Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216231	7.5	危険	Etiko	-	Etiko CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8506	2014-10-30 17:01	2014-10-13	Show	GitHub Exploit DB Packet Storm

216232	4.3	警告	Etiko	-	Etiko CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8505	2014-10-30 17:01	2014-10-13	Show	GitHub Exploit DB Packet Storm

216233	4.3	警告	wp-football project	-	WordPress 用 wp-football プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4586	2014-10-30 16:53	2014-06-12	Show	GitHub Exploit DB Packet Storm

216234	6.4	警告	Pidgin	-	Pidgin の win32/untar.c 内の untar_block 関数の nmevent.c における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-3697	2014-10-30 16:39	2014-03-4	Show	GitHub Exploit DB Packet Storm

216235	7.5	危険	libproxy	-	libproxy の bin/proxy.c 内の print_proxies 関数におけるフォーマットストリングの脆弱性	CWE-94 コード・インジェクション	CVE-2012-5580	2014-10-30 16:34	2012-11-24	Show	GitHub Exploit DB Packet Storm

216236	4.6	警告	Robert Ancell	-	lightdm における lightdm ログに書き込まれる脆弱性	CWE-200 情報漏えい	CVE-2012-1111	2014-10-30 16:25	2012-03-5	Show	GitHub Exploit DB Packet Storm

216237	6.8	警告	GNU Project	-	Glibc および eglibc における整数符号エラーの脆弱性	CWE-94 コード・インジェクション	CVE-2011-2702	2014-10-30 16:16	2011-07-18	Show	GitHub Exploit DB Packet Storm

216238	5	警告	IBM	-	IBM Tivoli Application Dependency Discovery Manager の BIRT ビューアーにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-6149	2014-10-30 16:07	2014-10-27	Show	GitHub Exploit DB Packet Storm

216239	4.3	警告	IBM	-	IBM Tivoli Composite Application Manager for Transactions の Internet Service Monitor エージェントにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-3051	2014-10-30 16:07	2014-10-24	Show	GitHub Exploit DB Packet Storm

216240	4.3	警告	IBM	-	IBM WebSphere Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-6126	2014-10-30 16:06	2014-10-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295951	-	ibm	sametime	Cross-site scripting (XSS) vulnerability in IBM Sametime 8.0.2 through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via an IM chat.	CWE-79 Cross-site Scripting	CVE-2012-3308	2024-11-21 10:40	2012-08-17	Show	GitHub Exploit DB Packet Storm

295952	-	ibm	websphere_mq websphere_mq_managed_file_transfer	Multiple cross-site request forgery (CSRF) vulnerabilities in the Web Gateway component in IBM WebSphere MQ File Transfer Edition 7.0.4 and earlier, and WebSphere MQ - Managed File Transfer 7.5, allo…	CWE-352 Origin Validation Error	CVE-2012-3294	2024-11-21 10:40	2012-08-17	Show	GitHub Exploit DB Packet Storm

295953	-	standards_based_linux_instrumentation	sblim-sfcb	sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.	NVD-CWE-Other	CVE-2012-3381	2024-11-21 10:40	2012-08-17	Show	GitHub Exploit DB Packet Storm

295954	-	hp	service_manager_web_tier service_center_web_tier	Cross-site scripting (XSS) vulnerability in HP Service Manager Web Tier 7.11, 9.21, and 9.30, and HP Service Center Web Tier 6.28, allows remote attackers to inject arbitrary web script or HTML via u…	CWE-79 Cross-site Scripting	CVE-2012-3251	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295955	-	hp	service_manager_server service_center_server	Unspecified vulnerability in HP Service Manager Server 7.11, 9.21, and 9.30, and HP Service Center Server 6.28, allows remote attackers to cause a denial of service via unknown vectors.	NVD-CWE-noinfo	CVE-2012-3250	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295956	-	hp	fortify_software_security_center	HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote authenticated users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2012-3249	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295957	-	hp	fortify_software_security_center	HP Fortify Software Security Center 3.1, 3.3, 3.4, and 3.5 allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2012-3248	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295958	-	hp	integrity_firmware integrity itegrity	Unspecified vulnerability on the HP Integrity Server BL860c i2, BL870c i2, and BL890c i2 with firmware before 26.31 and the HP Integrity Server rx2800 i2 with firmware before 26.30 allows local users…	NVD-CWE-noinfo	CVE-2012-3247	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295959	-	tridium	niagara_ax	The default configuration of Tridium Niagara AX Framework through 3.6 uses a cleartext base64 format for transmission of credentials in cookies, which allows remote attackers to obtain sensitive info…	CWE-522 Insufficiently Protected Credentials	CVE-2012-3025	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm

295960	-	tridium	niagara_ax	Tridium Niagara AX Framework through 3.6 uses predictable values for (1) session IDs and (2) keys, which might allow remote attackers to bypass authentication via a brute-force attack.	CWE-287 Improper Authentication	CVE-2012-3024	2024-11-21 10:40	2012-08-16	Show	GitHub Exploit DB Packet Storm