Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216961 5 警告 SAP - Oracle 用 SAP CCMS / Database Monitors におけるデータベースパスワードを取得される脆弱性 CWE-noinfo
情報不足 		CVE-2013-7356 2014-04-15 12:15 2013-08-8 Show GitHub Exploit DB Packet Storm
216962 7.5 危険 SAP - SAP BI Universal Data Integration における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7355 2014-04-15 12:14 2013-11-8 Show GitHub Exploit DB Packet Storm
216963 - - The Prosody Team - ** 削除 ** Prosody におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2014-2750 2014-04-14 18:40 2014-04-2 Show GitHub Exploit DB Packet Storm
216964 5.8 警告 デル - Dell OpenManage Server Administrator におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-0740 2014-04-14 18:36 2013-07-22 Show GitHub Exploit DB Packet Storm
216965 4.3 警告 Roundup - Roundup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6132 2014-04-14 18:31 2012-05-15 Show GitHub Exploit DB Packet Storm
216966 6.8 警告 Lester Chan - WordPress 用 WP-PostViews プラグインのオプションの管理者ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3252 2014-04-14 18:26 2013-05-7 Show GitHub Exploit DB Packet Storm
216967 6.8 警告 Qian Qin - WordPress 用 qTranslate プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-3251 2014-04-14 18:26 2013-06-4 Show GitHub Exploit DB Packet Storm
216968 6.8 警告 Jeremy Massel - WordPress 用 underConstruction プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2699 2014-04-14 18:26 2013-06-3 Show GitHub Exploit DB Packet Storm
216969 6.8 警告 Lester Chan - WordPress 用 WP-Print プラグインのオプションにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2693 2014-04-14 18:25 2013-04-5 Show GitHub Exploit DB Packet Storm
216970 6.8 警告 Dean Adjie Minwarie - WordPress 用 DVS Custom Notification プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4921 2014-04-14 18:24 2012-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295481 - craig_barratt backuppc Cross-site scripting (XSS) vulnerability in RestoreFile.pm in BackupPC 3.1.0, 3.2.1, and possibly other earlier versions allows remote attackers to inject arbitrary web script or HTML via the share p… CWE-79
Cross-site Scripting 		CVE-2011-5081 2024-11-21 10:33 2012-02-18 Show GitHub Exploit DB Packet Storm
295482 - craig_barratt backuppc Cross-site scripting (XSS) vulnerability in View.pm in BackupPC 3.0.0, 3.1.0, 3.2.0, 3.2.1, and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the num parameter i… CWE-79
Cross-site Scripting 		CVE-2011-4923 2024-11-21 10:33 2012-02-18 Show GitHub Exploit DB Packet Storm
295483 - juergen_furrer jftcaforms Cross-site scripting (XSS) vulnerability in lib/class.tx_jftcaforms_tceFunc.php in the Additional TCA Forms (jftcaforms) extension before 0.2.1 for TYPO3 allows remote attackers to inject arbitrary w… CWE-79
Cross-site Scripting 		CVE-2011-5080 2024-11-21 10:33 2012-02-15 Show GitHub Exploit DB Packet Storm
295484 - netcreators irfaq Open redirect vulnerability in the Modern FAQ (irfaq) extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing a… CWE-20
 Improper Input Validation  		CVE-2011-5079 2024-11-21 10:33 2012-02-15 Show GitHub Exploit DB Packet Storm
295485 - sybase m-business_anywhere The web administration interface in the server in Sybase M-Business Anywhere 6.7 before ESD# 3 and 7.0 before ESD# 7 does not require admin authentication for unspecified scripts, which allows remote… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-5078 2024-11-21 10:33 2012-02-9 Show GitHub Exploit DB Packet Storm
295486 - hudong hdwiki Unrestricted file upload vulnerability in attachement.php in HDWiki 5.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a dir… NVD-CWE-Other
CVE-2011-5077 2024-11-21 10:33 2012-02-8 Show GitHub Exploit DB Packet Storm
295487 - hudong hdwiki SQL injection vulnerability in model/comment.class.php in HDWiki 5.0, 5.1, and possibly other versions allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to index.php. NOTE:… CWE-89
SQL Injection 		CVE-2011-5076 2024-11-21 10:33 2012-02-8 Show GitHub Exploit DB Packet Storm
295488 - htc glacier
sensation_z710e
evo_3d
desire_s
desire_hd
sensation_4g
thunderbolt_4g
evo_4g
droid_incredible 		Multiple HTC Android devices including Desire HD FRG83D and GRI40, Glacier FRG83, Droid Incredible FRF91, Thunderbolt 4G FRG83D, Sensation Z710e GRI40, Sensation 4G GRI40, Desire S GRI40, EVO 3D GRI4… CWE-200
Information Exposure 		CVE-2011-4872 2024-11-21 10:33 2012-02-5 Show GitHub Exploit DB Packet Storm
295489 - siemens wincc_flexible
wincc
simatic_hmi_panels
wincc_runtime_advanced
wincc_flexible_runtime 		miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SI… CWE-20
 Improper Input Validation  		CVE-2011-4879 2024-11-21 10:33 2012-02-4 Show GitHub Exploit DB Packet Storm
295490 - siemens wincc_flexible
wincc
simatic_hmi_panels
wincc_runtime_advanced
wincc_flexible_runtime 		Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP,… CWE-22
Path Traversal 		CVE-2011-4878 2024-11-21 10:33 2012-02-4 Show GitHub Exploit DB Packet Storm