Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216571	2.1	注意	アップル	-	Apple iOS の Address Book における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2014-4352	2014-09-19 18:20	2014-09-17	Show	GitHub Exploit DB Packet Storm

216572	8.3	危険	（複数のベンダ）	-	複数の Android アプリに SSL 証明書を適切に検証しない脆弱性	-	-	2014-09-19 18:04	2014-09-3	Show	GitHub Exploit DB Packet Storm

216573	6.5	警告	Spiceworks Inc.	-	SpiceWorks における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2956	2014-09-19 17:46	2012-07-23	Show	GitHub Exploit DB Packet Storm

216574	4.3	警告	Spiceworks Inc.	-	SpiceWorks におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6658	2014-09-19 17:45	2012-07-23	Show	GitHub Exploit DB Packet Storm

216575	6.8	警告	nongnu	-	GKSu における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2886	2014-09-19 16:49	2014-09-18	Show	GitHub Exploit DB Packet Storm

216576	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite のfrontend におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5235	2014-09-19 16:40	2014-08-25	Show	GitHub Exploit DB Packet Storm

216577	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite の backend におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5234	2014-09-19 16:36	2014-08-25	Show	GitHub Exploit DB Packet Storm

216578	4.3	警告	Marcel Bokhorst	-	WordPress 用 Mini Mail Dashboard Widget プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2583	2014-09-19 16:35	2012-08-8	Show	GitHub Exploit DB Packet Storm

216579	4.3	警告	OrangeHRM	-	OrangeHRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1507	2014-09-19 16:33	2012-04-24	Show	GitHub Exploit DB Packet Storm

216580	6.5	警告	OrangeHRM	-	OrangeHRM の lib/models/benefits/Hsp.php の updateStatus 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1506	2014-09-19 16:32	2012-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292231	-	varnish_http_accelerator_integration_project	varnish	Multiple cross-site scripting (XSS) vulnerabilities in the Varnish module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.0-beta2 for Drupal allow remote attackers to inject arbitrary web script or H…	CWE-79 Cross-site Scripting	CVE-2013-0325	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292232	-	tomasbarej	menu_reference	Cross-site scripting (XSS) vulnerability in the Rendered links formatter in the Menu Reference module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the "Administer menus an…	CWE-79 Cross-site Scripting	CVE-2013-0324	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292233	-	display_suite_project	ds	Cross-site scripting (XSS) vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via th…	CWE-79 Cross-site Scripting	CVE-2013-0323	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292234	-	ubercart	ubercart	Cross-site scripting (XSS) vulnerability in Views in the Ubercart module 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full name field.	CWE-79 Cross-site Scripting	CVE-2013-0322	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292235	-	ubercart_views_project	uc_views	Cross-site scripting (XSS) vulnerability in Views in the Ubercart Views (uc_views) module 6.x before 6.x-3.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full nam…	CWE-79 Cross-site Scripting	CVE-2013-0321	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292236	-	mattias_hutterer	taxonomy_manager	Cross-site request forgery (CSRF) vulnerability in the Taxonomy Manager (taxonomy_manager) module 6.x-2.x before 6.x-2.2 and 7.x-1.x before 7.x-1.0-rc1 for Drupal allows remote attackers to hijack th…	CWE-352 Origin Validation Error	CVE-2013-0320	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292237	-	yandex.metrics_project	yandex_metrics	Cross-site scripting (XSS) vulnerability in the Yandex.Metrics module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via v…	CWE-79 Cross-site Scripting	CVE-2013-0319	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292238	-	banckle_chat_project	banckle_chat	The admin page in the Banckle Chat module for Drupal does not properly restrict access, which allows remote attackers to bypass intended restrictions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0318	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292239	-	joe_haskins	og_manager_change	Cross-site scripting (XSS) vulnerability in the Manager Change for Organic Groups (og_manager_change) module 7.x-2.x before 7.x-2.1 for Drupal might allow remote attackers to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2013-0317	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292240	-	drupal	drupal	The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU and disk space consumption) via a large number of new derivative requests.	CWE-399 Resource Management Errors	CVE-2013-0316	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm