Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229591 4.3 警告 Drupal - Drupal 用 FAQ モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1646 2012-09-27 16:24 2012-02-22 Show GitHub Exploit DB Packet Storm
229592 4.3 警告 Ulli Horlacher - Frams' Fast File EXchange の fup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1293 2012-09-27 16:23 2012-09-25 Show GitHub Exploit DB Packet Storm
229593 4.3 警告 notmuchmail.org - Notmuch の emacs/notmuch-mua.el における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-1103 2012-09-27 16:22 2012-02-3 Show GitHub Exploit DB Packet Storm
229594 4.3 警告 OSClass - OSClass におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0974 2012-09-27 16:20 2012-01-16 Show GitHub Exploit DB Packet Storm
229595 7.5 危険 OSClass - OSClass における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0973 2012-09-27 16:19 2012-01-16 Show GitHub Exploit DB Packet Storm
229596 4.3 警告 Ulli Horlacher - Frams' Fast File EXchange の fup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0869 2012-09-27 16:15 2011-02-15 Show GitHub Exploit DB Packet Storm
229597 2.1 注意 Adiscon - rsyslog の imfile モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-4623 2012-09-27 16:14 2011-02-17 Show GitHub Exploit DB Packet Storm
229598 7.5 危険 The phpMyAdmin Project - phpMyAdmin における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5159 2012-09-27 16:13 2012-09-25 Show GitHub Exploit DB Packet Storm
229599 7.5 危険 Horde - 複数の Horde Project 製品における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-0209 2012-09-27 16:13 2012-02-13 Show GitHub Exploit DB Packet Storm
229600 9 危険 IBM - IBM Informix Dynamic Server におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-3334 2012-09-27 16:12 2012-09-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284661 - microsoft
sun 		virtual_machine
jdk
jre
sdk 		Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the se… NVD-CWE-Other
CVE-2002-0058 2018-10-13 06:30 2002-03-15 Show GitHub Exploit DB Packet Storm
284662 - hp
university_of_washington
sco 		dtmail
pine
unixware 		MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. NVD-CWE-Other
CVE-1999-0004 2018-10-13 06:29 1997-12-16 Show GitHub Exploit DB Packet Storm
284663 - microsoft internet_information_server
windows_nt 		In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL. NVD-CWE-Other
CVE-1999-0278 2018-10-13 06:29 1998-06-1 Show GitHub Exploit DB Packet Storm
284664 - microsoft windows_nt Local users in Windows NT can obtain administrator privileges by changing the KnownDLLs list to reference malicious programs. NVD-CWE-Other
CVE-1999-0376 2018-10-13 06:29 1999-02-20 Show GitHub Exploit DB Packet Storm
284665 - microsoft backoffice_resource_kit Microsoft Taskpads allows remote web sites to execute commands on the visiting user's machine via certain methods that are marked as Safe for Scripting. NVD-CWE-Other
CVE-1999-0379 2018-10-13 06:29 1999-02-22 Show GitHub Exploit DB Packet Storm
284666 - microsoft windows_nt The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges. NVD-CWE-Other
CVE-1999-0382 2018-10-13 06:29 1999-03-12 Show GitHub Exploit DB Packet Storm
284667 - microsoft office
outlook
project
visual_basic
windows_2000
windows_nt 		The Forms 2.0 ActiveX control (included with Visual Basic for Applications 5.0) can be used to read text from a user's clipboard when the user accesses documents with ActiveX content. NVD-CWE-Other
CVE-1999-0384 2018-10-13 06:29 1999-01-1 Show GitHub Exploit DB Packet Storm
284668 - microsoft frontpage
personal_web_server 		Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL. NVD-CWE-Other
CVE-1999-0386 2018-10-13 06:29 1999-03-1 Show GitHub Exploit DB Packet Storm
284669 - microsoft windows_nt MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013. NVD-CWE-Other
CVE-1999-0489 2018-10-13 06:29 1999-05-17 Show GitHub Exploit DB Packet Storm
284670 - microsoft internet_information_server The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-1999-0736 2018-10-13 06:29 1999-05-7 Show GitHub Exploit DB Packet Storm