Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230891 7.5 危険 racer - Racer の client などにおけるバッファオーバーフローの脆弱性 - CVE-2007-4370 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230892 5 警告 sote - SOTEeSKLEP の go/_files におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4369 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230893 5 警告 wengo - WengoPhone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4366 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230894 6.8 警告 prozilla - Prozilla Webring の category.php における SQL インジェクションの脆弱性 - CVE-2007-4362 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230895 6.8 警告 skilmatch staffing systems - SkilMatch Staffing Systems JobLister3 における SQL インジェクションの脆弱性 - CVE-2007-4359 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230896 4.3 警告 zoidcom - Zoidcom におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4358 2012-12-20 18:33 2007-08-15 Show GitHub Exploit DB Packet Storm
230897 7.5 危険 phpcentral - PHPCentral Login の include.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4342 2012-12-20 18:33 2007-08-14 Show GitHub Exploit DB Packet Storm
230898 7.5 危険 phpdvd - phpDVD の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4340 2012-12-20 18:33 2007-08-14 Show GitHub Exploit DB Packet Storm
230899 7.5 危険 phpcentral - PHPCentral Poll Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4339 2012-12-20 18:33 2007-08-14 Show GitHub Exploit DB Packet Storm
230900 5.8 警告 streamripper - Streamripper の lib/http.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4337 2012-12-20 18:33 2007-08-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200081 8.8 HIGH
Network 		accusoft imagegear An exploitable out-of-bounds write vulnerability exists in the store_data_buffer function of the igcore19d.dll library of Accusoft ImageGear 19.5.0. A specially crafted PNG file can cause an out-of-b… CWE-787
 Out-of-bounds Write 		CVE-2020-6075 2024-11-21 14:35 2020-05-6 Show GitHub Exploit DB Packet Storm
200082 6.1 MEDIUM
Network 		sap netweaver_as_abap_business_server_pages SAP NetWeaver AS ABAP Business Server Pages Test Application SBSPEXT_PHTMLB, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, is vulnerable to reflected Cross-Site Scripting (XSS) via … CWE-79
Cross-site Scripting 		CVE-2020-6213 2024-11-21 14:35 2020-04-25 Show GitHub Exploit DB Packet Storm
200083 5.4 MEDIUM
Network 		sap erp
s\/4hana 		Egypt localized withholding tax reports Clearing of Liabilities and Remittance Statement and Summary in SAP ERP (versions 618, 730, EAPPLGLO 607) and S/4 HANA (versions 100, 101, 102, 103, 104) do no… CWE-862
 Missing Authorization 		CVE-2020-6212 2024-11-21 14:35 2020-04-25 Show GitHub Exploit DB Packet Storm
200084 6.1 MEDIUM
Network 		sap netweaver_as_abap_business_server_pages SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, does not sufficiently encode user-controlled inputs, resulting in re… CWE-79
Cross-site Scripting 		CVE-2020-6217 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200085 6.1 MEDIUM
Network 		sap netweaver_as_abap_business_server_pages SAP NetWeaver AS ABAP Business Server Pages Test Application IT00, versions 700, 701, 702, 730, 731, 740, 750, 751, 752, 753, 754, allows an attacker to redirect users to a malicious site due to insu… CWE-601
Open Redirect 		CVE-2020-6215 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200086 6.1 MEDIUM
Network 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform (AdminTools), versions 4.1, 4.2, allows an attacker to redirect users to a malicious site due to insufficient URL validation and steal credentials … CWE-601
Open Redirect 		CVE-2020-6211 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200087 9.8 CRITICAL
Network 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform (CMC), version 4.1, 4.2, shows cleartext password in the response, leading to Information Disclosure. It involves social engineering in order to ga… CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2020-6195 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200088 9.3 CRITICAL
Network 		sap commerce_cloud SAP Commerce, versions - 6.6, 6.7, 1808, 1811, 1905, does not process XML input securely in the Rest API from Servlet xyformsweb, leading to Missing XML Validation. This affects confidentiality and a… CWE-611
XXE 		CVE-2020-6238 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200089 7.5 HIGH
Network 		sap businessobjects_business_intelligence_platform Under certain conditions, SAP Business Objects Business Intelligence Platform, version 4.1, 4.2, dswsbobje web application allows an attacker to access information which would otherwise be restricted… NVD-CWE-noinfo
CVE-2020-6237 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm
200090 7.2 HIGH
Network 		sap landscape_management
adaptive_extensions 		SAP Landscape Management, version 3.0, and SAP Adaptive Extensions, version 1.0, allows an attacker with admin_group privileges to change ownership and permissions (including S-user ID bit s-bit) of … CWE-269
 Improper Privilege Management 		CVE-2020-6236 2024-11-21 14:35 2020-04-15 Show GitHub Exploit DB Packet Storm