Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230061	7.5	危険	Xerox	-	Xerox WorkCentre および WorkCentre Pro の Web User Interface における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2006-6427	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230062	6.8	警告	thinkedit	-	ThinkEdit の design/thinkedit/render.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6426	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230063	6	警告	phpBB	-	phpBB のプライベートメッセージボックス実装 (privmsg.php) におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6421	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230064	6.8	警告	Widget Factory Limited	-	Joomla! 用の Ryan Demmer JCE におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-6420	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230065	7.5	危険	Widget Factory Limited	-	Joomla! 用の Ryan Demmer JCE における任意のローカルファイルをインクルードされる脆弱性	-	CVE-2006-6419	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230066	7.5	危険	phpleague - univert	-	PhpLeague - Univert PhpLeague における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-6416	2012-12-20 18:02	2006-12-10	Show	GitHub Exploit DB Packet Storm

230067	4.6	警告	VMware	-	VMWare の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2006-6410	2012-12-20 18:02	2006-12-9	Show	GitHub Exploit DB Packet Storm

230068	5	警告	softwin	-	SMB の BitDefender Mail Protection におけるウィルス検出を回避される脆弱性	-	CVE-2006-6405	2012-12-20 18:02	2006-12-9	Show	GitHub Exploit DB Packet Storm

230069	7.5	危険	superfreaker studios	-	Superfreaker Studios UPublisher における SQL インジェクションの脆弱性	-	CVE-2006-6399	2012-12-20 18:02	2006-12-7	Show	GitHub Exploit DB Packet Storm

230070	7.5	危険	superfreaker studios	-	Superfreaker Studios UPublisher における SQL インジェクションの脆弱性	-	CVE-2006-6398	2012-12-20 18:02	2006-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197901	9.1	CRITICAL Network	ibm	elastic_storage_system spectrum_scale	A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. …	CWE-862 Missing Authorization	CVE-2020-4926	2024-11-21 14:33	2022-05-25	Show	GitHub Exploit DB Packet Storm

197902	5.9	MEDIUM Network	ibm	security_identity_manager	IBM Security Identity Governance and Intelligence 5.2.4, 5.2.5, and 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2020-4970	2024-11-21 14:33	2022-05-20	Show	GitHub Exploit DB Packet Storm

197903	7.5	HIGH Network	ibm	datapower_gateway	IBM DataPower Gateway 10.0.1.0 through 10.0.1.4 and 2018.4.1.0 through 2018.4.1.17 could allow a remote user to cause a temporary denial of service by sending invalid HTTP requests. IBM X-Force ID: 1…	NVD-CWE-noinfo	CVE-2020-4994	2024-11-21 14:33	2022-05-18	Show	GitHub Exploit DB Packet Storm

197904	5.3	MEDIUM Network	ibm	security_identity_governance_and_intelligence	IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information in URL parameters that could aid in future attacks against the system. IBM X-Force ID: 192208.	CWE-200 Information Exposure	CVE-2020-4957	2024-11-21 14:33	2022-05-18	Show	GitHub Exploit DB Packet Storm

197905	8.8	HIGH Network	ibm	sterling_b2b_integrator	IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.3, and 6.1.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicio…	CWE-352 Origin Validation Error	CVE-2020-4668	2024-11-21 14:33	2022-04-9	Show	GitHub Exploit DB Packet Storm

197906	4.3	MEDIUM Network	ibm	rational_team_concert	IBM Engineering Workflow Management 7.0, 7.0.1, and 7.0.2 and IBM Rational Team Concert 6.0.6 and 6.0.0.1 could allow an authenticated user to obtain sensitive information about build definitions. IB…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2020-4989	2024-11-21 14:33	2022-03-16	Show	GitHub Exploit DB Packet Storm

197907	5.5	MEDIUM Local	ibm	spectrum_scale	A security vulnerability in the Spectrum Scale 5.0 and 5.1 allows a non-root user to overflow the mmfsd daemon with requests and preventing the daemon to service other requests. IBM X-Force ID: 19159…	NVD-CWE-noinfo	CVE-2020-4925	2024-11-21 14:33	2022-03-2	Show	GitHub Exploit DB Packet Storm

197908	9.8	CRITICAL Network	ibm	cognos_controller	IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could allow a remote attacker to bypass security restrictions, caused by improper validation of authentication cookies. IBM X-Force ID: 190847.	CWE-287 Improper Authentication	CVE-2020-4879	2024-11-21 14:33	2022-01-22	Show	GitHub Exploit DB Packet Storm

197909	9.8	CRITICAL Network	ibm	cognos_controller	IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could be vulnerable to unauthorized modifications by using public fields in public classes. IBM X-Force ID: 190843.	CWE-863 Incorrect Authorization	CVE-2020-4877	2024-11-21 14:33	2022-01-22	Show	GitHub Exploit DB Packet Storm

197910	8.2	HIGH Network	ibm	cognos_controller	IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose …	CWE-611 XXE	CVE-2020-4876	2024-11-21 14:33	2022-01-22	Show	GitHub Exploit DB Packet Storm