Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229981	7.5	危険	simplog	-	Simplog の comments.php における SQL インジェクションの脆弱性	-	CVE-2006-5398	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229982	2.1	注意	X.Org Foundation	-	X.Org libX11 の Xinput モジュールにおける XCOMPOSEFILE 環境変数によって使用されるファイルが読み込まれる脆弱性	-	CVE-2006-5397	2012-12-20 18:02	2006-11-2	Show	GitHub Exploit DB Packet Storm

229983	5	警告	xfire	-	Xfire におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5391	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229984	6.8	警告	phpBB	-	phpBB 用の MMW モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5390	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229985	5	警告	wyana	-	PHP-Wyana の tools/tellhim.php における重要な情報を取得される脆弱性	-	CVE-2006-5389	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229986	7.5	危険	webSPELL	-	WebSPELL の index.php における SQL インジェクションの脆弱性	-	CVE-2006-5388	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229987	7.5	危険	phpbb plusxl	-	PlusXL および phpBB モジュールの mods/iai/includes/constants.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5387	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229988	7.5	危険	spamoborona	-	SpamOborona の admin/admin_spam.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5385	2012-12-20 18:02	2006-10-18	Show	GitHub Exploit DB Packet Storm

229989	7.5	危険	phpbb prillian	-	phpBB 用の Prillian French モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5326	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

229990	7.5	危険	Tincan	-	phplist における SQL インジェクションの脆弱性	-	CVE-2006-5322	2012-12-20 18:02	2006-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198061	6.5	MEDIUM Network	ibm	cloud_pak_for_automation process_federation_server	The IBM Process Federation Server 18.0.0.1, 18.0.0.2, 19.0.0.1, 19.0.0.2, and 19.0.0.3 Global Teams REST API does not properly shutdown the thread pools that it creates to retrieve Global Teams infor…	CWE-404 Improper Resource Shutdown or Release	CVE-2020-4325	2024-11-21 14:32	2020-04-3	Show	GitHub Exploit DB Packet Storm

198062	8.8	HIGH Network	ibm	spectrum_protect_plus spectrum_scale	IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request,…	CWE-78 OS Command	CVE-2020-4242	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198063	8.8	HIGH Network	ibm	spectrum_protect_plus spectrum_scale	IBM Spectrum Scale and IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially crafted request,…	CWE-78 OS Command	CVE-2020-4241	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198064	6.5	MEDIUM Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to overwrite or create arbi…	CWE-22 Path Traversal	CVE-2020-4240	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198065	5.3	MEDIUM Network	ibm	tivoli_netcool\/impact	IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information c…	CWE-209 Information Exposure Through an Error Message	CVE-2020-4239	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198066	8.8	HIGH Network	ibm	tivoli_netcool\/impact	IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that…	CWE-352 Origin Validation Error	CVE-2020-4238	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198067	8.8	HIGH Network	ibm	tivoli_netcool\/impact	IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that…	CWE-352 Origin Validation Error	CVE-2020-4237	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198068	6.5	MEDIUM Network	ibm	tivoli_netcool\/impact	IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 could allow an authenticated user to cause a denial of service due to improper content parsing in the project management module. IBM X-Force ID: 175…	NVD-CWE-noinfo	CVE-2020-4236	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198069	5.4	MEDIUM Network	ibm	tivoli_netcool\/impact	IBM Tivoli Netcool Impact 7.1.0.0 through 7.1.0.17 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended f…	CWE-79 Cross-site Scripting	CVE-2020-4235	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm

198070	7.5	HIGH Network	ibm	spectrum_protect_plus	IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to arbitrary delete a directory caused by improper validation of user-supplied input. IBM X-Force ID: 175026.	CWE-20 Improper Input Validation	CVE-2020-4214	2024-11-21 14:32	2020-04-1	Show	GitHub Exploit DB Packet Storm