Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218991	7.5	危険	ownCloud	-	ownCloud Server における他のユーザの連絡先にアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-3834	2014-06-5 17:05	2014-04-29	Show	GitHub Exploit DB Packet Storm

218992	4.3	警告	ownCloud	-	ownCloud Server の Gallery およびコアコンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3833	2014-06-5 16:57	2014-04-29	Show	GitHub Exploit DB Packet Storm

218993	4.3	警告	ownCloud	-	ownCloud Server の Documents コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3832	2014-06-5 16:50	2014-04-29	Show	GitHub Exploit DB Packet Storm

218994	7.5	危険	leonardofln ownCloud	-	ownCloud Server で使用される PHPDocX における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2056	2014-06-5 16:47	2014-03-7	Show	GitHub Exploit DB Packet Storm

218995	7.5	危険	fruux ownCloud	-	ownCloud Server で使用される SabreDAV における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2055	2014-06-5 16:46	2014-02-27	Show	GitHub Exploit DB Packet Storm

218996	7.5	危険	PHPOffice ownCloud	-	ownCloud Server で使用される PHPExcel における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2014-2054	2014-06-5 16:44	2014-03-3	Show	GitHub Exploit DB Packet Storm

218997	5	警告	ownCloud	-	ownCloud Server のインストールルーチンにおけるパスワードを推測される脆弱性	CWE-310 暗号の問題	CVE-2013-1941	2014-06-5 16:37	2013-04-10	Show	GitHub Exploit DB Packet Storm

218998	4.6	警告	ownCloud	-	ownCloud の settings/personal.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-0204	2014-06-5 16:33	2013-01-22	Show	GitHub Exploit DB Packet Storm

218999	4	警告	ownCloud	-	ownCloud の lib/base.php における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2012-5336	2014-06-5 16:32	2012-10-9	Show	GitHub Exploit DB Packet Storm

219000	4.3	警告	ownCloud	-	ownCloud Server における CRLF インジェクションの脆弱性	CWE-Other その他	CVE-2012-5057	2014-06-5 16:31	2012-09-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296611	-	unijimpe	captcha	Cross-site scripting (XSS) vulnerability in captchademo.php in Unijimpe Captcha allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.	CWE-79 Cross-site Scripting	CVE-2012-2914	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296612	-	mapsmarker	leaflet_maps_marker_plugin	Multiple cross-site scripting (XSS) vulnerabilities in the Leaflet plugin 0.0.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) leaflet_layer.p…	CWE-79 Cross-site Scripting	CVE-2012-2913	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296613	-	kolja_schleich	leaguemanager	Multiple cross-site scripting (XSS) vulnerabilities in the LeagueManager plugin 3.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) group parameter in the show…	CWE-79 Cross-site Scripting	CVE-2012-2912	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296614	-	silisoftware	backupdb\(\)	Cross-site scripting (XSS) vulnerability in backupDB.php in SiliSoftware backupDB() 1.2.7a allows remote attackers to inject arbitrary web script or HTML via the onlyDB parameter.	CWE-79 Cross-site Scripting	CVE-2012-2911	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296615	-	silisoftware	phpthumb\(\)	Multiple cross-site scripting (XSS) vulnerabilities in SiliSoftware phpThumb() 1.7.11 allow remote attackers to inject arbitrary web script or HTML via the (1) dir parameter to demo/phpThumb.demo.ran…	CWE-79 Cross-site Scripting	CVE-2012-2910	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296616	-	viscacha	viscacha	Multiple cross-site scripting (XSS) vulnerabilities in Viscacha 0.8.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) text field in the Private Messages System, (2) Bad Wo…	CWE-79 Cross-site Scripting	CVE-2012-2909	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296617	-	viscacha	viscacha	Multiple SQL injection vulnerabilities in admin/bbcodes.php in Viscacha 0.8.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) bbcodeexample, (2) buttonimage, or (3) bbcodetag p…	CWE-89 SQL Injection	CVE-2012-2908	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296618	-	ishmael_sanchez	aberdeen	Cross-site scripting (XSS) vulnerability in the aberdeen_breadcrumb function in template.php in the Aberdeen theme 6.x-1.x before 6.x-1.11 for Drupal, when set to append the content title to the brea…	CWE-79 Cross-site Scripting	CVE-2012-2907	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296619	-	artiphp	artiphp_cms	Multiple cross-site scripting (XSS) vulnerabilities in artpublic/recommandation/index.php in Artiphp CMS 5.5.0 Neo (r422) allow remote attackers to inject arbitrary web script or HTML via the (1) add…	CWE-79 Cross-site Scripting	CVE-2012-2906	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm

296620	-	artiphp	artiphp_cms	Artiphp CMS 5.5.0 Neo (r422) stores database backups with predictable names under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a di…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2905	2024-11-21 10:39	2012-05-22	Show	GitHub Exploit DB Packet Storm