Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249031 4.3 警告 grapecity - GrapeCity Data Dynamics Reports の DataDynamics.Reports.Web クラスライブラリにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1660 2012-03-27 18:43 2011-04-9 Show GitHub Exploit DB Packet Storm
249032 7.5 危険 CA Technologies - CA TD の UNC Server の management.asmx モジュールにおけるデータベース資格情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-1655 2012-03-27 18:43 2011-04-13 Show GitHub Exploit DB Packet Storm
249033 7.5 危険 CA Technologies - CA Total Defense の Management Server の Heartbeat Web Service におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1654 2012-03-27 18:43 2011-04-13 Show GitHub Exploit DB Packet Storm
249034 10 危険 CA Technologies - CA TD の UNC Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1653 2012-03-27 18:43 2011-04-13 Show GitHub Exploit DB Packet Storm
249035 9 危険 Digium - Asterisk Open Source の Manager Interface における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1599 2012-03-27 18:43 2011-04-21 Show GitHub Exploit DB Packet Storm
249036 4.3 警告 Wireshark - Wireshark の NFS 解析部におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2011-1592 2012-03-27 18:43 2011-04-15 Show GitHub Exploit DB Packet Storm
249037 9.3 危険 Wireshark - Wireshark の DECT 解析部におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1591 2012-03-27 18:43 2011-04-15 Show GitHub Exploit DB Packet Storm
249038 4.3 警告 Wireshark - Wireshark の X.509if 解析部におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1590 2012-03-27 18:43 2011-04-14 Show GitHub Exploit DB Packet Storm
249039 5 警告 mojolicious - Mojolicious の Path.pm におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1589 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249040 4.3 警告 マイクロソフト
MediaWiki		 - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1587 2012-03-27 18:43 2011-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199161 8.8 HIGH
Network 		os4ed opensis SQL injection vulnerability exists in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The fn parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker can m… CWE-89
SQL Injection 		CVE-2020-6120 2024-11-21 14:35 2020-09-1 Show GitHub Exploit DB Packet Storm
199162 8.8 HIGH
Network 		os4ed opensis SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The byear parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker c… CWE-89
SQL Injection 		CVE-2020-6119 2024-11-21 14:35 2020-09-1 Show GitHub Exploit DB Packet Storm
199163 8.8 HIGH
Network 		os4ed opensis SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bmonth parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker … CWE-89
SQL Injection 		CVE-2020-6118 2024-11-21 14:35 2020-09-1 Show GitHub Exploit DB Packet Storm
199164 8.8 HIGH
Network 		os4ed opensis SQL injection vulnerabilities exist in the CheckDuplicateStudent.php page of OS4Ed openSIS 7.3. The bday parameter in the page CheckDuplicateStudent.php is vulnerable to SQL injection. An attacker ca… CWE-89
SQL Injection 		CVE-2020-6117 2024-11-21 14:35 2020-09-1 Show GitHub Exploit DB Packet Storm
199165 4.3 MEDIUM
Network 		sap abap_platform
netweaver_application_server_abap 		Improper access control in SOA Configuration Trace component in SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 702, 730, 731, 740, 750, allows any authenticated user to enumerate all SAP u… NVD-CWE-noinfo
CVE-2020-6310 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm
199166 7.5 HIGH
Network 		sap netweaver_application_server_java SAP NetWeaver AS JAVA, versions - (ENGINEAPI 7.10; WSRM 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50; J2EE-FRMW 7.10, 7.11), does not perform any authentication checks for a web service allowing the atta… CWE-306
Missing Authentication for Critical Function 		CVE-2020-6309 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm
199167 8.1 HIGH
Network 		sap hcm_travel_management SAP ERP (HCM Travel Management), versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of priv… CWE-862
 Missing Authorization 		CVE-2020-6301 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm
199168 4.8 MEDIUM
Network 		sap businessobjects_business_intelligence_platform SAP Business Objects Business Intelligence Platform (Central Management Console), versions- 4.2, 4.3, allows an attacker with administrator rights can use the web application to send malicious code t… CWE-79
Cross-site Scripting 		CVE-2020-6300 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm
199169 4.3 MEDIUM
Network 		sap abap_platform
netweaver_application_server_abap 		SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 740, 750, 751, 752, 753, 754, 755, allows a business user to access the list of users in the given system using value help, leading to Inform… NVD-CWE-noinfo
CVE-2020-6299 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm
199170 8.1 HIGH
Network 		sap generic_market_data SAP Banking Services (Generic Market Data), versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data (GMD) and change related GMD key figure val… CWE-862
 Missing Authorization 		CVE-2020-6298 2024-11-21 14:35 2020-08-12 Show GitHub Exploit DB Packet Storm