Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217031	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Open_UI に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4230	2014-07-18 11:02	2014-07-15	Show	GitHub Exploit DB Packet Storm

217032	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-4205	2014-07-18 11:02	2014-07-15	Show	GitHub Exploit DB Packet Storm

217033	4.3	警告	オラクル	-	Oracle Siebel CRM の Siebel UI Framework における Portal Framework に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-2491	2014-07-18 11:01	2014-07-15	Show	GitHub Exploit DB Packet Storm

217034	1.4	注意	オラクル	-	Oracle Siebel CRM の Siebel Core - EAI における Integration Business Services に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-2485	2014-07-18 11:01	2014-07-15	Show	GitHub Exploit DB Packet Storm

217035	4.3	警告	shopizer-ecommerce	-	Shopizer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4965	2014-07-17 17:41	2014-07-10	Show	GitHub Exploit DB Packet Storm

217036	6.8	警告	shopizer-ecommerce	-	Shopizer におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-4964	2014-07-17 17:40	2014-07-10	Show	GitHub Exploit DB Packet Storm

217037	6.8	警告	shopizer-ecommerce	-	Shopizer における任意のユーザのアカウント設定を変更される脆弱性	CWE-noinfo 情報不足	CVE-2014-4963	2014-07-17 17:39	2014-07-10	Show	GitHub Exploit DB Packet Storm

217038	6.4	警告	shopizer-ecommerce	-	Shopizer におけるショッピングカートの総コストを減らされる脆弱性	CWE-189 数値処理の問題	CVE-2014-4962	2014-07-17 17:39	2014-07-10	Show	GitHub Exploit DB Packet Storm

217039	8.5	危険	ヒューレット・パッカード	-	HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-2622	2014-07-17 16:46	2014-07-14	Show	GitHub Exploit DB Packet Storm

217040	7.8	危険	ヒューレット・パッカード	-	HP Intelligent Management Center および Branch Intelligent Management System における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2014-2621	2014-07-17 16:45	2014-07-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296371	-	redhat	jboss_enterprise_application_platform jboss_enterprise_soa_platform jboss_enterprise_web_platform jboss_enterprise_brms_platform	The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1167	2024-11-21 10:36	2012-11-24	Show	GitHub Exploit DB Packet Storm

296372	-	redhat	mod_cluster jboss_enterprise_application_platform	mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1154	2024-11-21 10:36	2012-10-23	Show	GitHub Exploit DB Packet Storm

296373	-	socialcms	socialcms	Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…	CWE-352 Origin Validation Error	CVE-2012-1416	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

296374	-	dlink	dsl-2640b_firmware dsl-2640b	Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote attackers to hijack the authentication of administrators for requests that change the…	CWE-352 Origin Validation Error	CVE-2012-1308	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

296375	-	bernhard_wymann speed-dreams	torcs speed_dreams	Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1189	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

296376	-	kishore_asokan	kish_guest_posting_plugin	Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…	NVD-CWE-Other	CVE-2012-1125	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

296377	-	plume-cms	plume_cms	Cross-site request forgery (CSRF) vulnerability in manager/news.php in Plume CMS 1.2.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that create News…	CWE-352 Origin Validation Error	CVE-2012-1414	2024-11-21 10:36	2012-10-8	Show	GitHub Exploit DB Packet Storm

296378	-	apprain	apprain	Unrestricted file upload vulnerability in addons/uploadify/uploadify.php in appRain CMF 0.1.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable exte…	NVD-CWE-Other	CVE-2012-1153	2024-11-21 10:36	2012-10-7	Show	GitHub Exploit DB Packet Storm

296379	-	impresscms	impresscms	Directory traversal vulnerability in edituser.php in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allows remote authenticated users to include and execute arbitrary local files vi…	CWE-22 Path Traversal	CVE-2012-0987	2024-11-21 10:36	2012-10-7	Show	GitHub Exploit DB Packet Storm

296380	-	impresscms	impresscms	Multiple cross-site scripting (XSS) vulnerabilities in ImpressCMS 1.2.x before 1.2.7 Final and 1.3.x before 1.3.1 Final allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO…	CWE-79 Cross-site Scripting	CVE-2012-0986	2024-11-21 10:36	2012-10-7	Show	GitHub Exploit DB Packet Storm