Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230001 6.8 警告 phpoutsourcing - PhpOutsourcing Noah's Classifieds の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-5293 2012-12-20 18:02 2006-10-16 Show GitHub Exploit DB Packet Storm
230002 7.5 危険 Xerox - Xerox WorkCentre における認証を回避される脆弱性 - CVE-2006-5290 2012-12-20 18:02 2006-10-3 Show GitHub Exploit DB Packet Storm
230003 7.5 危険 Vtiger - Vtiger CRM における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5289 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230004 5.1 警告 xeobook - Xeobook の sign.php における SQL インジェクションの脆弱性 - CVE-2006-5287 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230005 7.5 危険 xeoport - XeoPort の index.php における SQL インジェクションの脆弱性 - CVE-2006-5285 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230006 7.5 危険 sh-news - SH-News における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5282 2012-12-20 18:02 2006-10-13 Show GitHub Exploit DB Packet Storm
230007 7.5 危険 phpmyagenda - phpMyAgenda の templates/header.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2006-5263 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
230008 7.5 危険 phpmynews - PHPMyNews における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5261 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
230009 5.1 警告 webmedia explorer - Webmedia Explorer の includes/core.lib.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5252 2012-12-20 18:02 2006-10-12 Show GitHub Exploit DB Packet Storm
230010 7.5 危険 tagit - tagit2b の tagmin/delTagUser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-5249 2012-12-20 18:02 2006-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
198071 9.8 CRITICAL
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to e… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-4208 2024-11-21 14:32 2020-04-1 Show GitHub Exploit DB Packet Storm
198072 8.8 HIGH
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.5 could allow a remote attacker to execute arbitrary commands on the system in the context of root user, caused by improper validation of user-supplied i… CWE-20
CWE-78
 Improper Input Validation 
OS Command  		CVE-2020-4206 2024-11-21 14:32 2020-04-1 Show GitHub Exploit DB Packet Storm
198073 7.5 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-based authentication in an admin request over the SOAP conne… NVD-CWE-noinfo
CVE-2020-4276 2024-11-21 14:32 2020-03-26 Show GitHub Exploit DB Packet Storm
198074 5.3 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0CD could disclose sensitive information to an unauthenticated user which could be used to aid in further attacks against the system. IBM X-Force ID: 177080. CWE-200
Information Exposure 		CVE-2020-4309 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
198075 8.8 HIGH
Network 		ibm content_navigator IBM Content Navigator 3.0CD does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 175559. CWE-613
 Insufficient Session Expiration 		CVE-2020-4253 2024-11-21 14:32 2020-03-25 Show GitHub Exploit DB Packet Storm
198076 6.3 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could allow an authenticated user to bypass security restrictions, and continue to access the server even after authentication certificates have be… CWE-287
Improper Authentication 		CVE-2020-4205 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
198077 4.9 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateway 2018.4.1.0 through 2018.4.1.8 could potentially disclose highly sensitive information to a privileged user due to improper access controls. IBM X-Force ID: 174956. NVD-CWE-noinfo
CVE-2020-4203 2024-11-21 14:32 2020-03-19 Show GitHub Exploit DB Packet Storm
198078 4.3 MEDIUM
Network 		ibm tivoli_netcool\/omnibus IBM Tivoli Netcool/OMNIbus 8.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trust… CWE-352
 Origin Validation Error 		CVE-2020-4199 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
198079 3.8 LOW
Local 		vmware horizon_client
workstation 		VMware Workstation (15.x before 15.5.2) and Horizon Client for Windows (5.x and prior before 5.4.0) contain a denial-of-service vulnerability due to a heap-overflow issue in Cortado Thinprint. Attack… CWE-787
 Out-of-bounds Write 		CVE-2020-3951 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm
198080 7.8 HIGH
Local 		vmware fusion
horizon_client
remote_console 		VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before 5.4.0) contain a privilege escalation vulnerability d… CWE-269
 Improper Privilege Management 		CVE-2020-3950 2024-11-21 14:32 2020-03-18 Show GitHub Exploit DB Packet Storm