Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216151 7.5 危険 timrohrer - WordPress 用 WordPress Spreadsheet プラグインの ss_handler.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-8363 2014-10-27 18:08 2014-08-5 Show GitHub Exploit DB Packet Storm
216152 3.5 注意 Pro Chat Rooms - Pro Chat Rooms Text Chat Rooms におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5276 2014-10-27 17:45 2014-08-5 Show GitHub Exploit DB Packet Storm
216153 6.5 警告 Pro Chat Rooms - Pro Chat Rooms Text Chat Rooms の includes/functions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-5275 2014-10-27 17:45 2014-08-5 Show GitHub Exploit DB Packet Storm
216154 6.5 警告 TomatoCart - TomatoCart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2014-3978 2014-10-27 17:35 2014-08-5 Show GitHub Exploit DB Packet Storm
216155 4.3 警告 TomatoCart - TomatoCart の info.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3830 2014-10-27 17:34 2014-08-5 Show GitHub Exploit DB Packet Storm
216156 3.5 注意 Date project - Drupal 用 Date モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5169 2014-10-27 17:28 2014-07-29 Show GitHub Exploit DB Packet Storm
216157 3.5 注意 The Cacti Group - Cacti におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5026 2014-10-27 17:21 2014-07-4 Show GitHub Exploit DB Packet Storm
216158 3.5 注意 The Cacti Group - Cacti の data_sources.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-5025 2014-10-27 17:20 2014-07-4 Show GitHub Exploit DB Packet Storm
216159 4.6 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5697 2014-10-27 16:50 2012-11-15 Show GitHub Exploit DB Packet Storm
216160 5 警告 Bulb Security LLC - Bulb Security Smartphone Pentest Framework における平文のデータベースパスワードを取得される脆弱性 CWE-255
CWE-264
CVE-2012-5696 2014-10-27 16:49 2012-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293311 - ibm websphere_message_broker IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2 does not validate Basic Authentication credentials before proceeding to WS-Addressing and WS-Security oper… CWE-287
Improper Authentication 		CVE-2012-5952 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293312 - ibm netezza Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject content, and conduct phishing attacks, … CWE-79
Cross-site Scripting 		CVE-2012-5941 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293313 - ibm netezza The WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza, when SSL is not enabled, allows remote attackers to discover credentials by sniffing the network during the authentication pro… CWE-287
Improper Authentication 		CVE-2012-5940 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293314 - ibm netezza Cross-site request forgery (CSRF) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote attackers to hijack the authentication of unspecified victims … CWE-352
 Origin Validation Error 		CVE-2012-5763 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293315 - ibm netezza Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vector… CWE-79
Cross-site Scripting 		CVE-2012-5762 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293316 - ibm netezza Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via unspec… CWE-79
Cross-site Scripting 		CVE-2012-5761 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293317 - ibm netezza SQL injection vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2012-5760 2024-11-21 10:45 2013-02-20 Show GitHub Exploit DB Packet Storm
293318 - xen xen Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, does not properly configure VT-d when supporting a device that is behind a legacy PCI Bridge, which allows local guests to cause … CWE-16
Configuration 		CVE-2012-5634 2024-11-21 10:45 2013-02-15 Show GitHub Exploit DB Packet Storm
293319 - qemu
fedoraproject
suse
opensuse
redhat
debian
canonical 		qemu
fedora
linux_enterprise_server
opensuse
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux_desktop
enterprise_linux_eus
 Buffer overflow in the e1000_receive function in the e1000 device driver (hw/e1000.c) in QEMU 1.3.0-rc2 and other versions, when the SBP and LPE flags are disabled, allows remote attackers to cause a… CWE-120
Classic Buffer Overflow 		CVE-2012-6075 2024-11-21 10:45 2013-02-13 Show GitHub Exploit DB Packet Storm
293320 - portable_sdk_for_upnp_project portable_sdk_for_upnp Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5965 2024-11-21 10:45 2013-02-1 Show GitHub Exploit DB Packet Storm