Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227051	-	-	Ruby on Rails project	-	削除 Ruby on Rails 用 Authlogic gem における SQL インジェクションの脆弱性	-	CVE-2012-5664	2012-12-28 14:22	2012-12-26	Show	GitHub Exploit DB Packet Storm

227052	4.3	警告	Opera Software ASA	-	Android 版 Opera Mini ウェブブラウザおよび Opera Mobile ウェブブラウザにおいて任意のスクリプトが実行される脆弱性	CWE-200 情報漏えい	CVE-2012-5180	2012-12-28 14:17	2012-12-20	Show	GitHub Exploit DB Packet Storm

227053	2.6	注意	WordPress.org	-	WordPress における有効なセッション識別子を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-5868	2012-12-28 11:58	2012-12-27	Show	GitHub Exploit DB Packet Storm

227054	4.9	警告	Linux	-	Linux Kernel と一緒に配布される hypervkvpd におけるサービス運用妨害 (Daemon Exit) の脆弱性	CWE-noinfo 情報不足	CVE-2012-5532	2012-12-28 11:44	2012-12-22	Show	GitHub Exploit DB Packet Storm

227055	5	警告	シトリックス・システムズ	-	Citrix XenDesktop Virtual Desktop Agent における USB デバイスへのアクセス権を保持される脆弱性	CWE-noinfo 情報不足	CVE-2012-6314	2012-12-28 11:20	2012-12-11	Show	GitHub Exploit DB Packet Storm

227056	9.3	危険	シトリックス・システムズ	-	Citrix XenApp の XML Service インターフェースにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-5161	2012-12-28 11:08	2012-12-11	Show	GitHub Exploit DB Packet Storm

227057	10	危険	CA Technologies	-	CA IdentityMinder におけるアクセス制限を回避される脆弱性	CWE-noinfo 情報不足	CVE-2012-6299	2012-12-28 10:58	2012-12-20	Show	GitHub Exploit DB Packet Storm

227058	10	危険	CA Technologies	-	CA IdentityMinder における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-6298	2012-12-28 10:57	2012-12-20	Show	GitHub Exploit DB Packet Storm

227059	5	警告	DELL EMC (旧 EMC Corporation)	-	EMC Data Protection Advisor におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-4616	2012-12-28 10:40	2012-12-26	Show	GitHub Exploit DB Packet Storm

227060	7.2	危険	IBM	-	IBM z/OS 上で稼働する Tivoli NetView における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5951	2012-12-28 10:38	2012-12-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275351	-	rle	nova-wind_turbine_hmi_firmware	RLE Nova-Wind Turbine HMI devices store cleartext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-3951	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

275352	-	sinapsi	esolar_light_firmware	Sinapsi eSolar Light with firmware before 2.0.3970_schsl_2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page.	CWE-200 Information Exposure	CVE-2015-3949	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

275353	-	actian	matrix	Actian Matrix 5.1.x through 5.1.2.4 and 5.2.x through 5.2.0.1 allows remote authenticated users to bypass intended write-access restrictions and execute an UPDATE statement by referencing a table.	CWE-89 SQL Injection	CVE-2015-3993	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275354	-	cisco	ios	The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CS…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4185	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275355	-	cisco	email_security_appliance	The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF rec…	CWE-20 Improper Input Validation	CVE-2015-4184	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275356	-	cisco	identity_services_engine_software	The administrative web interface in Cisco Identity Services Engine (ISE) before 1.3 allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information or chang…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4182	2024-11-21 11:30	2015-06-12	Show	GitHub Exploit DB Packet Storm

275357	-	strongswan debian canonical	strongswan_vpn_client debian_linux ubuntu_linux strongswan	strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authenticating an IKEv2 connection, does not enforce server authentication rest…	CWE-200 Information Exposure	CVE-2015-4171	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275358	-	zanematthew	zm_ajax_login_\&_register	Directory traversal vulnerability in the zM Ajax Login & Register plugin before 1.1.0 for WordPress allows remote attackers to include and execute arbitrary php files via a relative path in the templ…	CWE-22 Path Traversal	CVE-2015-4153	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275359	-	wftpserver	wing_ftp_server	Multiple cross-site request forgery (CSRF) vulnerabilities in Wing FTP Server before 4.4.7 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrar…	CWE-352 Origin Validation Error	CVE-2015-4108	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275360	-	coppermine-gallery	coppermine_photo_gallery	Coppermine Photo Gallery before 1.5.36 allows remote attackers to enumerate directories via a full path in the folder parameter to minibrowser.php.	CWE-200 Information Exposure	CVE-2015-3923	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm