Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254441	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254442	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252011	6.1	MEDIUM Network	sap	business_intelligence_promotion_management_application	Cross-Site Scripting (XSS) vulnerability in SAP Business Intelligence Promotion Management Application, Enterprise 4.10, 4.20, 4.30, as user controlled inputs are not sufficiently encoded.	CWE-79 Cross-site Scripting	CVE-2017-16681	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252012	6.1	MEDIUM Network	sap	sap_kernel	URL redirection vulnerability in SAP's Startup Service, SAP KERNEL 32 NUC, SAP KERNEL 32 Unicode, SAP KERNEL 64 NUC, SAP KERNEL 64 Unicode 7.21, 7.21EXT, 7.22 and 7.22EXT; SAP KERNEL 7.21, 7.22, 7.45…	CWE-601 Open Redirect	CVE-2017-16679	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252013	4.7	MEDIUM Network	sap	netweaver_knowledge_management_configuration_service epbc2 epbc kmc-bc	Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver Knowledge Management Configuration Service, EPBC and EPBC2 from 7.00 to 7.02; KMC-BC 7.30, 7.31, 7.40 and 7.50, that allows an attack…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-16678	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252014	6.5	MEDIUM Network	sap	business_application_software_integrated_solution	SAP Note Assistant tool (SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31,7.40, from 7.50 to 7.52) supports upload of digitally signed note file of type 'SAR'. The digital signature verific…	CWE-20 Improper Input Validation	CVE-2017-16691	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252015	7.8	HIGH Local	sap	plant_connectivity	A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program for SAP Plant Connectivity 2.3 and 15.0. It is possible that SAPSetup / NwSapSetup.exe loads system DLLs…	CWE-426 Untrusted Search Path	CVE-2017-16690	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252016	7.5	HIGH Network	sap	hana_extended_application_services	Two potential audit log injections in SAP HANA extended application services 1.0, advanced model: 1) Certain HTTP/REST endpoints of controller service are missing user input validation which could al…	CWE-74 Injection	CVE-2017-16680	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252017	6.1	MEDIUM Network	phoenixcontact	fl_comserver_basic_232_firmware fl_comserver_uni_422_firmware fl_comserver_bas_485-t_firmware fl_com_server_rs232_firmware fl_com_server_rs485_firmware psi-modem\/eth_firmware fl_co…	A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL COMSERVER BASIC 232/422/485, FL COMSERVER UNI 232/422/485, FL COMSERVER BAS 232/422/485-T, FL COMSERVER UNI 232/422/485-T, FL COM SER…	CWE-79 Cross-site Scripting	CVE-2017-16723	2024-11-21 12:16	2017-12-12	Show	GitHub Exploit DB Packet Storm

252018	4.8	MEDIUM Network	integrationmatters tibco	njams businessworks_process_monitor	Cross-site scripting (XSS) vulnerability in Integration Matters nJAMS 3 before 3.2.0 Hotfix 7, as used in TIBCO BusinessWorks Process Monitor through 3.0.1.3 and other products, allows remote authent…	CWE-79 Cross-site Scripting	CVE-2017-16789	2024-11-21 12:16	2017-12-11	Show	GitHub Exploit DB Packet Storm

252019	7.5	HIGH Network	amag	en-1dbc_firmware std_firmware en-2dbc_firmware	Incorrect access control in AMAG Symmetry Door Edge Network Controllers (EN-1DBC Boot App 23611 03.60 and STD App 23603 03.60; EN-2DBC Boot App 24451 01.00 and STD App 2461 01.00) enables remote atta…	CWE-306 Missing Authentication for Critical Function	CVE-2017-16241	2024-11-21 12:16	2017-12-10	Show	GitHub Exploit DB Packet Storm

252020	8.8	HIGH Network	adobe	acrobat_reader_dc acrobat_dc acrobat acrobat_reader	An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. T…	CWE-125 Out-of-bounds Read	CVE-2017-16420	2024-11-21 12:16	2017-12-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed