Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230331 7.5 危険 phpnews - PhpNews における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7081 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230332 4.3 警告 professional home page tools login script - Professional Home Page Tools Login Script におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7078 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230333 6.8 警告 phpBB - phpBB 用の Advanced Guestbook における SQL インジェクションの脆弱性 - CVE-2006-7077 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230334 4.3 警告 phpBB - phpBB 用の Advanced Guestbook におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7076 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230335 7.5 危険 smartsitecms - SmartSiteCMS の admin.php における認証を回避される脆弱性 - CVE-2006-7074 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230336 7.5 危険 socketwiz - Socketwiz Bookmarks の smarty_config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7069 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
230337 7.5 危険 tinyphpforum - TinyPHPforum の profile.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7063 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
230338 9.3 危険 scriptsez.net - Scriptsez.net E-Dating System におけるプライベートメッセージを読まれる脆弱性 - CVE-2006-7061 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
230339 5.8 警告 サン・マイクロシステムズ - Sun Solaris の .iked などに使用されている libike ライブラリにおける PKCS #1 v1.5 署名を偽造される脆弱性 CWE-DesignError
CVE-2006-7140 2012-12-20 18:18 2006-11-27 Show GitHub Exploit DB Packet Storm
230340 5 警告 scriptsez.net - Scriptsez.net E-Dating System の cindex.php におけるフルパスを取得される脆弱性 - CVE-2006-7060 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197901 5.5 MEDIUM
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Right Hemisphere Binary (.rh) file received from untrusted sources which results in crashing of the application and bec… CWE-20
 Improper Input Validation  		CVE-2020-6376 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197902 5.5 MEDIUM
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Right Computer Graphics Metafile (.cgm) file received from untrusted sources which results in crashing of the applicati… CWE-20
 Improper Input Validation  		CVE-2020-6375 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197903 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Jupiter Tessallation(.jt) file received from untrusted sources which results in crashing of the application and becomin… CWE-20
CWE-125
 Improper Input Validation 
Out-of-bounds Read 		CVE-2020-6374 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197904 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PDF file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-6373 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197905 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PDF file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-6372 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197906 4.3 MEDIUM
Network 		sap netweaver_application_server_abap User enumeration vulnerability can be exploited to get a list of user accounts and personal user information can be exposed in SAP NetWeaver Application Server ABAP (POWL test application) versions -… NVD-CWE-noinfo
CVE-2020-6371 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197907 5.4 MEDIUM
Network 		sap business_planning_and_consolidation SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorizat… CWE-79
Cross-site Scripting 		CVE-2020-6368 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197908 10.0 CRITICAL
Network 		sap introscope_enterprise_manager SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentia… CWE-78
OS Command  		CVE-2020-6364 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197909 4.6 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, exposes several web applications that maintain sessions with a user. These sessions are established after the user has authenticated with userna… CWE-613
 Insufficient Session Expiration 		CVE-2020-6363 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
197910 6.1 MEDIUM
Network 		sap netweaver_enterprise_portal SAP NetWeaver Enterprise Portal (Fiori Framework Page) versions - 7.50, 7.31, 7.40, does not sufficiently encode user-controlled inputs and allows an attacker on a valid session to create an XSS that… CWE-79
Cross-site Scripting 		CVE-2020-6323 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm