Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217291 2.1 注意 GPLHost - Domain Technologie Control のセットアップスクリプトにおける dtcdaemon MySQL パスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3196 2014-03-25 09:51 2011-08-12 Show GitHub Exploit DB Packet Storm
217292 6.5 警告 GPLHost - Domain Technologie Control の shared/inc/sql/lists.php における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3195 2014-03-25 09:51 2011-08-12 Show GitHub Exploit DB Packet Storm
217293 5 警告 Petri Lehtinen - Jansson におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-6401 2014-03-24 20:17 2013-11-27 Show GitHub Exploit DB Packet Storm
217294 4.3 警告 Uwe Steinmann - SeedDMS の検索機能 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2280 2014-03-24 20:13 2014-02-21 Show GitHub Exploit DB Packet Storm
217295 4.3 警告 Preben Bjorn Biermann Madsen - CMSimple Classic の whizzywig/wb.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2219 2014-03-24 20:03 2014-03-19 Show GitHub Exploit DB Packet Storm
217296 4.3 警告 Open-Xchange - Open-Xchange AppSuite のフロントエンドにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-2077 2014-03-24 19:57 2014-03-17 Show GitHub Exploit DB Packet Storm
217297 9.3 危険 SolarWinds - DameWare Remote Support の DameWare Exporter ツールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3249 2014-03-24 19:41 2013-07-25 Show GitHub Exploit DB Packet Storm
217298 4.3 警告 Combodo - iTop の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0805 2014-03-24 19:36 2013-01-23 Show GitHub Exploit DB Packet Storm
217299 2.6 注意 株式会社NTTドコモ - spモードメールにおける受信メールの添付ファイルへのアクセスに関する問題 CWE-264
認可・権限・アクセス制御 		CVE-2014-1977 2014-03-24 19:04 2014-03-18 Show GitHub Exploit DB Packet Storm
217300 4.3 警告 ES APP Group - ES File Explorer におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-1970 2014-03-24 18:49 2014-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292511 6.1 MEDIUM
Network 		codeigniter codeigniter EllisLab CodeIgniter 2.1.2 allows remote attackers to bypass the xss_clean() Filter and perform XSS attacks. CWE-79
Cross-site Scripting 		CVE-2012-1915 2024-11-21 10:38 2020-01-10 Show GitHub Exploit DB Packet Storm
292512 7.8 HIGH
Local 		redhat jboss_enterprise_application_platform
jboss_application_server 		An Elevated Privileges issue exists in JBoss AS 7 Community Release due to the improper implementation in the security context propagation, A threat gets reused from the thread pool that still retain… CWE-269
 Improper Privilege Management 		CVE-2012-2312 2024-11-21 10:38 2019-12-19 Show GitHub Exploit DB Packet Storm
292513 6.1 MEDIUM
Network 		mahara
debian 		mahara
debian_linux 		Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.3 and 1.5.x before 1.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javasc… CWE-79
Cross-site Scripting 		CVE-2012-2237 2024-11-21 10:38 2019-12-18 Show GitHub Exploit DB Packet Storm
292514 3.3 LOW
Local 		redhat jboss_community_application_server
jboss_enterprise_web_server 		An issue exists in the property replacements feature in any descriptor in JBoxx AS 7.1.1 ignores java security policies CWE-269
 Improper Privilege Management 		CVE-2012-2148 2024-11-21 10:38 2019-12-7 Show GitHub Exploit DB Packet Storm
292515 7.4 HIGH
Network 		polarssl
debian
fedoraproject 		polarssl
debian_linux
fedora 		A Security Bypass vulnerability exists in PolarSSL 0.99pre4 through 1.1.1 due to a weak encryption error when generating Diffie-Hellman values and RSA keys. CWE-326
Inadequate Encryption Strength 		CVE-2012-2130 2024-11-21 10:38 2019-12-7 Show GitHub Exploit DB Packet Storm
292516 5.9 MEDIUM
Network 		canonical ubuntu_cobbler A Security Bypass vulnerability exists in Ubuntu Cobbler before 2,2,2 in the cobbler-ubuntu-import script due to an error when verifying the GPG signature. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2012-2092 2024-11-21 10:38 2019-12-7 Show GitHub Exploit DB Packet Storm
292517 8.1 HIGH
Network 		dhclient_project
debian 		dhclient
debian_linux 		An issue was discovered in dhclient 4.3.1-6 due to an embedded path variable. CWE-20
 Improper Input Validation  		CVE-2012-2248 2024-11-21 10:38 2019-11-28 Show GitHub Exploit DB Packet Storm
292518 8.8 HIGH
Network 		drupal activity A cross-site request forgery (CSRF) vulnerability in the Activity module 6.x-1.x for Drupal. CWE-352
 Origin Validation Error 		CVE-2012-2079 2024-11-21 10:38 2019-11-22 Show GitHub Exploit DB Packet Storm
292519 4.8 MEDIUM
Network 		drupal activity Cross-site scripting (XSS) vulnerability in the Activity module 6.x-1.x for Drupal. CWE-79
Cross-site Scripting 		CVE-2012-2078 2024-11-21 10:38 2019-11-22 Show GitHub Exploit DB Packet Storm
292520 7.5 HIGH
Network 		pam_shield_project
debian 		pam_shield
debian_linux 		pam_shield before 0.9.4: Default configuration does not perform protective action CWE-20
 Improper Input Validation  		CVE-2012-2350 2024-11-21 10:38 2019-11-21 Show GitHub Exploit DB Packet Storm