Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231031	6.8	警告	sinecms	-	SineCms の mods/Core/result.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2357	2012-12-20 18:19	2007-04-30	Show	GitHub Exploit DB Packet Storm

231032	7.8	危険	Progress Software Corporation	-	Progress Webspeed Messenger における重要な情報を取得される脆弱性	-	CVE-2007-2354	2012-12-20 18:19	2007-04-30	Show	GitHub Exploit DB Packet Storm

231033	7.5	危険	php-generics	-	PHP-Generics における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2346	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

231034	7.5	危険	phpbandmanager	-	phpBandManager の suite/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2341	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

231035	6.8	警告	phporacleview	-	phporacleview の inc/include_all.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2340	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

231036	7.5	危険	shop-script	-	Shop-Script の cart.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2331	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

231037	7.5	危険	searchactivity	-	Searchactivity の searchbot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2329	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

231038	7.5	危険	phpmytgp	-	phpMYTGP の addvip.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2328	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

231039	10	危険	SilverStripe	-	SilverStripe の検索機能における脆弱性	-	CVE-2007-2321	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

231040	7.5	危険	VWar	-	PHP-Nuke 用の VWar モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2312	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199431	8.8	HIGH Network	os4ed	opensis	An exploitable sql injection vulnerability exists in the email parameter functionality of OS4Ed openSIS 7.3. The email parameter in the page EmailCheck.php is vulnerable to SQL injection. An attacker…	CWE-89 SQL Injection	CVE-2020-6123	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199432	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The mn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can m…	CWE-89 SQL Injection	CVE-2020-6122	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199433	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The ln parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can …	CWE-89 SQL Injection	CVE-2020-6121	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199434	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The fn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can m…	CWE-89 SQL Injection	CVE-2020-6120	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199435	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The byear parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker c…	CWE-89 SQL Injection	CVE-2020-6119	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199436	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker …	CWE-89 SQL Injection	CVE-2020-6118	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199437	8.8	HIGH Network	os4ed	opensis	SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bday parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker ca…	CWE-89 SQL Injection	CVE-2020-6117	2024-11-21 14:35	2020-09-1	Show	GitHub Exploit DB Packet Storm

199438	4.3	MEDIUM Network	sap	abap_platform netweaver_application_server_abap	Improper access control in SOA Configuration Trace component in SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 702, 730, 731, 740, 750, allows any authenticated user to enumerate all SAP u…	NVD-CWE-noinfo	CVE-2020-6310	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199439	7.5	HIGH Network	sap	netweaver_application_server_java	SAP NetWeaver AS JAVA, versions - (ENGINEAPI 7.10; WSRM 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50; J2EE-FRMW 7.10, 7.11), does not perform any authentication checks for a web service allowing the atta…	CWE-306 Missing Authentication for Critical Function	CVE-2020-6309	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm

199440	8.1	HIGH Network	sap	hcm_travel_management	SAP ERP (HCM Travel Management), versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of priv…	CWE-862 Missing Authorization	CVE-2020-6301	2024-11-21 14:35	2020-08-12	Show	GitHub Exploit DB Packet Storm