Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252761	10	危険	Parallels	-	Parallels Plesk Panel の billing system における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4749	2011-12-20 11:26	2011-12-16	Show	GitHub Exploit DB Packet Storm

252762	5	警告	Parallels	-	Parallels Plesk Panel の billing system における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4748	2011-12-20 11:25	2011-12-16	Show	GitHub Exploit DB Packet Storm

252763	5	警告	Parallels	-	Parallels Plesk Panel の billing system における暗号保護メカニズムを無効化される脆弱性	CWE-310 暗号の問題	CVE-2011-4747	2011-12-20 11:24	2011-12-16	Show	GitHub Exploit DB Packet Storm

252764	5	警告	Parallels	-	Parallels Plesk Panel の billing system におけるスプーフィング攻撃の脆弱性	CWE-310 暗号の問題	CVE-2011-4746	2011-12-20 11:23	2011-12-16	Show	GitHub Exploit DB Packet Storm

252765	4.3	警告	Parallels	-	Parallels Plesk Panel の billing system におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4745	2011-12-20 11:17	2011-12-16	Show	GitHub Exploit DB Packet Storm

252766	10	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4744	2011-12-20 11:16	2011-12-16	Show	GitHub Exploit DB Packet Storm

252767	10	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4743	2011-12-20 11:16	2011-12-16	Show	GitHub Exploit DB Packet Storm

252768	5	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4742	2011-12-20 11:15	2011-12-16	Show	GitHub Exploit DB Packet Storm

252769	5	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4741	2011-12-20 11:09	2011-12-16	Show	GitHub Exploit DB Packet Storm

252770	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4740	2011-12-20 10:57	2011-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202391	5.4	MEDIUM Network	sap	businessobjects_business_intelligence_platform	Web Intelligence HTML interface in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS)…	CWE-79 Cross-site Scripting	CVE-2020-6221	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

202392	8.8	HIGH Network	sap	businessobjects_business_intelligence_platform crystal_reports_for_visual_studio	SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer), versions 4.1, 4.2, and Crystal Reports for VS version 2010, allows an attacker with basic authorization to perform…	CWE-502 Deserialization of Untrusted Data	CVE-2020-6219	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

202393	5.0	MEDIUM Network	sap	businessobjects_business_intelligence_platform	Admin tools and Query Builder in SAP Business Objects Business Intelligence Platform, versions 4.1, 4.2, allows an attacker to access information that should otherwise be restricted, leading to Infor…	NVD-CWE-noinfo	CVE-2020-6218	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

202394	6.1	MEDIUM Network	sap	businessobjects_business_intelligence_platform	SAP Business Objects Business Intelligence Platform (BI Launchpad), version 4.2, does not sufficiently encode user-controlled inputs, resulting in reflected Cross-Site Scripting (XSS) vulnerability.	CWE-79 Cross-site Scripting	CVE-2020-6216	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

202395	4.7	MEDIUM Network	sap	s\/4hana	SAP S/4HANA (Financial Products Subledger), version 100, uses an incorrect authorization object in some reports. Although the affected reports are protected with other authorization objects, exploita…	CWE-863 Incorrect Authorization	CVE-2020-6214	2024-11-21 14:35	2020-04-15	Show	GitHub Exploit DB Packet Storm

202396	6.5	MEDIUM Network	google debian fedoraproject opensuse	chrome debian_linux fedora leap backports	Insufficient validation of untrusted input in clipboard in Google Chrome prior to 81.0.4044.92 allowed a local attacker to bypass site isolation via crafted clipboard contents.	CWE-276 Incorrect Default Permissions	CVE-2020-6456	2024-11-21 14:35	2020-04-14	Show	GitHub Exploit DB Packet Storm

202397	8.8	HIGH Network	google debian fedoraproject opensuse	chrome debian_linux fedora leap backports	Out of bounds read in WebSQL in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-125 Out-of-bounds Read	CVE-2020-6455	2024-11-21 14:35	2020-04-14	Show	GitHub Exploit DB Packet Storm

202398	8.8	HIGH Network	google fedoraproject debian opensuse	chrome fedora debian_linux leap backports_sle	Use after free in extensions in Google Chrome prior to 81.0.4044.92 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chro…	CWE-416 Use After Free	CVE-2020-6454	2024-11-21 14:35	2020-04-14	Show	GitHub Exploit DB Packet Storm

202399	8.8	HIGH Network	google fedoraproject opensuse	chrome fedora leap backports	Heap buffer overflow in media in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-787 Out-of-bounds Write	CVE-2020-6452	2024-11-21 14:35	2020-04-14	Show	GitHub Exploit DB Packet Storm

202400	8.8	HIGH Network	google fedoraproject opensuse	chrome fedora leap backports_sle	Use after free in WebAudio in Google Chrome prior to 80.0.3987.162 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-416 Use After Free	CVE-2020-6451	2024-11-21 14:35	2020-04-14	Show	GitHub Exploit DB Packet Storm