Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230181	2.1	注意	Steven Jones	-	Drupal 用の Context モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1584	2012-12-20 19:29	2010-05-10	Show	GitHub Exploit DB Packet Storm

230182	7.5	危険	tirzen taskfreak	-	TaskFreak! で使用されている Tirzen Framework の tzn_mysql.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1583	2012-12-20 19:29	2010-05-6	Show	GitHub Exploit DB Packet Storm

230183	7.5	危険	redcomponent	-	Joomla! 用の redSHOP コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1531	2012-12-20 19:29	2010-04-26	Show	GitHub Exploit DB Packet Storm

230184	2.1	注意	reyero	-	Drupal 用の Internationalization モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1530	2012-12-20 19:29	2010-04-7	Show	GitHub Exploit DB Packet Storm

230185	6.8	警告	Uiga	-	Uiga Proxy の include/template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1528	2012-12-20 19:29	2010-04-26	Show	GitHub Exploit DB Packet Storm

230186	7.5	危険	taskfreak	-	TaskFreak! Original マルチユーザの include/classes/tzn_user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1521	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

230187	4.3	警告	taskfreak	-	TaskFreak! Original multi user の logout.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1520	2012-12-20 19:29	2010-06-30	Show	GitHub Exploit DB Packet Storm

230188	9.3	危険	SWFTools	-	SWFTools における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1516	2012-12-20 19:29	2010-08-17	Show	GitHub Exploit DB Packet Storm

230189	2.6	注意	tomatocms	-	TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1515	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

230190	6	警告	tomatocms	-	TomatoCMS における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2010-1514	2012-12-20 19:29	2010-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
295021	-	ibm	maximo_asset_management	IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5383	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295022	-	ibm	maximo_asset_management	IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than…	NVD-CWE-noinfo	CVE-2013-5382	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295023	-	ibm	maximo_asset_management	IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 through 7.1.1.12, and 7.5 before 7.5.0.3 allows remote authenticated users to gain privileges via unspecified vectors.	NVD-CWE-noinfo	CVE-2013-5381	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295024	-	ibm	maximo_asset_management	IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows local users to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2013-5380	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295025	-	zabbix	zabbix	Zabbix 2.0.5 allows remote authenticated users to discover the LDAP bind password by leveraging management-console access and reading the ldap_bind_password value in the HTML source code.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5572	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295026	-	ibm	spss_collaboration_and_deployment_services	Unspecified vulnerability in IBM SPSS Collaboration and Deployment Services 4.2.1 and 5.0 through FP2 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability …	NVD-CWE-noinfo	CVE-2013-5370	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295027	-	cisco	telepresence_multipoint_switch	The Media Snapshot implementation on Cisco TelePresence Multipoint Switch (CTMS) devices allows remote authenticated users to cause a denial of service (device reload) by sending many Media Snapshot …	CWE-399 Resource Management Errors	CVE-2013-5516	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295028	-	x2engine	x2crm	Cross-site scripting (XSS) vulnerability in X2Engine X2CRM before 3.5 allows remote attackers to inject arbitrary web script or HTML via the model parameter to index.php/admin/editor.	CWE-79 Cross-site Scripting	CVE-2013-5693	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295029	-	x2engine	x2crm	Directory traversal vulnerability in X2Engine X2CRM before 3.5 allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the file parameter to inde…	CWE-22 Path Traversal	CVE-2013-5692	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm

295030	-	simone_tellini	mod_accounting	SQL injection vulnerability in mod_accounting.c in the mod_accounting module 0.5 and earlier for Apache allows remote attackers to execute arbitrary SQL commands via a Host header.	CWE-89 SQL Injection	CVE-2013-5697	2024-11-21 10:57	2013-10-1	Show	GitHub Exploit DB Packet Storm