Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252661	7.5	危険	Wuzly	-	Wuzly の管理機能における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3839	2011-12-28 11:31	2011-12-24	Show	GitHub Exploit DB Packet Storm

252662	7.5	危険	Wuzly	-	Wuzly における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-3838	2011-12-28 11:31	2011-12-24	Show	GitHub Exploit DB Packet Storm

252663	6.8	警告	Wuzly	-	Wuzly の blog_system/data_functions.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3837	2011-12-28 11:30	2011-12-24	Show	GitHub Exploit DB Packet Storm

252664	4.3	警告	Wuzly	-	Wuzly におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-3836	2011-12-28 11:30	2011-12-24	Show	GitHub Exploit DB Packet Storm

252665	4.3	警告	Wuzly	-	Wuzly におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3835	2011-12-28 11:29	2011-12-24	Show	GitHub Exploit DB Packet Storm

252666	7.5	危険	Carnegie Mellon University (Project Cyrus) レッドハット	-	Cyrus IMAPd の NNTP サーバ (nntpd) 内の imap/nntpd.c における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-3372	2011-12-28 11:12	2011-12-24	Show	GitHub Exploit DB Packet Storm

252667	6	警告	OpenStack	-	OpenStack Compute (Nova) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4596	2011-12-28 11:08	2011-12-23	Show	GitHub Exploit DB Packet Storm

252668	9.3	危険	IBM Blueberry Software	-	Blueberry BB FlashBack の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-1388	2011-12-27 16:46	2011-12-23	Show	GitHub Exploit DB Packet Storm

252669	9.3	危険	IBM Blueberry Software	-	Blueberry BB FlashBack の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-1391	2011-12-27 16:45	2011-12-23	Show	GitHub Exploit DB Packet Storm

252670	9.3	危険	IBM Blueberry Software	-	Blueberry BB FlashBack の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-1392	2011-12-27 16:44	2011-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208561	9.1	CRITICAL Network	sap	bw\/4hana business_warehouse	SAP Business Warehouse, versions - 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 782, and SAP BW4HANA, versions - 100, 200 allows an attacker authenticated with (high) developer privileges t…	CWE-78 OS Command	CVE-2020-26838	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208562	6.1	MEDIUM Network	sap	netweaver_application_server_abap	SAP NetWeaver AS ABAP, versions - 740, 750, 751, 752, 753, 754 , does not sufficiently encode URL which allows an attacker to input malicious java script in the URL which could be executed in the bro…	CWE-79 Cross-site Scripting	CVE-2020-26835	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208563	5.4	MEDIUM Network	sap	hana_database	SAP HANA Database, version - 2.0, does not correctly validate the username when performing SAML bearer token-based user authentication. It is possible to manipulate a valid existing SAML bearer token…	CWE-287 Improper Authentication	CVE-2020-26834	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208564	9.6	CRITICAL Network	sap	businessobjects_business_intelligence_platform	SAP BusinessObjects BI Platform (Crystal Report), versions - 4.1, 4.2, 4.3, does not sufficiently validate uploaded XML entities during crystal report generation due to missing XML validation, An att…	NVD-CWE-Other	CVE-2020-26831	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208565	6.4	MEDIUM Network	sap	disclosure_management	SAP Disclosure Management, version - 10.1, provides capabilities for authorized users to upload and download content of specific file type. In some file types it is possible to enter formulas which c…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-26828	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208566	6.5	MEDIUM Network	sap	netweaver_application_server_java	Process Integration Monitoring of SAP NetWeaver AS JAVA, versions - 7.31, 7.40, 7.50, allows an attacker to upload any file (including script files) without proper file format validation, leading to …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2020-26826	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208567	7.6	HIGH Network	sap	s\/4_hana netweaver_application_server_abap	SAP AS ABAP (SAP Landscape Transformation), versions - 2011_1_620, 2011_1_640, 2011_1_700, 2011_1_710, 2011_1_730, 2011_1_731, 2011_1_752, 2020 and SAP S4 HANA (SAP Landscape Transformation), version…	CWE-862 Missing Authorization	CVE-2020-26832	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208568	8.1	HIGH Network	sap	solution_manager	SAP Solution Manager 7.2 (User Experience Monitoring), version - 7.2, does not perform necessary authorization checks for an authenticated user. Due to inadequate access control, a network attacker a…	CWE-862 Missing Authorization	CVE-2020-26830	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208569	10.0	CRITICAL Network	sap	netweaver_application_server_java	SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside…	CWE-306 Missing Authentication for Critical Function	CVE-2020-26829	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm

208570	4.5	MEDIUM Adjacent	sap	netweaver_application_server_java	SAP AS JAVA (Key Storage Service), versions - 7.10, 7.11, 7.20 ,7.30, 7.31, 7.40, 7.50, has the key material which is stored in the SAP NetWeaver AS Java Key Storage service stored in the database in…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2020-26816	2024-11-21 14:20	2020-12-10	Show	GitHub Exploit DB Packet Storm