Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228281	10	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-5142	2012-12-13 15:20	2012-12-11	Show	GitHub Exploit DB Packet Storm

228282	10	危険	Google	-	Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2012-5141	2012-12-13 15:17	2012-12-11	Show	GitHub Exploit DB Packet Storm

228283	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5140	2012-12-13 15:17	2012-12-11	Show	GitHub Exploit DB Packet Storm

228284	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-5139	2012-12-13 15:04	2012-12-11	Show	GitHub Exploit DB Packet Storm

228285	4.4	警告	アドビシステムズ	-	Adobe ColdFusion における共有ホスティングでのサンドボックスのパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5675	2012-12-13 14:59	2012-12-11	Show	GitHub Exploit DB Packet Storm

228286	5	警告	VICTOR JONSSON	-	WordPress 用 Simple Gmail Login プラグインにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6313	2012-12-13 11:33	2012-12-11	Show	GitHub Exploit DB Packet Storm

228287	4.3	警告	Video Lead Form	-	WordPress 用 Video Lead Form プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6312	2012-12-13 11:29	2012-12-11	Show	GitHub Exploit DB Packet Storm

228288	7.2	危険	シマンテック	-	Symantec Network Access Control における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-4349	2012-12-13 10:58	2012-12-10	Show	GitHub Exploit DB Packet Storm

228289	5	警告	Google	-	Android のブラウザアプリにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-6301	2012-12-13 10:57	2012-12-10	Show	GitHub Exploit DB Packet Storm

228290	10	危険	CA Technologies	-	Unix および Linux 上で稼働する CA XCOM Data Transport における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-5973	2012-12-13 10:56	2012-12-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248461	9.9	CRITICAL Network	-	-	A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the underlying operating system of an affected…	CWE-78 OS Command	CVE-2023-20036	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248462	4.4	MEDIUM Local	-	-	Three vulnerabilities in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. These…	CWE-59 Link Following	CVE-2023-20004	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248463	5.4	MEDIUM Network	-	-	A vulnerability in the web management interface of Cisco BroadWorks Hosted Thin Receptionist could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against …	CWE-79 Cross-site Scripting	CVE-2022-20948	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248464	4.3	MEDIUM Network	-	-	A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem could allow an authenticated, remote attacker to elevate privileges on an affected system. This vul…	CWE-922 Insecure Storage of Sensitive Information	CVE-2022-20939	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248465	6.1	MEDIUM Network	-	-	IBM Concert Software 1.0.0 through 1.0.1 is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering th…	CWE-79 Cross-site Scripting	CVE-2024-41785	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248466	-		-	-	A vulnerability classified as problematic has been found in code-projects Online Shop Store 1.0. This affects an unknown part of the file /signup.php. The manipulation of the argument m2 with the inp…	CWE-79 CWE-94 Cross-site Scripting Code Injection	CVE-2024-11243	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248467	-		-	-	A vulnerability was found in ZZCMS 2023. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/ad_list.php?action=pass of the component Keyword Filter…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11242	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248468	6.5	MEDIUM Adjacent	-	-	A vulnerability in the version control of Cisco TelePresence CE Software for Cisco Touch 10 Devices could allow an unauthenticated, adjacent attacker to install an older version of the soft…	CWE-527 Exposure of Version-Control Repository to an Unauthorized Control Sphere	CVE-2022-20931	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248469	6.3	MEDIUM Network	-	-	A vulnerability in the web management interface of Cisco AsyncOS for Cisco Secure Web Appliance, formerly Cisco Web Security Appliance (WSA), could allow an authenticated, remote …	CWE-78 OS Command	CVE-2022-20871	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm

248470	7.4	HIGH Network	-	-	A vulnerability in the REST API of Cisco Expressway Series and Cisco TelePresence VCS could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack o…	CWE-352 Origin Validation Error	CVE-2022-20853	2024-11-19 02:11	2024-11-16	Show	GitHub Exploit DB Packet Storm