Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229641 6.8 警告 sitex - SiteX CMS の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5141 2012-12-20 18:33 2007-09-28 Show GitHub Exploit DB Packet Storm
229642 4.3 警告 simpgb - SimpGB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5127 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229643 10 危険 シマンテック - Windows Servers 用の Symantec Veritas Backup Exec のクライアントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2007-5126 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229644 7.5 危険 solidweb - Novus の notas.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5123 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229645 7.5 危険 SoftbizScripts - SoftBiz Classifieds PLUS の store_info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5122 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
229646 5 警告 roi revolution - Google Urchin の report.cgi における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-5113 2012-12-20 18:33 2007-09-26 Show GitHub Exploit DB Packet Storm
229647 4.3 警告 roi revolution - Google Urchin の session.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5112 2012-12-20 18:33 2007-09-26 Show GitHub Exploit DB Packet Storm
229648 4.3 警告 WordPress.org - WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5106 2012-12-20 18:33 2007-09-26 Show GitHub Exploit DB Packet Storm
229649 4.3 警告 WordPress.org - WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5105 2012-12-20 18:33 2007-09-26 Show GitHub Exploit DB Packet Storm
229650 6.8 警告 wordsmith - Wordsmith の config.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5103 2012-12-20 18:33 2007-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200881 7.5 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-based authentication in an admin request over the SOAP conne… NVD-CWE-noinfo
CVE-2020-4276 2024-11-21 14:32 2020-03-26 Show GitHub Exploit DB Packet Storm
200882 5.3 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0CD could disclose sensitive information to an unauthenticated user which could be used to aid in further attacks against the system. IBM X-Force ID: 177080. CWE-200
Information Exposure 		CVE-2020-4309 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
200883 8.8 HIGH
Network 		ibm content_navigator IBM Content Navigator 3.0CD does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 175559. CWE-613
 Insufficient Session Expiration 		CVE-2020-4253 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
200884 6.3 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have be… CWE-287
Improper Authentication 		CVE-2020-4205 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
200885 4.9 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could potentially disclose highly sensitive information to a privileged user due to improper access controls. IBM X-Force ID: 174956. NVD-CWE-noinfo
CVE-2020-4203 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
200886 4.3 MEDIUM
Network 		ibm tivoli_netcool\/omnibus IBM Tivoli Netcool/OMNIbus 8.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trust… CWE-352
 Origin Validation Error 		CVE-2020-4199 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
200887 3.8 LOW
Local 		vmware horizon_client
workstation 		VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Attack… CWE-787
 Out-of-bounds Write 		CVE-2020-3951 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
200888 7.8 HIGH
Local 		vmware fusion
horizon_client
remote_console 		VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability d… CWE-269
 Improper Privilege Management 		CVE-2020-3950 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
200889 7.8 HIGH
Local 		vmware workstation
fusion 		Linux Guest VMs running on VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a local privilege escalation vulnerability due to improper file permissions in Cortado Thinp… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2020-3948 2024-11-21 14:32 2020-03-17 Show GitHub Exploit DB Packet Storm
200890 8.8 HIGH
Local 		vmware workstation
fusion 		VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2) contain a use-after vulnerability in vmnetdhcp. Successful exploitation of this issue may lead to code execution on the host fr… CWE-416
 Use After Free 		CVE-2020-3947 2024-11-21 14:32 2020-03-17 Show GitHub Exploit DB Packet Storm