Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231021	5	警告	シマンテック	-	Symantec Norton Ghost の FileBackup.DLL におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3665	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

231022	7.5	危険	Wafer	-	Webmatic における SQL インジェクションの脆弱性	-	CVE-2007-3648	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

231023	10	危険	ZoneO-soft	-	phpTrafficA の Php/login.inc.php における認証を回避される脆弱性	-	CVE-2007-3647	2012-12-20 18:33	2007-07-10	Show	GitHub Exploit DB Packet Storm

231024	4	警告	WordPress.org	-	WordPress における重要な情報を取得される脆弱性	-	CVE-2007-3639	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231025	6	警告	Yahoo!	-	Yahoo! Messenger におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-3638	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231026	7.5	危険	SquirrelMail Project	-	Squirrelmail 用の GPG Plugin における任意のコマンドを実行される脆弱性	-	CVE-2007-3636	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231027	4.3	警告	SquirrelMail Project	-	Squirrelmail 用の GPG Plugin における特定のコマンドを挿入される脆弱性	CWE-noinfo 情報不足	CVE-2007-3635	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231028	6.5	警告	SquirrelMail Project	-	Squirrelmail 用の GPG Plugin における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2007-3634	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231029	10	危険	SAP	-	SAP Message Server の Message HTTP Server におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-3624	2012-12-20 18:33	2007-07-9	Show	GitHub Exploit DB Packet Storm

231030	4	警告	Vtiger	-	vtiger CRM の report モジュールにおける任意のプライベートモジュールエントリを読まれる脆弱性	-	CVE-2007-3617	2012-12-20 18:33	2007-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199911	7.5	HIGH Network	sap	netweaver_application_server_java	SAP NetWeaver AS JAVA, versions - (ENGINEAPI 7.10; WSRM 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50; J2EE-FRMW 7.10, 7.11), does not perform any authentication checks for a web service allowing the atta…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6309	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199912	8.1	HIGH Network	sap	hcm_travel_management	SAP ERP (HCM Travel Management), versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of priv…	CWE-862 Missing Authorization	CVE-2020-6301	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199913	4.8	MEDIUM Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (Central Management Console), versions- 4.2, 4.3, allows an attacker with administrator rights can use the web application to send malicious code t…	CWE-79 Cross-site Scripting	CVE-2020-6300	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199914	4.3	MEDIUM Network	sap	abap_platform netweaver_application_server_abap	SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Inform…	NVD-CWE-noinfo	CVE-2020-6299	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199915	8.1	HIGH Network	sap	generic_market_data	SAP Banking Services (Generic Market Data), versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data (GMD) and change related GMD key figure val…	CWE-862 Missing Authorization	CVE-2020-6298	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199916	4.4	MEDIUM Local	sap	data_intelligence	Under certain conditions the upgrade of SAP Data Hub 2.7 to SAP Data Intelligence, version - 3.0, allows an attacker to access confidential system configuration information, that should otherwise be …	NVD-CWE-noinfo	CVE-2020-6297	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199917	8.8	HIGH Network	sap	abap_platform netweaver_application_server_abap	SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an attacker to inject code that can be executed by the application, leadin…	NVD-CWE-noinfo	CVE-2020-6296	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199918	7.8	HIGH Local	sap	adaptive_server_enterprise	Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and confidential information through publicly readable installation log fil…	CWE-532 CWE-732 Inclusion of Sensitive Information in Log Files Incorrect Permission Assignment for Critical Resource	CVE-2020-6295	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199919	9.1	CRITICAL Network	sap	businessobjects_business_intelligence_platform	Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not perform any authentication checks for functionalities that require user identity.	CWE-306 Missing Authentication for Critical Function	CVE-2020-6294	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199920	6.5	MEDIUM Network	sap	netweaver_knowledge_management	SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to upload a malicious file and also to access, modify or make unavailable existing files bu…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-6293	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm