Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252201 4.3 警告 マイクロソフト - Microsoft Anti-Cross Site Scripting Library におけるクロスサイトスクリプティング攻撃の脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0007 2012-01-13 15:51 2012-01-10 Show GitHub Exploit DB Packet Storm
252202 4.3 警告 Cogent Real-Time Systems Inc. - Cogent DataHub における HTTP ヘッダインジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0310 2012-01-13 15:48 2012-01-11 Show GitHub Exploit DB Packet Storm
252203 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の Windows Packager 設定における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-0013 2012-01-13 15:45 2012-01-10 Show GitHub Exploit DB Packet Storm
252204 10 危険 Final Draft - Final Draft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5059 2012-01-12 15:54 2012-01-10 Show GitHub Exploit DB Packet Storm
252205 6.4 警告 3S-Smart Software Solutions - 3S CoDeSys における任意のディレクトリを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5058 2012-01-12 15:53 2012-01-10 Show GitHub Exploit DB Packet Storm
252206 7.8 危険 ヒューレット・パッカード - 複数の HP 製品の HP-ChaiSOE Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2011-4785 2012-01-11 16:11 2012-01-9 Show GitHub Exploit DB Packet Storm
252207 5 警告 Apache Software Foundation - Apache Struts におけるランタイムデータの値を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5057 2012-01-11 15:17 2012-01-8 Show GitHub Exploit DB Packet Storm
252208 9.3 危険 Apache Software Foundation - Apache Struts における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0392 2012-01-11 15:11 2012-01-8 Show GitHub Exploit DB Packet Storm
252209 9.3 危険 Apache Software Foundation - Apache Struts における任意の Java コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0391 2012-01-11 14:57 2012-01-8 Show GitHub Exploit DB Packet Storm
252210 5 警告 Wibu-Systems AG - CodeMeter Runtime におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-4057 2012-01-11 14:02 2012-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
202301 5.4 MEDIUM
Network 		ibm security_key_lifecycle_manager IBM Security Key Lifecycle Manager 3.0.1 and 4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun… CWE-79
Cross-site Scripting 		CVE-2020-4845 2024-11-21 14:33 2020-12-18 Show GitHub Exploit DB Packet Storm
202302 5.3 MEDIUM
Network 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 returns the product version and release information on the login dialog. This information could be used in further attack… CWE-200
Information Exposure 		CVE-2020-4908 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202303 5.3 MEDIUM
Network 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the … CWE-209
Information Exposure Through an Error Message 		CVE-2020-4907 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202304 3.3 LOW
Local 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 allows web pages to be stored locally which can be read by another user on the system. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2020-4906 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202305 5.9 MEDIUM
Network 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an remote attacker to obtain sensitive information, caused by a man in the middle attack. By SSL striping, an… NVD-CWE-noinfo
CVE-2020-4905 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202306 6.5 MEDIUM
Network 		ibm financial_transaction_manager_for_multiplatform IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions t… CWE-352
 Origin Validation Error 		CVE-2020-4904 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202307 6.1 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.0.3.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… CWE-79
Cross-site Scripting 		CVE-2020-4658 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202308 6.1 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling B2B Integrator 5.2.0.0 through 6.0.3.2 Standard Edition is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus alter… CWE-79
Cross-site Scripting 		CVE-2020-4657 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202309 7.5 HIGH
Network 		dell
oracle 		bsafe_micro-edition-suite
http_server
security_service
database
weblogic_server_proxy_plug-in 		Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to a Buffer Under-Read Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability resulting i… CWE-125
Out-of-bounds Read 		CVE-2020-5360 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm
202310 5.8 MEDIUM
Network 		dell
oracle 		bsafe_micro-edition-suite
database
weblogic_server_proxy_plug-in 		Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to mo… CWE-252
 Unchecked Return Value 		CVE-2020-5359 2024-11-21 14:33 2020-12-17 Show GitHub Exploit DB Packet Storm