Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217461	4.6	警告	Catfish Project	-	Catfish における権限を取得される脆弱性	CWE-Other その他	CVE-2014-2096	2014-03-14 17:22	2014-02-24	Show	GitHub Exploit DB Packet Storm

217462	6.5	警告	Procentia	-	Procentia IntelliPen の Resources/System/Templates/Data.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-2043	2014-03-14 16:55	2014-03-7	Show	GitHub Exploit DB Packet Storm

217463	4.3	警告	Dokeos	-	Dokeos におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-1877	2014-03-14 16:54	2014-02-5	Show	GitHub Exploit DB Packet Storm

217464	6.8	警告	KASSELER CMS	-	Kasseler CMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3729	2014-03-14 16:19	2013-06-28	Show	GitHub Exploit DB Packet Storm

217465	3.5	注意	KASSELER CMS	-	Kasseler CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3728	2014-03-14 16:17	2013-06-28	Show	GitHub Exploit DB Packet Storm

217466	7.5	危険	KASSELER CMS	-	Kasseler CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-3727	2014-03-14 16:15	2013-06-28	Show	GitHub Exploit DB Packet Storm

217467	7.5	危険	ZLDNN.COM	-	DotNetNuke 用 ZLDNN DNNArticle モジュールの RSS ページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5117	2014-03-14 15:06	2013-09-12	Show	GitHub Exploit DB Packet Storm

217468	4.3	警告	DNN	-	DotNetNuke におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2013-7335	2014-03-14 15:05	2013-08-13	Show	GitHub Exploit DB Packet Storm

217469	4.3	警告	DNN	-	DotNetNuke におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4649	2014-03-14 15:05	2013-08-13	Show	GitHub Exploit DB Packet Storm

217470	3.5	注意	DNN	-	DotNetNuke におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3943	2014-03-14 14:39	2013-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294491	-	novell	suse_manager	Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an imag…	CWE-79 Cross-site Scripting	CVE-2012-0414	2024-11-21 10:34	2013-12-2	Show	GitHub Exploit DB Packet Storm

294492	-	wikiwig_project	wikiwig	Multiple cross-site scripting (XSS) vulnerabilities in spell-check-savedicts.php in the SpellChecker module in Xinha, as used in WikiWig 5.01 and possibly other products, allow remote attackers to in…	CWE-79 Cross-site Scripting	CVE-2011-5267	2024-11-21 10:34	2013-11-6	Show	GitHub Exploit DB Packet Storm

294493	-	novell	groupwise	An ActiveX control in gwcls1.dll in the client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote attackers to execute arbitrary code via (1) a pointer argument to the Set…	CWE-94 Code Injection	CVE-2012-0439	2024-11-21 10:34	2013-02-24	Show	GitHub Exploit DB Packet Storm

294494	-	featurific_for_wordpress_project	featurific-for-wordpress	Cross-site scripting (XSS) vulnerability in cached_image.php in the Featurific For WordPress plugin 1.6.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the snum par…	CWE-79 Cross-site Scripting	CVE-2011-5265	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294495	-	marcel_brinkkemper	lazyest-backup	Cross-site scripting (XSS) vulnerability in lazyest-backup.php in the Lazyest Backup plugin before 0.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xml_or_al…	CWE-79 Cross-site Scripting	CVE-2011-5264	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294496	-	sap	netweaver	Cross-site scripting (XSS) vulnerability in RetrieveMailExamples in SAP NetWeaver 7.30 and earlier allows remote attackers to inject arbitrary web script or HTML via the server parameter.	CWE-79 Cross-site Scripting	CVE-2011-5263	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294497	-	sonicwall	aventail_sra_ex9000 aventail_sra_ex7000 aventail_sra_ex6000 aventail_sra_ex_virtual_appliance	SQL injection vulnerability in prodpage.cfm in SonicWALL Aventail allows remote attackers to execute arbitrary SQL commands via the CategoryID parameter.	CWE-89 SQL Injection	CVE-2011-5262	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294498	-	axis	m10_series_network_cameras_firmware m1054_network_camera	Cross-site scripting (XSS) vulnerability in serverreport.cgi in Axis M10 Series Network Cameras M1054 firmware 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the …	CWE-79 Cross-site Scripting	CVE-2011-5261	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294499	-	sap	netweaver	Cross-site scripting (XSS) vulnerability in SAP/BW/DOC/METADATA in SAP NetWeaver allows remote attackers to inject arbitrary web script or HTML via the page parameter.	CWE-79 Cross-site Scripting	CVE-2011-5260	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm

294500	-	orangehrm	orangehrm	SQL injection vulnerability in lib/controllers/CentralController.php in OrangeHRM before 2.6.11.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2011-5259	2024-11-21 10:34	2013-02-13	Show	GitHub Exploit DB Packet Storm