid in further attacks against the system. IBM X-Force ID: 174804. CWE-200
Information Exposure 		CVE-2020-4186 2024-11-21 14:32 2020-07-30 Show GitHub Exploit DB Packet Storm
197445 7.5 HIGH
Network 		ibm security_guardium IBM Security Guardium 10.5, 10.6, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 174803. CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2020-4185 2024-11-21 14:32 2020-07-30 Show GitHub Exploit DB Packet Storm
197446 7.5 HIGH
Network 		ibm security_key_lifecycle_manager IBM Tivoli Key Lifecycle Manager does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 184181. CWE-521
Weak Password Requirements  		CVE-2020-4574 2024-11-21 14:32 2020-07-29 Show GitHub Exploit DB Packet Storm
197447 5.3 MEDIUM
Network 		ibm security_key_lifecycle_manager IBM Tivoli Key Lifecycle Manager 3.0.1 and 4.0 could disclose sensitive information due to responding to unauthenticated HTTP requests. IBM X-Force ID: 184180. NVD-CWE-noinfo
CVE-2020-4573 2024-11-21 14:32 2020-07-29 Show GitHub Exploit DB Packet Storm
197448 5.3 MEDIUM
Network 		ibm security_key_lifecycle_manager IBM Tivoli Key Lifecycle Manager 3.0.1 and 4.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could… CWE-209
Information Exposure Through an Error Message 		CVE-2020-4572 2024-11-21 14:32 2020-07-29 Show GitHub Exploit DB Packet Storm
197449 6.5 MEDIUM
Network 		ibm security_key_lifecycle_manager IBM Tivoli Key Lifecycle Manager 3.0.1 and 4.0 uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypass… NVD-CWE-noinfo
CVE-2020-4569 2024-11-21 14:32 2020-07-29 Show GitHub Exploit DB Packet Storm
197450 9.8 CRITICAL
Network 		ibm security_key_lifecycle_manager IBM Tivoli Key Lifecycle Manager 3.0.1 and 4.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 184156. CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-4567 2024-11-21 14:32 2020-07-29 Show GitHub Exploit DB Packet Storm