Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230971 6.8 警告 second sight software - Second Sight Software ActiveGS ActiveX コントロール におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1690 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
230972 10 危険 シマンテック - Norton Personal Firewall および Internet Security 用の ISAlertDataCOM ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-1689 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
230973 9.3 危険 solidworks - sldimdownload.dll の SolidWorks sldimdownload ActiveX コントロールにおける任意のコマンドを実行される脆弱性 - CVE-2007-1684 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
230974 9.3 危険 Yahoo! - Yahoo! Messenger の AudioConf ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1680 2012-12-20 18:19 2007-04-5 Show GitHub Exploit DB Packet Storm
230975 7.5 危険 Python Software Foundation - Python の Modules/zlib におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1657 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
230976 10 危険 tinymux - TinyMUX の funmath.cpp におけるバッファオーバーフローの脆弱性 - CVE-2007-1655 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
230977 4.3 警告 subhub - SubHub におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1646 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
230978 7.5 危険 portailphp - PortailPHP の index.php における SQL インジェクションの脆弱性 - CVE-2007-1641 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
230979 4.6 警告 phpprojekt - PHProjekt における任意のコードを実行される脆弱性 - CVE-2007-1639 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
230980 6.8 警告 phpprojekt - PHProjekt の lib/lib.inc.php におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-1638 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199301 5.5 MEDIUM
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Right Computer Graphics Metafile (.cgm) file received from untrusted sources which results in crashing of the applicati… CWE-20
 Improper Input Validation  		CVE-2020-6375 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199302 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated Jupiter Tessallation(.jt) file received from untrusted sources which results in crashing of the application and becomin… CWE-20
CWE-125
 Improper Input Validation 
Out-of-bounds Read 		CVE-2020-6374 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199303 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PDF file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-6373 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199304 7.8 HIGH
Local 		sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PDF file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-20
CWE-787
 Improper Input Validation 
 Out-of-bounds Write 		CVE-2020-6372 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199305 4.3 MEDIUM
Network 		sap netweaver_application_server_abap User enumeration vulnerability can be exploited to get a list of user accounts and personal user information can be exposed in SAP NetWeaver Application Server ABAP (POWL test application) versions -… NVD-CWE-noinfo
CVE-2020-6371 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199306 5.4 MEDIUM
Network 		sap business_planning_and_consolidation SAP Business Planning and Consolidation, versions - 750, 751, 752, 753, 754, 755, 810, 100, 200, can be abused by an attacker, allowing them to modify displayed application content without authorizat… CWE-79
Cross-site Scripting 		CVE-2020-6368 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199307 10.0 CRITICAL
Network 		sap introscope_enterprise_manager SAP Solution Manager and SAP Focused Run (update provided in WILY_INTRO_ENTERPRISE 9.7, 10.1, 10.5, 10.7), allows an attacker to modify a cookie in a way that OS commands can be executed and potentia… CWE-78
OS Command  		CVE-2020-6364 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199308 4.6 MEDIUM
Network 		sap commerce_cloud SAP Commerce Cloud, versions - 1808, 1811, 1905, 2005, exposes several web applications that maintain sessions with a user. These sessions are established after the user has authenticated with userna… CWE-613
 Insufficient Session Expiration 		CVE-2020-6363 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199309 6.1 MEDIUM
Network 		sap netweaver_enterprise_portal SAP NetWeaver Enterprise Portal (Fiori Framework Page) versions - 7.50, 7.31, 7.40, does not sufficiently encode user-controlled inputs and allows an attacker on a valid session to create an XSS that… CWE-79
Cross-site Scripting 		CVE-2020-6323 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm
199310 6.1 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java, versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, and 7.50 allows an unauthenticated attacker to include JavaScript blocks in any web page or URL with different sy… CWE-79
Cross-site Scripting 		CVE-2020-6319 2024-11-21 14:35 2020-10-15 Show GitHub Exploit DB Packet Storm