Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218251	6.5	警告	シマンテック	-	Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5015	2014-02-17 11:26	2013-07-29	Show	GitHub Exploit DB Packet Storm

218252	7.5	危険	シマンテック	-	Symantec Endpoint Protection Manager および Symantec Protection Center Small Business Edition における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2013-5014	2014-02-17 11:21	2013-07-29	Show	GitHub Exploit DB Packet Storm

218253	3.5	注意	IBM	-	IBM Sametime の Meeting Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6743	2014-02-17 10:58	2013-11-8	Show	GitHub Exploit DB Packet Storm

218254	6.8	警告	IBM	-	IBM Sametime の Meeting Server におけるクリックジャッキング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-3988	2014-02-17 10:57	2013-06-7	Show	GitHub Exploit DB Packet Storm

218255	7.5	危険	IBM	-	IBM Sametime の Meeting Server におけるアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6742	2014-02-17 10:57	2013-11-8	Show	GitHub Exploit DB Packet Storm

218256	7.5	危険	IBM	-	IBM Sametime の Meeting Server における脆弱性	CWE-20 不適切な入力確認	CVE-2013-3983	2014-02-17 10:57	2013-06-7	Show	GitHub Exploit DB Packet Storm

218257	5	警告	IBM	-	IBM Sametime の Meeting Server における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-3978	2014-02-17 10:56	2013-06-7	Show	GitHub Exploit DB Packet Storm

218258	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Enterprise Mobility Application インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0729	2014-02-14 14:52	2014-02-13	Show	GitHub Exploit DB Packet Storm

218259	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の Java データベースインターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0728	2014-02-14 14:51	2014-02-12	Show	GitHub Exploit DB Packet Storm

218260	7.5	危険	シスコシステムズ	-	Cisco Unified Communications Manager の CallManager Interactive Voice Response インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-0727	2014-02-14 14:50	2014-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294611	-	oscommerce	oscommerce	Cross-site scripting (XSS) vulnerability in osCommerce 2.2MS1J before R9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-0311	2024-11-21 10:34	2012-01-27	Show	GitHub Exploit DB Packet Storm

294612	-	mailenable	mailenable	Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers t…	CWE-79 Cross-site Scripting	CVE-2012-0389	2024-11-21 10:34	2012-01-25	Show	GitHub Exploit DB Packet Storm

294613	-	batavi	batavi	SQL injection vulnerability in ajax.php in Batavi before 1.2.1 allows remote attackers to execute arbitrary SQL commands via the boxToReload parameter.	CWE-89 SQL Injection	CVE-2012-0069	2024-11-21 10:34	2012-01-25	Show	GitHub Exploit DB Packet Storm

294614	-	simplesamlphp	simplesamlphp	Cross-site scripting (XSS) vulnerability in modules/core/www/no_cookie.php in SimpleSAMLphp 1.8.1 and possibly other versions before 1.8.2 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2012-0040	2024-11-21 10:34	2012-01-25	Show	GitHub Exploit DB Packet Storm

294615	-	stone-ware	webnetwork	Cross-site request forgery (CSRF) vulnerability in Stoneware webNetwork before 6.0.8.0 allows remote attackers to hijack the authentication of unspecified victims for requests that modify user accoun…	CWE-352 Origin Validation Error	CVE-2012-0286	2024-11-21 10:34	2012-01-25	Show	GitHub Exploit DB Packet Storm

294616	-	stone-ware	webnetwork	Multiple cross-site scripting (XSS) vulnerabilities in Stoneware webNetwork before 6.0.8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-0285	2024-11-21 10:34	2012-01-25	Show	GitHub Exploit DB Packet Storm

294617	-	glucose	glucose_2	Cross-site scripting (XSS) vulnerability in glucose 2 before stage 6.2 allows remote attackers to inject arbitrary web script or HTML via an RSS feed.	CWE-79 Cross-site Scripting	CVE-2012-0313	2024-11-21 10:34	2012-01-24	Show	GitHub Exploit DB Packet Storm

294618	-	ibm	lotus_symphony	Multiple integer overflows in vclmi.dll in the visual class library module in IBM Lotus Symphony before 3.0.1 might allow remote attackers to execute arbitrary code via an embedded (1) JPEG or (2) PN…	CWE-189 Numeric Errors	CVE-2012-0192	2024-11-21 10:34	2012-01-24	Show	GitHub Exploit DB Packet Storm

294619	-	ibm	websphere_application_server	IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.43, 6.1 before 6.1.0.43, 7.0 before 7.0.0.23, and 8.0 before 8.0.0.3 computes hash values for form parameters without restricting the ability …	CWE-20 Improper Input Validation	CVE-2012-0193	2024-11-21 10:34	2012-01-20	Show	GitHub Exploit DB Packet Storm

294620	-	openssl	openssl	OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS applications, which allows remote attackers to cause a denial of service (crash) via unspecified vectors related to an out-of-bounds read. NO…	CWE-399 Resource Management Errors	CVE-2012-0050	2024-11-21 10:34	2012-01-20	Show	GitHub Exploit DB Packet Storm