Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217441	6.8	警告	ZTE	-	ZTE ZXV10 W300 ルータのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-4155	2014-06-23 16:06	2014-05-15	Show	GitHub Exploit DB Packet Storm

217442	4.3	警告	Apache Software Foundation	-	Apache Open For Business Project におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1621	2014-06-23 15:28	2012-04-15	Show	GitHub Exploit DB Packet Storm

217443	5	警告	Apache Software Foundation	-	Apache MyFaces Core の MyFaces JavaServer Faces におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4367	2014-06-23 15:26	2011-11-4	Show	GitHub Exploit DB Packet Storm

217444	7.8	危険	Belkin International	-	Belkin N150 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-2962	2014-06-23 13:52	2014-06-18	Show	GitHub Exploit DB Packet Storm

217445	5.5	警告	F5 Networks	-	F5 ARX Data Manager に SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2949	2014-06-23 13:52	2014-06-17	Show	GitHub Exploit DB Packet Storm

217446	4	警告	東日本旅客鉄道株式会社	-	Android 版アプリ「JR東日本アプリ」における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-2001	2014-06-23 13:51	2014-06-18	Show	GitHub Exploit DB Packet Storm

217447	2.6	注意	エヌ・ティ・ティ・コミュニケーションズ株式会社	-	Android 版アプリ「050 plus」における情報管理不備の脆弱性	CWE-200 情報漏えい	CVE-2014-2000	2014-06-23 13:51	2014-06-17	Show	GitHub Exploit DB Packet Storm

217448	4.3	警告	Real Time Logic	-	BarracudaDrive におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-4335	2014-06-23 13:47	2014-06-17	Show	GitHub Exploit DB Packet Storm

217449	5	警告	Canonical	-	Ubuntu 用 OpenStack Nova および Openstack Cinder パッケージにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1068	2014-06-23 13:46	2013-01-11	Show	GitHub Exploit DB Packet Storm

217450	9.3	危険	アドビシステムズ	-	Adobe Photoshop CS5 の U3D.8BI library プラグインにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2052	2014-06-23 13:46	2012-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296771	9.8	CRITICAL Network	phxeventmanager_project	phxeventmanager	SQL injection vulnerability in search.php in phxEventManager 2.0 beta 5 allows remote attackers to execute arbitrary SQL commands via the search_terms parameter.	CWE-89 SQL Injection	CVE-2012-1124	2024-11-21 10:36	2020-02-12	Show	GitHub Exploit DB Packet Storm

296772	7.4	HIGH Network	cisco	ironport_web_security_appliance	Cisco IronPort Web Security Appliance up to and including 7.5 does not validate the basic constraints of the certificate authority which could lead to MITM attacks	CWE-20 Improper Input Validation	CVE-2012-1326	2024-11-21 10:36	2020-01-15	Show	GitHub Exploit DB Packet Storm

296773	5.9	MEDIUM Network	cisco	ironport_web_security_appliance	Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks	CWE-295 Improper Certificate Validation	CVE-2012-1316	2024-11-21 10:36	2020-01-15	Show	GitHub Exploit DB Packet Storm

296774	4.9	MEDIUM Network	whoopsie-daisy_project	whoopsie-daisy	whoopsie-daisy before 0.1.26: Root user can remove arbitrary files	CWE-428 Unquoted Search Path or Element	CVE-2012-0945	2024-11-21 10:36	2020-01-15	Show	GitHub Exploit DB Packet Storm

296775	6.1	MEDIUM Network	plixer	scrutinizer_netflow_\&_sflow_analyzer	Cross-site scripting (XSS) vulnerability in cgi-bin/scrut_fa_exclusions.cgi in Plixer International Scrutinizer NetFlow and sFlow Analyzer 8.6.2.16204 and other versions before 9.0.1.19899 allows rem…	CWE-79 Cross-site Scripting	CVE-2012-1261	2024-11-21 10:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

296776	6.1	MEDIUM Network	plixer	scrutinizer_netflow_\&_sflow_analyzer	Cross-site scripting (XSS) vulnerability in cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allows remo…	CWE-79 Cross-site Scripting	CVE-2012-1260	2024-11-21 10:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

296777	9.8	CRITICAL Network	plixer	scrutinizer_netflow_\&_sflow_analyzer	Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer 8.6.2.16204, and possibly other versions before 9.0.1.19899, allow remote attackers to execute arbi…	CWE-89 SQL Injection	CVE-2012-1259	2024-11-21 10:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

296778	6.5	MEDIUM Network	plixer	scrutinizer_netflow_\&_sflow_analyzer	cgi-bin/userprefs.cgi in Plixer International Scrutinizer NetFlow & sFlow Analyzer before 9.0.1.19899 does not validate user permissions, which allow remote attackers to add user accounts with admini…	CWE-287 Improper Authentication	CVE-2012-1258	2024-11-21 10:36	2020-01-10	Show	GitHub Exploit DB Packet Storm

296779	6.1	MEDIUM Network	ldap-account-manager fedoraproject debian	ldap_account_manager fedora debian_linux	A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the export, add_value_form, and dn parameters to cmd.php.	CWE-79 Cross-site Scripting	CVE-2012-1115	2024-11-21 10:36	2019-12-6	Show	GitHub Exploit DB Packet Storm

296780	6.1	MEDIUM Network	ldap-account-manager fedoraproject debian	ldap_account_manager fedora debian_linux	A Cross-Site Scripting (XSS) vulnerability exists in LDAP Account Manager (LAM) Pro 3.6 in the filter parameter to cmd.php in an export and exporter_id action. and the filteruid parameter to list.php.	CWE-79 Cross-site Scripting	CVE-2012-1114	2024-11-21 10:36	2019-12-6	Show	GitHub Exploit DB Packet Storm