Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216681 4.3 警告 NextApp, Inc. - File Explorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1973 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
216682 2.6 注意 Nexa Technologies - Meridian におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3892 2014-07-23 10:49 2014-07-18 Show GitHub Exploit DB Packet Storm
216683 4.3 警告 PHP工房 - 多機能メールフォームフリーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3894 2014-07-23 10:48 2014-07-16 Show GitHub Exploit DB Packet Storm
216684 3.5 注意 サイボウズ - サイボウズ ガルーンのメッセージ機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1992 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
216685 3.5 注意 サイボウズ - サイボウズ ガルーンにおいて他のユーザのポートレット設定へアクセス可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1993 2014-07-23 10:47 2014-07-15 Show GitHub Exploit DB Packet Storm
216686 3.5 注意 サイボウズ - サイボウズ ガルーンのお知らせポートレット機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1994 2014-07-23 10:46 2014-07-15 Show GitHub Exploit DB Packet Storm
216687 3.5 注意 サイボウズ - サイボウズ ガルーンの地図検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-1995 2014-07-23 10:46 2014-07-15 Show GitHub Exploit DB Packet Storm
216688 5.5 警告 サイボウズ - サイボウズ ガルーン 3 連携API におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1996 2014-07-23 10:45 2014-07-15 Show GitHub Exploit DB Packet Storm
216689 10 危険 サイボウズ - サイボウズ ガルーンにおいて任意のコマンドが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2014-1987 2014-07-23 10:45 2014-07-15 Show GitHub Exploit DB Packet Storm
216690 2.6 注意 Webmin Project - Webmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-3886 2014-07-23 10:44 2014-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294521 - nmedia member_conversation Unrestricted file upload vulnerability in doupload.php in the Nmedia Member Conversation plugin before 1.4 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3577 2024-11-21 10:41 2012-06-17 Show GitHub Exploit DB Packet Storm
294522 - jquindlen wpstorecart Unrestricted file upload vulnerability in php/upload.php in the wpStoreCart plugin before 2.5.30 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3576 2024-11-21 10:41 2012-06-16 Show GitHub Exploit DB Packet Storm
294523 - rbx_gallery rbx_gallery Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3575 2024-11-21 10:41 2012-06-16 Show GitHub Exploit DB Packet Storm
294524 - tbelmans mm_forms_community Unrestricted file upload vulnerability in includes/doajaxfileupload.php in the MM Forms Community plugin 2.2.5 and 2.2.6 for WordPress allows remote attackers to execute arbitrary code by uploading a… NVD-CWE-Other
CVE-2012-3574 2024-11-21 10:41 2012-06-16 Show GitHub Exploit DB Packet Storm
294525 - opera opera_browser Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via crafted WebGL content, as demonstrated by a codeflow.org WebGL demo. NVD-CWE-Other
CVE-2012-3568 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm
294526 - opera opera_browser Opera before 12.00 Beta allows remote attackers to cause a denial of service (memory consumption or application hang) via an IFRAME element that uses the src="#" syntax to embed a parent document. NVD-CWE-Other
CVE-2012-3567 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm
294527 - opera opera_browser Opera before 12.00 Beta allows user-assisted remote attackers to cause a denial of service (application hang) via JavaScript code that changes a form before submission. NVD-CWE-noinfo
CVE-2012-3566 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm
294528 - opera opera_browser Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via crafted characters in domain names, as demonstrated by "IDNA2008 tests." NVD-CWE-Other
CVE-2012-3565 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm
294529 - opera opera_browser Opera before 12.00 Beta allows remote attackers to cause a denial of service (application hang) via an absolutely positioned wrap=off TEXTAREA element located next to an "overflow: auto" block elemen… NVD-CWE-noinfo
CVE-2012-3564 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm
294530 - opera opera_browser Opera before 12.00 Beta allows remote attackers to cause a denial of service (application crash) via a web page that contains invalid character encodings. NVD-CWE-Other
CVE-2012-3563 2024-11-21 10:41 2012-06-15 Show GitHub Exploit DB Packet Storm