Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217991	5.8	警告	サイボウズ	-	サイボウズリモートサービスマネージャーにおけるセッション固定の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1984	2014-04-28 17:58	2014-04-18	Show	GitHub Exploit DB Packet Storm

217992	4.3	警告	Ushahidi	-	Ushahidi Platform におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2025	2014-04-28 17:51	2013-05-1	Show	GitHub Exploit DB Packet Storm

217993	3.5	注意	Episerver	-	Ektron CMS の content.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2729	2014-04-28 17:42	2014-04-16	Show	GitHub Exploit DB Packet Storm

217994	9.3	危険	Power Software	-	Power Software の WinArchiver におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-5660	2014-04-28 17:13	2013-04-29	Show	GitHub Exploit DB Packet Storm

217995	4.3	警告	JoomlaBoat.com	-	Joomla! 用 YouTube Gallery コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5956	2014-04-28 16:17	2013-09-27	Show	GitHub Exploit DB Packet Storm

217996	6.8	警告	OpenX	-	OpenX におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5954	2014-04-28 16:04	2013-09-27	Show	GitHub Exploit DB Packet Storm

217997	4.3	警告	Moxiecode Systems AB	-	TinyMCE の bbcode プラグインにおけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4230	2014-04-28 15:49	2012-08-9	Show	GitHub Exploit DB Packet Storm

217998	9.3	危険	3S-Smart Software Solutions SoftMotion3D Festo	-	Festo Modular controllers CECX-X-C1 および CECX-X-M1 における設定を変更される脆弱性	CWE-287 不適切な認証	CVE-2014-0769	2014-04-28 15:40	2014-04-24	Show	GitHub Exploit DB Packet Storm

217999	9.3	危険	3S-Smart Software Solutions SoftMotion3D Festo	-	Festo Modular controllers CECX-X-C1 および CECX-X-M1 における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2014-0760	2014-04-28 15:40	2014-04-24	Show	GitHub Exploit DB Packet Storm

218000	4.3	警告	Open-Xchange	-	Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-2393	2014-04-28 15:07	2014-04-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296481	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0489	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296482	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0488	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296483	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0487	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296484	-	oracle	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-011…	NVD-CWE-noinfo	CVE-2012-0486	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296485	-	oracle mysql	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CV…	NVD-CWE-noinfo	CVE-2012-0485	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296486	-	oracle mysql	mysql	Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect confidentiality via unknown vectors.	NVD-CWE-noinfo	CVE-2012-0484	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296487	-	php	php	The tidy_diagnose function in PHP 5.3.8 might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via crafted input to an application that attempts to…	CWE-399 Resource Management Errors	CVE-2012-0781	2024-11-21 10:35	2012-01-19	Show	GitHub Exploit DB Packet Storm

296488	-	whmcs	whmcompletesolution	submitticket.php in WHMCompleteSolution (WHMCS) 5.03 allows remote attackers to inject arbitrary code into a subject field via crafted ticket data, a different vulnerability than CVE-2011-5061. NOTE:…	CWE-94 Code Injection	CVE-2012-0693	2024-11-21 10:35	2012-01-14	Show	GitHub Exploit DB Packet Storm

296489	-	hp	storageworks_p2000_g3_msa	HP StorageWorks P2000 G3 MSA array systems have a default account, which makes it easier for remote attackers to perform administrative tasks via unspecified vectors, a different vulnerability than C…	CWE-22 Path Traversal	CVE-2012-0697	2024-11-21 10:35	2012-01-13	Show	GitHub Exploit DB Packet Storm

296490	-	ibm	cognos_executive_viewer cognos_tm1	Multiple cross-site scripting (XSS) vulnerabilities in the Executive Viewer (EV) in IBM Cognos TM1 before 9.5 FP1 allow remote attackers to inject arbitrary web script or HTML via unspecified request…	CWE-79 Cross-site Scripting	CVE-2012-0696	2024-11-21 10:35	2012-01-13	Show	GitHub Exploit DB Packet Storm