Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230121	7.5	危険	uapplication	-	Ublog Reload の badword.asp における SQL インジェクションの脆弱性	-	CVE-2007-0799	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230122	4.3	警告	uapplication	-	Ublog Reload におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0798	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230123	7.5	危険	wap	-	Wap Portal Server における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0795	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230124	7.5	危険	SmartSoft	-	SmartFTP におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0790	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230125	6.8	警告	Simple Invoices	-	Simple Invoices の controller.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0787	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230126	7.5	危険	rbl	-	Raymond BERTHOU script collection の tPassword 用の login.asp における SQL インジェクションの脆弱性	-	CVE-2007-0784	2012-12-20 18:19	2007-02-6	Show	GitHub Exploit DB Packet Storm

230127	4.3	警告	Yahoo!	-	Yahoo! Messenger の Contact Details 機能におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0768	2012-12-20 18:19	2007-02-5	Show	GitHub Exploit DB Packet Storm

230128	9.3	危険	remotesoft	-	Remotesoft .NET Explorer におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-0766	2012-12-20 18:19	2007-02-5	Show	GitHub Exploit DB Packet Storm

230129	7.5	危険	phpbb++	-	phpBB++ の includes/functions.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0762	2012-12-20 18:19	2007-02-5	Show	GitHub Exploit DB Packet Storm

230130	7.5	危険	phpBB	-	phpBB ezconvert の config.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0761	2012-12-20 18:19	2007-02-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197541	9.8	CRITICAL Network	sap	netweaver_application_server_abap	SAP Netweaver AS ABAP, versions 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 752, 753, 754, are vulnerable for Server Side Request Forgery Attack where in an attacker can use inappropriate path …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2020-6275	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197542	8.2	HIGH Network	sap	solution_manager	SAP Solution Manager (Problem Context Manager), version 7.2, does not perform the necessary authentication, allowing an attacker to consume large amounts of memory, causing the system to crash and re…	CWE-91 Blind XPath Injection	CVE-2020-6271	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197543	6.5	MEDIUM Network	sap	netweaver_application_server_abap	SAP NetWeaver AS ABAP (Banking Services), versions - 710, 711, 740, 750, 751, 752, 75A, 75B, 75C, 75D, 75E, does not perform necessary authorization checks for an authenticated user due to Missing Au…	CWE-862 Missing Authorization	CVE-2020-6270	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197544	6.5	MEDIUM Network	sap	businessobjects_business_intelligence_platform	Under certain conditions SAP Business Objects Business Intelligence Platform, version 4.2, allows an attacker to access information which would otherwise be restricted, leading to Information Disclos…	NVD-CWE-noinfo	CVE-2020-6269	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197545	8.1	HIGH Network	sap	erp_\(s4core\) erp_\(ea-finserv\)	Statutory Reporting for Insurance Companies in SAP ERP (EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104) does not execute the required authori…	CWE-862 Missing Authorization	CVE-2020-6268	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197546	5.4	MEDIUM Network	sap	fiori	SAP Fiori for SAP S/4HANA, versions - 100, 200, 300, 400, allows an attacker to redirect users to a malicious site due to insufficient URL validation, leading to URL Redirection.	CWE-601 Open Redirect	CVE-2020-6266	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197547	7.5	HIGH Network	sap	commerce	SAP Commerce, versions - 6.7, 1808, 1811, 1905, may allow an attacker to access information under certain conditions which would otherwise be restricted, leading to Information Disclosure.	NVD-CWE-noinfo	CVE-2020-6264	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197548	9.8	CRITICAL Network	sap	netweaver_application_server_java	Standalone clients connecting to SAP NetWeaver AS Java via P4 Protocol, versions (SAP-JEECOR 7.00, 7.01; SERVERCOR 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50; CORE-TOOLS 7.00, 7.01, 7.02, 7.05, 7.10, 7…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6263	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197549	5.3	MEDIUM Network	sap	solution_manager	SAP Solution Manager (Trace Analysis), version 7.20, allows an attacker to inject superflous data that can be displayed by the application, due to Incomplete XML Validation. The application shows add…	CWE-91 Blind XPath Injection	CVE-2020-6260	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm

197550	6.1	MEDIUM Network	sap	netweaver_as_abap_business_server_pages	SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_TABLE, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, does not sufficiently encode user-controlled inputs, result…	CWE-79 Cross-site Scripting	CVE-2020-6246	2024-11-21 14:35	2020-06-10	Show	GitHub Exploit DB Packet Storm