Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217321 4.3 警告 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0201 2014-03-24 10:53 2013-01-22 Show GitHub Exploit DB Packet Storm
217322 4.3 警告 マカフィー
インテル		 - 複数の McAfee 製品および Intel Expressway Cloud Access 360-SSO におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2536 2014-03-24 10:30 2014-03-19 Show GitHub Exploit DB Packet Storm
217323 4 警告 マカフィー - McAfee Web Gateway におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2535 2014-03-24 10:29 2014-01-28 Show GitHub Exploit DB Packet Storm
217324 7.8 危険 ソフォス - Sophos UTM のカーネルの TCP スタックにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-2537 2014-03-24 10:26 2014-02-20 Show GitHub Exploit DB Packet Storm
217325 4.3 警告 ソフォス - Sophos Web Appliance におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2643 2014-03-24 10:25 2013-04-3 Show GitHub Exploit DB Packet Storm
217326 9.3 危険 ソフォス - Sophos Web Appliance における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-2642 2014-03-24 10:25 2013-04-3 Show GitHub Exploit DB Packet Storm
217327 5 警告 ソフォス - Sophos Web Appliance の patience.cgi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-2641 2014-03-24 10:24 2013-04-3 Show GitHub Exploit DB Packet Storm
217328 4.3 警告 Apache Software Foundation - Apache CouchDB の Futon UI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5650 2014-03-20 19:21 2012-10-24 Show GitHub Exploit DB Packet Storm
217329 5 警告 Mochi Media
Apache Software Foundation		 - Apache CouchDB で使用される MochiWeb の mochiweb_util.erl の partition2 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5641 2014-03-20 19:18 2012-12-14 Show GitHub Exploit DB Packet Storm
217330 5 警告 シスコシステムズ - Cisco Hosted Collaboration Solution の Impact サーバの GUI におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2122 2014-03-20 16:34 2014-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294751 - seotoaster seotoaster Multiple SQL injection vulnerabilities in the selectUserIdByLoginPass function in seotoaster_core/application/models/LoginModel.php in Seotoaster 1.9 and earlier allow remote attackers to execute arb… CWE-89
SQL Injection 		CVE-2011-5230 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294752 - apprain apprain SQL injection vulnerability in quickstart/profile/index.php in the Forum module in appRain CMF 0.1.5 allows remote attackers to execute arbitrary SQL commands via the PATH_INFO. CWE-89
SQL Injection 		CVE-2011-5229 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294753 - apprain apprain Cross-site scripting (XSS) vulnerability in the Search module (quickstart/search) in appRain CMF 0.1.5 allows remote attackers to inject arbitrary web script or HTML via the ss parameter. CWE-79
Cross-site Scripting 		CVE-2011-5228 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294754 - enterasys netsight Stack-based buffer overflow in the Syslog service (nssyslogd.exe) in Enterasys Network Management Suite (NMS) before 4.1.0.80 allows remote attackers to execute arbitrary code via a long PRIO field i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-5227 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294755 - trioniclabs sentinel Cross-site request forgery (CSRF) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to hijack the authentication of an administrator for reque… CWE-352
 Origin Validation Error 		CVE-2011-5226 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294756 - trioniclabs sentinel Cross-site scripting (XSS) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via unknown vectors. CWE-79
Cross-site Scripting 		CVE-2011-5225 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294757 - trioniclabs sentinel SQL injection vulnerability in the Sentinel plugin 1.0.0 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2011-5224 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294758 - cacti cacti Cross-site request forgery (CSRF) vulnerability in logout.php in Cacti before 0.8.7i allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. CWE-79
Cross-site Scripting 		CVE-2011-5223 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294759 - scripte24shop php_flirt-projekt SQL injection vulnerability in rub2_w.php in PHP Flirt-Projekt 4.8 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the rub parameter. CWE-89
SQL Injection 		CVE-2011-5222 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294760 - websvn websvn Cross-site scripting (XSS) vulnerability in the getLog function in svnlook.php in WebSVN before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the path parameter to (1) comp… CWE-79
Cross-site Scripting 		CVE-2011-5221 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm