Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227411 4 警告 NetIQ - Windows 上で稼働する NetIQ eDirectory におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-0429 2012-12-27 14:15 2012-12-18 Show GitHub Exploit DB Packet Storm
227412 4.3 警告 NetIQ - NetIQ eDirectory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0428 2012-12-27 14:14 2012-12-18 Show GitHub Exploit DB Packet Storm
227413 10 危険 NetIQ - NetIQ Privileged User Manager における任意の Perl コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5932 2012-12-27 14:12 2012-11-15 Show GitHub Exploit DB Packet Storm
227414 5.5 警告 NetIQ - NetIQ Privileged User Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5931 2012-12-27 14:11 2012-11-15 Show GitHub Exploit DB Packet Storm
227415 6.4 警告 NetIQ - NetIQ Privileged User Manager における管理用アカウントのパスワードを変更される脆弱性 CWE-287
不適切な認証 		CVE-2012-5930 2012-12-27 14:04 2012-11-15 Show GitHub Exploit DB Packet Storm
227416 3.3 注意 D-Link Systems, Inc. - D-Link DCS-932L カメラにおけるパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-4046 2012-12-27 12:11 2012-12-24 Show GitHub Exploit DB Packet Storm
227417 10 危険 Novell - Novell iPrint Client における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-0411 2012-12-27 12:10 2012-12-17 Show GitHub Exploit DB Packet Storm
227418 5 警告 Mozilla Foundation
VMware		 - Mozilla Network Security Services の ASN.1 デコーダにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-0441 2012-12-26 18:11 2012-06-5 Show GitHub Exploit DB Packet Storm
227419 7.5 危険 Google - Mac OS X 上で稼働する Google Chrome の WebGL の実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2896 2012-12-26 18:07 2012-09-25 Show GitHub Exploit DB Packet Storm
227420 6.8 警告 Google - Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2894 2012-12-26 18:06 2012-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273611 8.8 HIGH
Network 		codepeople cp_contact_form_with_paypal The cp-contact-form-with-paypal (aka CP Contact Form with PayPal) plugin before 1.1.6 for WordPress has CSRF with resultant XSS, related to cp_contactformpp.php and cp_contactformpp_admin_int_list.in… CWE-352
 Origin Validation Error 		CVE-2015-9233 2024-11-21 11:40 2017-09-30 Show GitHub Exploit DB Packet Storm
273612 5.3 MEDIUM
Network 		good good_for_enterprise The Good for Enterprise application 3.0.0.415 for Android does not use signature protection for its Authentication Delegation API intent. Also, the Good Dynamic application activation process does no… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2015-9232 2024-11-21 11:40 2017-09-21 Show GitHub Exploit DB Packet Storm
273613 7.5 HIGH
Network 		iterm2 iterm2 iTerm2 3.x before 3.1.1 allows remote attackers to discover passwords by reading DNS queries. A new (default) feature was added to iTerm2 version 3.0.0 (and unreleased 2.9.x versions such as 2.9.2015… CWE-200
Information Exposure 		CVE-2015-9231 2024-11-21 11:40 2017-09-21 Show GitHub Exploit DB Packet Storm
273614 4.8 MEDIUM
Network 		ait-pro bulletproof_security In the admin/db-backup-security/db-backup-security.php page in the BulletProof Security plugin before .52.5 for WordPress, XSS is possible for remote authenticated administrators via the DBTablePrefi… CWE-79
Cross-site Scripting 		CVE-2015-9230 2024-11-21 11:40 2017-09-13 Show GitHub Exploit DB Packet Storm
273615 4.8 MEDIUM
Network 		imagely nextgen_gallery In the nggallery-manage-gallery page in the Photocrati NextGEN Gallery plugin 2.1.15 for WordPress, XSS is possible for remote authenticated administrators via the images[1][alttext] parameter. CWE-79
Cross-site Scripting 		CVE-2015-9229 2024-11-21 11:40 2017-09-13 Show GitHub Exploit DB Packet Storm
273616 8.8 HIGH
Network 		imagely nextgen_gallery In post-new.php in the Photocrati NextGEN Gallery plugin 2.1.10 for WordPress, unrestricted file upload is available via the name parameter, if a file extension is changed from .jpg to .php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-9228 2024-11-21 11:40 2017-09-12 Show GitHub Exploit DB Packet Storm
273617 7.2 HIGH
Network 		alegrocart alegrocart PHP remote file inclusion vulnerability in the get_file function in upload/admin2/controller/report_logs.php in AlegroCart 1.2.8 allows remote administrators to execute arbitrary PHP code via a URL i… CWE-94
Code Injection 		CVE-2015-9227 2024-11-21 11:40 2017-09-12 Show GitHub Exploit DB Packet Storm
273618 7.2 HIGH
Network 		alegrocart alegrocart Multiple SQL injection vulnerabilities in AlegroCart 1.2.8 allow remote administrators to execute arbitrary SQL commands via the download parameter in the (1) check_download and possibly (2) check_fi… CWE-89
SQL Injection 		CVE-2015-9226 2024-11-21 11:40 2017-09-12 Show GitHub Exploit DB Packet Storm
273619 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_7
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_vista 		The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Go… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0026 2024-11-21 11:40 2016-11-10 Show GitHub Exploit DB Packet Storm
273620 5.5 MEDIUM
Local 		microsoft outlook_web_access Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative Update 12 and 2016 Gold and Cumulative Update 1 does not properly restrict loading of IMG elements… CWE-200
Information Exposure 		CVE-2016-0028 2024-11-21 11:40 2016-06-16 Show GitHub Exploit DB Packet Storm