Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230121 6.8 警告 XOOPS - XOOPS 用の Cjay Content モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3220 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
230122 7.5 危険 prototype of an php application - PHP アプリケーションの Prototype における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3217 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
230123 6.8 警告 PHPMailer project - PHPMailer における任意のシェルコマンドを実行される脆弱性 - CVE-2007-3215 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230124 10 危険 PhpWiki - PhpWiki の lib/WikiUser/LDAP.php における認証を回避される脆弱性 - CVE-2007-3193 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
230125 6.8 警告 vincent hor - Calendarix における SQL インジェクションの脆弱性 - CVE-2007-3183 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
230126 4.3 警告 vincent hor - Calendarix におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3182 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
230127 7.5 危険 zindizayn okul web sistemi - Zindizayn Okul Web Sistemi における SQL インジェクションの脆弱性 - CVE-2007-3178 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230128 7.5 危険 w2b - W2B Online Banking における SQL インジェクションの脆弱性 - CVE-2007-3175 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230129 4.3 警告 w2b - W2B Online Banking の auth.w2b におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3174 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
230130 5 警告 uebimiau - Uebimiau Webmail の demo/pop3/error.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3172 2012-12-20 18:19 2007-06-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200221 4.3 MEDIUM
Network 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 could disclose potentially sensitive information to an authenticated user due to world readable log files. IBM X-Force ID: 179484. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2020-4405 2024-11-21 14:32 2020-07-27 Show GitHub Exploit DB Packet Storm
200222 5.4 MEDIUM
Network 		ibm filenet_content_manager IBM FileNet Content Manager 5.5.3 and 5.5.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function… CWE-79
Cross-site Scripting 		CVE-2020-4447 2024-11-21 14:32 2020-07-24 Show GitHub Exploit DB Packet Storm
200223 7.5 HIGH
Network 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 179478. CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2020-4400 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200224 6.5 MEDIUM
Network 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 could allow an authenticated user to send malformed requests to cause a denial of service against the server. IBM X-Force ID: 179476. NVD-CWE-noinfo
CVE-2020-4399 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200225 5.9 MEDIUM
Network 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 transmits sensitive information in plain text which could be obtained by an attacker using man in the middle techniques. IBM X-Force ID: 179428. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-4397 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200226 9.8 CRITICAL
Network 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external… CWE-798
 Use of Hard-coded Credentials 		CVE-2020-4385 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200227 7.8 HIGH
Local 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 179009 CWE-522
 Insufficiently Protected Credentials 		CVE-2020-4372 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200228 3.3 LOW
Local 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 contains sensitive information in leftover debug code that could be used aid a local user in further attacks against the system. IBM X-Force ID: 179008. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2020-4371 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200229 5.5 MEDIUM
Local 		ibm verify_gateway IBM Verify Gateway (IVG) 1.0.0 and 1.0.1 stores highly sensitive information in cleartext that could be obtained by a user. IBM X-Force ID: 179004. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2020-4369 2024-11-21 14:32 2020-07-23 Show GitHub Exploit DB Packet Storm
200230 8.1 HIGH
Network 		ibm marketing_operations Using HCL Marketing Operations 9.1.2.4, 10.1.x, 11.1.0.x, a malicious attacker could download files from the RHEL environment by doing some modification in the link, giving the attacker access to con… CWE-494
 Download of Code Without Integrity Check 		CVE-2020-4125 2024-11-21 14:32 2020-07-21 Show GitHub Exploit DB Packet Storm