Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249951 4.3 警告 PulseCMS - Pulse Pro CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5041 2012-01-5 16:10 2011-12-30 Show GitHub Exploit DB Packet Storm
249952 4.3 警告 Infoproject - Infoproject Biznis Heroj におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5040 2012-01-5 14:27 2011-12-30 Show GitHub Exploit DB Packet Storm
249953 7.5 危険 Infoproject - Infoproject Biznis Heroj における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5039 2012-01-5 14:26 2011-12-30 Show GitHub Exploit DB Packet Storm
249954 7.5 危険 hitCode - hitCode hitAppoint における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5038 2012-01-5 14:24 2011-12-30 Show GitHub Exploit DB Packet Storm
249955 4.4 警告 ConfigServer - ConfigServer Security & Firewall におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5033 2012-01-5 14:21 2011-12-10 Show GitHub Exploit DB Packet Storm
249956 4.9 警告 WinMount - WinMount の WMDrive.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-5032 2012-01-5 14:20 2011-12-29 Show GitHub Exploit DB Packet Storm
249957 7.5 危険 Shilpi Computers Limited. - cApexWEB の servlet/capexweb.parentvalidatepassword における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5031 2012-01-5 14:19 2011-12-29 Show GitHub Exploit DB Packet Storm
249958 3.5 注意 valthebald - Drupal 用 Meta tags quick モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5030 2012-01-5 14:18 2011-12-14 Show GitHub Exploit DB Packet Storm
249959 4.3 警告 Alexander Palmo - Simple PHP Blog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5029 2012-01-5 11:07 2011-12-29 Show GitHub Exploit DB Packet Storm
249960 4 警告 Novell - Novell Sentinel Log Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-5028 2012-01-5 10:49 2011-12-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197901 9.1 CRITICAL
Network 		ibm elastic_storage_system
spectrum_scale 		A vulnerability in the Spectrum Scale 5.1 core component and IBM Elastic Storage System 6.1 could allow unauthorized access to user data or injection of arbitrary data in the communication protocol. … CWE-862
 Missing Authorization 		CVE-2020-4926 2024-11-21 14:33 2022-05-25 Show GitHub Exploit DB Packet Storm
197902 5.9 MEDIUM
Network 		ibm security_identity_manager IBM Security Identity Governance and Intelligence 5.2.4, 5.2.5, and 5.2.6 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-4970 2024-11-21 14:33 2022-05-20 Show GitHub Exploit DB Packet Storm
197903 7.5 HIGH
Network 		ibm datapower_gateway IBM DataPower Gateway 10.0.1.0 through 10.0.1.4 and 2018.4.1.0 through 2018.4.1.17 could allow a remote user to cause a temporary denial of service by sending invalid HTTP requests. IBM X-Force ID: 1… NVD-CWE-noinfo
CVE-2020-4994 2024-11-21 14:33 2022-05-18 Show GitHub Exploit DB Packet Storm
197904 5.3 MEDIUM
Network 		ibm security_identity_governance_and_intelligence IBM Security Identity Governance and Intelligence 5.2.6 could disclose sensitive information in URL parameters that could aid in future attacks against the system. IBM X-Force ID: 192208. CWE-200
Information Exposure 		CVE-2020-4957 2024-11-21 14:33 2022-05-18 Show GitHub Exploit DB Packet Storm
197905 8.8 HIGH
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5, 6.1.0.0 through 6.1.0.3, and 6.1.1.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicio… CWE-352
 Origin Validation Error 		CVE-2020-4668 2024-11-21 14:33 2022-04-9 Show GitHub Exploit DB Packet Storm
197906 4.3 MEDIUM
Network 		ibm rational_team_concert IBM Engineering Workflow Management 7.0, 7.0.1, and 7.0.2 and IBM Rational Team Concert 6.0.6 and 6.0.0.1 could allow an authenticated user to obtain sensitive information about build definitions. IB… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2020-4989 2024-11-21 14:33 2022-03-16 Show GitHub Exploit DB Packet Storm
197907 5.5 MEDIUM
Local 		ibm spectrum_scale A security vulnerability in the Spectrum Scale 5.0 and 5.1 allows a non-root user to overflow the mmfsd daemon with requests and preventing the daemon to service other requests. IBM X-Force ID: 19159… NVD-CWE-noinfo
CVE-2020-4925 2024-11-21 14:33 2022-03-2 Show GitHub Exploit DB Packet Storm
197908 9.8 CRITICAL
Network 		ibm cognos_controller IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could allow a remote attacker to bypass security restrictions, caused by improper validation of authentication cookies. IBM X-Force ID: 190847. CWE-287
Improper Authentication 		CVE-2020-4879 2024-11-21 14:33 2022-01-22 Show GitHub Exploit DB Packet Storm
197909 9.8 CRITICAL
Network 		ibm cognos_controller IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could be vulnerable to unauthorized modifications by using public fields in public classes. IBM X-Force ID: 190843. CWE-863
 Incorrect Authorization 		CVE-2020-4877 2024-11-21 14:33 2022-01-22 Show GitHub Exploit DB Packet Storm
197910 8.2 HIGH
Network 		ibm cognos_controller IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose … CWE-611
XXE 		CVE-2020-4876 2024-11-21 14:33 2022-01-22 Show GitHub Exploit DB Packet Storm